Ubuntu USN-756-1 (clamav) Network Vulnerability

Summary

The remote host is missing an update to clamav announced via advisory USN-756-1.

Solution

The problem can be corrected by upgrading your system to the following package versions: Ubuntu 8.10: libclamav5 0.94.dfsg.2-1ubuntu0.3 In general, a standard system upgrade is sufficient to effect the necessary changes. https://secure1.securityspace.com/smysecure/catid.html?in=USN-756-1

Insight

It was discovered that ClamAV did not properly verify buffers when processing Upack files. A remote attacker could send a crafted file and cause a denial of service via application crash.

Severity

Classification

CVE CVE-2009-1371

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Ubuntu Update for bzip2 USN-1308-1
Ubuntu Update for bind9 vulnerability USN-622-1
Ubuntu Update for bind9 USN-1163-1
Ubuntu Update for aptdaemon vulnerability USN-1068-1
Ubuntu Update for clamav USN-1179-1

Take action and discover your vulnerabilities