Debian Bug report logs -
#526042
clamav: CVE-2009-1241 malware detection bypass
Reported by: "Michael S. Gilbert" <michael.s.gilbert@gmail.com>
Date: Tue, 28 Apr 2009 19:54:02 UTC
Severity: important
Tags: fixed
Fixed in version clamav/0.95+dfsg-1
Done: Stephen Gran <sgran@debian.org>
Bug is archived. No further changes may be made.
Toggle useless messages
Report forwarded
to debian-bugs-dist@lists.debian.org, ClamAV Team <pkg-clamav-devel@lists.alioth.debian.org>:
Bug#526042; Package clamav.
(Tue, 28 Apr 2009 19:54:04 GMT) (full text, mbox, link).
Acknowledgement sent
to "Michael S. Gilbert" <michael.s.gilbert@gmail.com>:
New Bug report received and forwarded. Copy sent to ClamAV Team <pkg-clamav-devel@lists.alioth.debian.org>.
(Tue, 28 Apr 2009 19:54:04 GMT) (full text, mbox, link).
Message #5 received at submit@bugs.debian.org (full text, mbox, reply):
Package: clamav
Severity: important
Tags: security
Tags: fixed 0.95+dfsg-1
Hi,
the following CVE (Common Vulnerabilities & Exposures) id was
published for clamav.
CVE-2009-1241[0]:
| Unspecified vulnerability in ClamAV before 0.95 allows remote
| attackers to bypass detection of malware via a modified RAR archive.
This is already fixed in version 0.95+dfsg-1 in unstable. Please
coordinate with the security team (team@security.debian.org) to prepare
packages for the stable releases.
If you fix the vulnerability please also make sure to include the
CVE id in your changelog entry.
For further information see:
[0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1241
http://security-tracker.debian.net/tracker/CVE-2009-1241
Bug marked as fixed in version 0.95+dfsg-1.
Request was from Paul Wise <pabs@debian.org>
to control@bugs.debian.org.
(Tue, 28 Apr 2009 20:03:02 GMT) (full text, mbox, link).
Reply sent
to Stephen Gran <sgran@debian.org>:
You have taken responsibility.
(Tue, 28 Apr 2009 22:33:08 GMT) (full text, mbox, link).
Notification sent
to "Michael S. Gilbert" <michael.s.gilbert@gmail.com>:
Bug acknowledged by developer.
(Tue, 28 Apr 2009 22:33:08 GMT) (full text, mbox, link).
Message #12 received at 526042-done@bugs.debian.org (full text, mbox, reply):
[Message part 1 (text/plain, inline)]
This one time, at band camp, Michael S. Gilbert said:
> Hi,
> the following CVE (Common Vulnerabilities & Exposures) id was
> published for clamav.
>
> CVE-2009-1241[0]:
> | Unspecified vulnerability in ClamAV before 0.95 allows remote
> | attackers to bypass detection of malware via a modified RAR archive.
Debian does not use the Rar code in clamav at all at the current time,
so this bug doesn't affect us.
Cheers,
--
-----------------------------------------------------------------
| ,''`. Stephen Gran |
| : :' : sgran@debian.org |
| `. `' Debian user, admin, and developer |
| `- http://www.debian.org |
-----------------------------------------------------------------
[signature.asc (application/pgp-signature, inline)]
Bug archived.
Request was from Debbugs Internal Request <owner@bugs.debian.org>
to internal_control@bugs.debian.org.
(Tue, 09 Jun 2009 07:39:44 GMT) (full text, mbox, link).
Send a report that this bug log contains spam.
Debian bug tracking system administrator <owner@bugs.debian.org>.
Last modified:
Wed Jun 19 13:13:20 2019;
Machine Name:
beach
Debian Bug tracking system
Debbugs is free software and licensed under the terms of the GNU
Public License version 2. The current version can be obtained
from https://bugs.debian.org/debbugs-source/.
Copyright © 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson,
2005-2017 Don Armstrong, and many other contributors.
Vulmon