Fedora Core 9 2008-9644: clamav
|
|
Article ID: 34774
Last updated: 27 Jan, 2009
|
|
|
|
Views: 405
|
|
Posted: 22 Jan, 2009
by: Tech Pubs S.
Updated: 27 Jan, 2009
by: Tech Pubs S.
|
|
Fedora Core 9 2008-9644: clamav |
|
| This script is Copyright (C) 2008 Tenable Network Security |
|
|
| Family | Fedora Local Security Checks |
| Plugin ID | 34774 |
| Bugtraq ID |
|
| CVE ID | CVE-2008-1389
CVE-2008-2713
CVE-2008-3215
CVE-2008-3912
CVE-2008-3913
CVE-2008-3914
CVE-2008-5050
|
|
| Description: |
The remote host is missing the patch for the advisory FEDORA-2008-9644 (clamav).
Clam AntiVirus is an anti-virus toolkit for UNIX. The main purpose of this
software is the integration with mail servers (attachment scanning). The
package provides a flexible and scalable multi-threaded daemon, a command
line scanner, and a tool for automatic updating via Internet. The programs
are based on a shared library distributed with the Clam AntiVirus package,
which you can use with your own software. The virus database is based on
the virus database from OpenAntiVirus, but contains additional signatures
(including signatures for popular polymorphic viruses, too) and is KEPT UP
TO DATE.
-
Update Information:
Security fixes from upstream 0.94 and 0.94.1: CVE-2008-1389 (#461461):
Invalid memory access in the CHM unpacker CVE-2008-3912 (#461461): Multiple
out-of-memory NULL pointer dereferences CVE-2008-3913 (#461461): Fix memory
leak in the error code path in freshclam CVE-2008-3914 (#461461): Multiple fil
e
descriptor leaks on the error code path CVE-2008-5050 (#470783):
get_unicode_name() off-by-one buffer overflow
Solution : Get the newest Fedora Updates
Risk factor : High |
|
