On Mon, Sep 26, 2005 at 05:36:27AM -0700, P PRABHU wrote: > Any fix for the latest ClamAV buffer overflow in the > file "upx.c" vulnerability. Currently .deb based > version is 0.84-2.sarge.2 . Is this version subject to > this vulnerability ?? If so any fix will be released
A DSA is pending, and should be available shortly. Steve -- # The Debian Security Audit Project. http://www.debian.org/security/audit -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]