-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Clam AntiVirus is subject to vulnerabilities ranging from Denial of Service to execution of arbitrary code when handling compressed executables. (CAN-2005-2919, CAN-2005-2920)
Clam AntiVirus is also vulnerable to integer overflows when handling several file formats, potentially resulting in the execution of arbitrary code. (CAN-2005-2450) Solution: update to 0.87. http://www.gentoo.org/security/en/glsa/glsa-200509-13.xml http://bugs.gentoo.org/show_bug.cgi?id=106279 http://www.gentoo.org/security/en/glsa/glsa-200507-25.xml http://bugs.gentoo.org/show_bug.cgi?id=100178 http://sourceforge.net/project/shownotes.php?release_id=356974 Yaakov -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (Cygwin) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFDU9OmpiWmPGlmQSMRAouZAKCiLK1CGrCaN3M5yTCSdWTzZMDzBgCg0An5 +IqnK30jLHv+dS1FJJ4bYYw= =yN2x -----END PGP SIGNATURE-----