-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
- --------------------------------------------------------------------------- Debian Volatile Update Announcement VUA 10-1 http://volatile.debian.net [EMAIL PROTECTED] Martin Zobel-Helas January 10th, 2006 - --------------------------------------------------------------------------- Package : clamav Version : 0.88-0volatile1 Importance : high CVE IDs : CVE-2006-0162 The following security flaw was found and fixed in clamav: CVE-2006-0162 : possible heap overflow in libclamav/upx.c Also the handling of incorrectly created/handcrafted zip archives has been improved. For sarge, an updated clamav package is available in sarge/volatile as version 0.88-0volatile1. We recommend that you update your system. Upgrade Instructions - -------------------- You can get the updated packages at http://volatile.debian.net/debian-volatile/pool/volatile/main/c/clamav/ and install them with dpkg, or add deb http://volatile.debian.net/debian-volatile sarge/volatile main deb-src http://volatile.debian.net/debian-volatile sarge/volatile main to your /etc/apt/sources.list. You can also use any of our mirrors. Please see http://www.debian.org/devel/debian-volatile/volatile-mirrors for the full list of mirrors. The archive signing key can be downloaded from http://volatile.debian.net/ziyi-sarge.asc For further information about debian-volatile, please refer to http://volatile.debian.net/ and http://www.debian.org/devel/debian-volatile/. If there are any issues, please don't hesitate to get in touch with the volatile team. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (GNU/Linux) iD8DBQFDxDdLST77jl1k+HARAunwAJ0XsG7B72vyH1UzPYygXi0SqEgjWQCfQnsS ccj8/HEpDLFtosKRv19P6oA= =P+AQ -----END PGP SIGNATURE----- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
