-
Committer:
Bazaar Package Importer
-
Author(s):
Jamie Strandboge
-
Date:
2010-09-13 14:35:56 UTC
-
Revision ID:
james.westby@ubuntu.com-20100913143556-ukxoym2woiwb1zf9
Tags: 0.95.3+dfsg-1ubuntu0.09.04.3
* SECURITY UPDATE: fix integer overflow in BZ2_decompress()
- libclamav/nsis/bzlib.c: return error if N is larger than 2*1024^2 which
keeps us from overflowing but leaves enough room for the 900k maximum
value of the RUNA/RUNB encoding
- patch based on upstream bzip2
- CVE-2010-0405