Related Vulnerabilities: CVE-2009-1241 CVE-2008-6680 CVE-2009-1270

Source

Debian Bug report logs - #523016
clamav vulnerability

Package: clamav; Maintainer for clamav is ClamAV Team <pkg-clamav-devel@lists.alioth.debian.org>; Source for clamav is src:clamav (PTS, buildd, popcon).

Reported by: "Michael S. Gilbert" <michael.s.gilbert@gmail.com>

Date: Tue, 7 Apr 2009 21:57:02 UTC

Severity: grave

Tags: security

Fixed in versions clamav/0.94.dfsg.2-1~volatile2, clamav/0.94.dfsg.2-1lenny2, clamav/0.95.1+dfsg-0volatile1, clamav/0.95.1+dfsg-1volatile1

Done: Michael Tautschnig <mt@debian.org>

Bug is archived. No further changes may be made.

Toggle useless messages

View this report as an mbox folder, status mbox, maintainer mbox

Report forwarded to debian-bugs-dist@lists.debian.org, ClamAV Team <pkg-clamav-devel@lists.alioth.debian.org>:
Bug#523016; Package clamav. (Tue, 07 Apr 2009 21:57:05 GMT) (full text, mbox, link).

Acknowledgement sent to "Michael S. Gilbert" <michael.s.gilbert@gmail.com>:
New Bug report received and forwarded. Copy sent to ClamAV Team <pkg-clamav-devel@lists.alioth.debian.org>. (Tue, 07 Apr 2009 21:57:05 GMT) (full text, mbox, link).

Message #5 received at submit@bugs.debian.org (full text, mbox, reply):

package: clamav
severity: grave
tags: security

hi,

ubuntu recently patched a problem in clamav [1].  the description is:

  It was discovered that ClamAV did not properly verify its input when
  processing TAR archives. A remote attacker could send a specially
  crafted TAR file and cause a denial of service via infinite loop.

  It was discovered that ClamAV did not properly validate Portable
  Executable (PE) files. A remote attacker could send a crafted PE file
  and cause a denial of service (divide by zero).

i'm not sure if this is CVE-2009-1241 or if it a new issue.

[1] http://www.ubuntu.com/usn/usn-754-1

Information forwarded to debian-bugs-dist@lists.debian.org, ClamAV Team <pkg-clamav-devel@lists.alioth.debian.org>:
Bug#523016; Package clamav. (Wed, 08 Apr 2009 00:03:03 GMT) (full text, mbox, link).

Acknowledgement sent to Nico Golde <nion@debian.org>:
Extra info received and forwarded to list. Copy sent to ClamAV Team <pkg-clamav-devel@lists.alioth.debian.org>. (Wed, 08 Apr 2009 00:03:03 GMT) (full text, mbox, link).

Message #10 received at 523016@bugs.debian.org (full text, mbox, reply):

[Message part 1 (text/plain, inline)]

Hi,
nope this is not covered by CVE-2009-1241, new CVE id/s 
pending.

Cheers
Nico

-- 
Nico Golde - http://www.ngolde.de - nion@jabber.ccc.de - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.

[Message part 2 (application/pgp-signature, inline)]

Information forwarded to debian-bugs-dist@lists.debian.org, ClamAV Team <pkg-clamav-devel@lists.alioth.debian.org>:
Bug#523016; Package clamav. (Thu, 09 Apr 2009 00:42:02 GMT) (full text, mbox, link).

Acknowledgement sent to Nico Golde <nion@debian.org>:
Extra info received and forwarded to list. Copy sent to ClamAV Team <pkg-clamav-devel@lists.alioth.debian.org>. (Thu, 09 Apr 2009 00:42:02 GMT) (full text, mbox, link).

Message #15 received at 523016@bugs.debian.org (full text, mbox, reply):

[Message part 1 (text/plain, inline)]

Hi,
here are the CVE ids for this:

======================================================
Name: CVE-2008-6680
Status: Candidate
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-6680
Reference: CONFIRM:https://wwws.clamav.net/bugzilla/show_bug.cgi?id=1335

libclamav/pe.c in ClamAV before 0.95 allows remote attackers to cause
a denial of service (crash) via a crafted EXE file that triggers a
divide-by-zero error.


======================================================
Name: CVE-2009-1270
Status: Candidate
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1270
Reference: CONFIRM:https://wwws.clamav.net/bugzilla/show_bug.cgi?id=1462

libclamav/untar.c in ClamAV before 0.95 allows remote attackers to
cause a denial of service (infinite loop) via a crafted file that
causes (1) clamd and (2) clamscan to hang.

Cheers
Nico
-- 
Nico Golde - http://www.ngolde.de - nion@jabber.ccc.de - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.

[Message part 2 (application/pgp-signature, inline)]

Acknowledgement sent to Michael Tautschnig <mt@debian.org>:
Extra info received and forwarded to list. Copy sent to ClamAV Team <pkg-clamav-devel@lists.alioth.debian.org>. (Thu, 09 Apr 2009 23:03:02 GMT) (full text, mbox, link).

Message #20 received at 523016@bugs.debian.org (full text, mbox, reply):

[Message part 1 (text/plain, inline)]

> Hi,
> here are the CVE ids for this:
> 
> ======================================================
> Name: CVE-2008-6680
> Status: Candidate
> URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-6680
> Reference: CONFIRM:https://wwws.clamav.net/bugzilla/show_bug.cgi?id=1335
> 
> libclamav/pe.c in ClamAV before 0.95 allows remote attackers to cause
> a denial of service (crash) via a crafted EXE file that triggers a
> divide-by-zero error.
> 
> 
> ======================================================
> Name: CVE-2009-1270
> Status: Candidate
> URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1270
> Reference: CONFIRM:https://wwws.clamav.net/bugzilla/show_bug.cgi?id=1462
> 
> libclamav/untar.c in ClamAV before 0.95 allows remote attackers to
> cause a denial of service (infinite loop) via a crafted file that
> causes (1) clamd and (2) clamscan to hang.
> 

Thanks a lot for digging up these. A patched version is sitting in our
repository and we'll soon send out the patch and upload request to the security
team.

Best,
Michael

[Message part 2 (application/pgp-signature, inline)]

Reply sent to Michael Tautschnig <mt@debian.org>:
You have taken responsibility. (Fri, 10 Apr 2009 16:21:11 GMT) (full text, mbox, link).

Notification sent to "Michael S. Gilbert" <michael.s.gilbert@gmail.com>:
Bug acknowledged by developer. (Fri, 10 Apr 2009 16:21:11 GMT) (full text, mbox, link).

Message #25 received at 523016-close@bugs.debian.org (full text, mbox, reply):

Source: clamav
Source-Version: 0.94.dfsg.2-1~volatile2

We believe that the bug you reported is fixed in the latest version of
clamav, which is due to be installed in the volatile.debian.org FTP archive:

clamav-base_0.94.dfsg.2-1~volatile2_all.deb
  to pool/volatile/main/c/clamav/clamav-base_0.94.dfsg.2-1~volatile2_all.deb
clamav-daemon_0.94.dfsg.2-1~volatile2_amd64.deb
  to pool/volatile/main/c/clamav/clamav-daemon_0.94.dfsg.2-1~volatile2_amd64.deb
clamav-dbg_0.94.dfsg.2-1~volatile2_amd64.deb
  to pool/volatile/main/c/clamav/clamav-dbg_0.94.dfsg.2-1~volatile2_amd64.deb
clamav-docs_0.94.dfsg.2-1~volatile2_all.deb
  to pool/volatile/main/c/clamav/clamav-docs_0.94.dfsg.2-1~volatile2_all.deb
clamav-freshclam_0.94.dfsg.2-1~volatile2_amd64.deb
  to pool/volatile/main/c/clamav/clamav-freshclam_0.94.dfsg.2-1~volatile2_amd64.deb
clamav-milter_0.94.dfsg.2-1~volatile2_amd64.deb
  to pool/volatile/main/c/clamav/clamav-milter_0.94.dfsg.2-1~volatile2_amd64.deb
clamav-testfiles_0.94.dfsg.2-1~volatile2_all.deb
  to pool/volatile/main/c/clamav/clamav-testfiles_0.94.dfsg.2-1~volatile2_all.deb
clamav_0.94.dfsg.2-1~volatile2.diff.gz
  to pool/volatile/main/c/clamav/clamav_0.94.dfsg.2-1~volatile2.diff.gz
clamav_0.94.dfsg.2-1~volatile2.dsc
  to pool/volatile/main/c/clamav/clamav_0.94.dfsg.2-1~volatile2.dsc
clamav_0.94.dfsg.2-1~volatile2_amd64.deb
  to pool/volatile/main/c/clamav/clamav_0.94.dfsg.2-1~volatile2_amd64.deb
libclamav-dev_0.94.dfsg.2-1~volatile2_amd64.deb
  to pool/volatile/main/c/clamav/libclamav-dev_0.94.dfsg.2-1~volatile2_amd64.deb
libclamav5_0.94.dfsg.2-1~volatile2_amd64.deb
  to pool/volatile/main/c/clamav/libclamav5_0.94.dfsg.2-1~volatile2_amd64.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 523016@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

volatile.debian.org distribution maintenance software
pp.
Michael Tautschnig <mt@debian.org> (supplier of updated clamav package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@volatile.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Thu, 09 Apr 2009 22:05:21 +0200
Source: clamav
Binary: clamav libclamav-dev clamav-dbg clamav-milter clamav-base clamav-freshclam clamav-testfiles libclamav5 clamav-daemon clamav-docs
Architecture: source amd64 all
Version: 0.94.dfsg.2-1~volatile2
Distribution: etch-volatile
Urgency: low
Maintainer: ClamAV Team <pkg-clamav-devel@lists.alioth.debian.org>
Changed-By: Michael Tautschnig <mt@debian.org>
Description: 
 clamav     - anti-virus utility for Unix - command-line interface
 clamav-base - anti-virus utility for Unix - base package
 clamav-daemon - anti-virus utility for Unix - scanner daemon
 clamav-dbg - debug symbols for ClamAV
 clamav-docs - anti-virus utility for Unix - documentation
 clamav-freshclam - anti-virus utility for Unix - virus database update utility
 clamav-milter - anti-virus utility for Unix - sendmail integration
 clamav-testfiles - anti-virus utility for Unix - test files
 libclamav-dev - anti-virus utility for Unix - development files
 libclamav5 - anti-virus utility for Unix - library
Closes: 522744 523016
Changes: 
 clamav (0.94.dfsg.2-1~volatile2) etch-volatile; urgency=low
 .
   [ Scott Kittermann ]
   * Backported change from 0.95 of FLEVEL_DCONF to be able to re-enable
     signatures when security issues have been fixed.
   * Security issues addressed in this release (closes: #523016, 522744):
     - [CVE-2008-6680] Fixed division by zero with --detect-broken.
     - [CVE-2009-1270] clamd and clamscan get hung up.
Files: 
 1293a9f27fe5a6ae4178ef458ef7c95e 995 utils optional clamav_0.94.dfsg.2-1~volatile2.dsc
 4b9528da4cbc59597f052401058d97a5 156074 utils optional clamav_0.94.dfsg.2-1~volatile2.diff.gz
 765f3b3a4f227a02255d0de7de7ee655 19493774 utils optional clamav-base_0.94.dfsg.2-1~volatile2_all.deb
 97480bbe14601560b73829bd4ef25d0a 205536 utils optional clamav-testfiles_0.94.dfsg.2-1~volatile2_all.deb
 5fa0bde0006677aa9ec46be1d419d032 1077216 doc optional clamav-docs_0.94.dfsg.2-1~volatile2_all.deb
 d56c1efb1a0d178139b2777e7fc2b44a 523828 libs optional libclamav5_0.94.dfsg.2-1~volatile2_amd64.deb
 f1ab886de0551a8f4b2d5efb5a105092 232490 utils optional clamav_0.94.dfsg.2-1~volatile2_amd64.deb
 1fd04b791dd100da758a97ff8985c014 234876 utils optional clamav-daemon_0.94.dfsg.2-1~volatile2_amd64.deb
 fde842ce595a66073e8bcc7b1d8ccb0d 250374 utils optional clamav-freshclam_0.94.dfsg.2-1~volatile2_amd64.deb
 931ccdb3e1d717832d68f64bf86e4fa3 228090 utils extra clamav-milter_0.94.dfsg.2-1~volatile2_amd64.deb
 f1aaade7a09ab9fa719b696a898ff9f2 561302 libdevel optional libclamav-dev_0.94.dfsg.2-1~volatile2_amd64.deb
 03f59f029faa22ea7d0d939e39383d5b 845758 utils extra clamav-dbg_0.94.dfsg.2-1~volatile2_amd64.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFJ32FWvx6dH3bVKsQRAoYUAJ9jekWHPpfT3biDGjwwD39yIkJUqQCgz2B0
u3ubJ0Mclhf+Palm6xBGmh0=
=8Ckd
-----END PGP SIGNATURE-----

Reply sent to Michael Tautschnig <mt@debian.org>:
You have taken responsibility. (Tue, 21 Apr 2009 20:15:11 GMT) (full text, mbox, link).

Notification sent to "Michael S. Gilbert" <michael.s.gilbert@gmail.com>:
Bug acknowledged by developer. (Tue, 21 Apr 2009 20:15:11 GMT) (full text, mbox, link).

Message #30 received at 523016-close@bugs.debian.org (full text, mbox, reply):

Source: clamav
Source-Version: 0.94.dfsg.2-1lenny2

We believe that the bug you reported is fixed in the latest version of
clamav, which is due to be installed in the Debian FTP archive:

clamav-base_0.94.dfsg.2-1lenny2_all.deb
  to pool/main/c/clamav/clamav-base_0.94.dfsg.2-1lenny2_all.deb
clamav-daemon_0.94.dfsg.2-1lenny2_amd64.deb
  to pool/main/c/clamav/clamav-daemon_0.94.dfsg.2-1lenny2_amd64.deb
clamav-dbg_0.94.dfsg.2-1lenny2_amd64.deb
  to pool/main/c/clamav/clamav-dbg_0.94.dfsg.2-1lenny2_amd64.deb
clamav-docs_0.94.dfsg.2-1lenny2_all.deb
  to pool/main/c/clamav/clamav-docs_0.94.dfsg.2-1lenny2_all.deb
clamav-freshclam_0.94.dfsg.2-1lenny2_amd64.deb
  to pool/main/c/clamav/clamav-freshclam_0.94.dfsg.2-1lenny2_amd64.deb
clamav-milter_0.94.dfsg.2-1lenny2_amd64.deb
  to pool/main/c/clamav/clamav-milter_0.94.dfsg.2-1lenny2_amd64.deb
clamav-testfiles_0.94.dfsg.2-1lenny2_all.deb
  to pool/main/c/clamav/clamav-testfiles_0.94.dfsg.2-1lenny2_all.deb
clamav_0.94.dfsg.2-1lenny2.diff.gz
  to pool/main/c/clamav/clamav_0.94.dfsg.2-1lenny2.diff.gz
clamav_0.94.dfsg.2-1lenny2.dsc
  to pool/main/c/clamav/clamav_0.94.dfsg.2-1lenny2.dsc
clamav_0.94.dfsg.2-1lenny2_amd64.deb
  to pool/main/c/clamav/clamav_0.94.dfsg.2-1lenny2_amd64.deb
libclamav-dev_0.94.dfsg.2-1lenny2_amd64.deb
  to pool/main/c/clamav/libclamav-dev_0.94.dfsg.2-1lenny2_amd64.deb
libclamav5_0.94.dfsg.2-1lenny2_amd64.deb
  to pool/main/c/clamav/libclamav5_0.94.dfsg.2-1lenny2_amd64.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 523016@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Michael Tautschnig <mt@debian.org> (supplier of updated clamav package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Tue, 14 Apr 2009 16:53:46 +0200
Source: clamav
Binary: clamav-base clamav-docs clamav-dbg clamav libclamav-dev libclamav5 clamav-daemon clamav-testfiles clamav-freshclam clamav-milter
Architecture: source all amd64
Version: 0.94.dfsg.2-1lenny2
Distribution: stable-security
Urgency: low
Maintainer: ClamAV Team <pkg-clamav-devel@lists.alioth.debian.org>
Changed-By: Michael Tautschnig <mt@debian.org>
Description: 
 clamav     - anti-virus utility for Unix - command-line interface
 clamav-base - anti-virus utility for Unix - base package
 clamav-daemon - anti-virus utility for Unix - scanner daemon
 clamav-dbg - debug symbols for ClamAV
 clamav-docs - anti-virus utility for Unix - documentation
 clamav-freshclam - anti-virus utility for Unix - virus database update utility
 clamav-milter - anti-virus utility for Unix - sendmail integration
 clamav-testfiles - anti-virus utility for Unix - test files
 libclamav-dev - anti-virus utility for Unix - development files
 libclamav5 - anti-virus utility for Unix - library
Closes: 522744 523016
Changes: 
 clamav (0.94.dfsg.2-1lenny2) stable-security; urgency=low
 .
   [ Scott Kittermann ]
   * Backported change from 0.95 of FLEVEL_DCONF to be able to re-enable
     signatures when security issues have been fixed.
   * Security issues addressed in this release (closes: #523016, 522744):
     - [CVE-2008-6680] Fixed division by zero with --detect-broken.
     - [CVE-2009-1270] clamd and clamscan get hung up.
 .
   [ Michael Tautschnig ]
   * Backported hardening of CLI_ISCONTAINED macros (fixes UPack crash with
     malformed file, #1552)
Checksums-Sha1: 
 fc6b8dcd20d1f90a79449a6426acac0d752e13ca 1411 clamav_0.94.dfsg.2-1lenny2.dsc
 73a8968a1925efea50260c75f1a1b7807af8ac9d 22073819 clamav_0.94.dfsg.2.orig.tar.gz
 e3bead31261af5b3136d89c3628eb775bf6a7445 159237 clamav_0.94.dfsg.2-1lenny2.diff.gz
 8a0972042905e1b990c664a6533f8a3639760103 19495586 clamav-base_0.94.dfsg.2-1lenny2_all.deb
 47166eb70ad101cedd6708a2a953e4a616eec6dd 207358 clamav-testfiles_0.94.dfsg.2-1lenny2_all.deb
 e9cd1ac872caed7be353a5420be255db313ea0d8 1079046 clamav-docs_0.94.dfsg.2-1lenny2_all.deb
 ff7d159c84620355febc3ec29532bcc66cf10b29 537718 libclamav5_0.94.dfsg.2-1lenny2_amd64.deb
 90a04fe682c9158eaa568e00f7c52ff66577435f 234846 clamav_0.94.dfsg.2-1lenny2_amd64.deb
 4f068481cf8ce790a0ff1cb80827fe8575a830fd 237738 clamav-daemon_0.94.dfsg.2-1lenny2_amd64.deb
 b06737af1e17fb02b8f42f93fbf82c1ce747beb2 252658 clamav-freshclam_0.94.dfsg.2-1lenny2_amd64.deb
 eb5d966256f13e4f9a2a9add8060c176df2e0509 231494 clamav-milter_0.94.dfsg.2-1lenny2_amd64.deb
 ad0e7722e8758fdb26e606a6a2fa19465b895dc0 571656 libclamav-dev_0.94.dfsg.2-1lenny2_amd64.deb
 6ecc0f9a26b407b2980e3d5d2f0197469236b307 865116 clamav-dbg_0.94.dfsg.2-1lenny2_amd64.deb
Checksums-Sha256: 
 e11254e010391ec0539087e4fc31492d1ca9ad0981a4d9cbbfb50df7758026d5 1411 clamav_0.94.dfsg.2-1lenny2.dsc
 421aedf91ade791a5609d1127399a153aa856712e33c2ae59f7b88e2605c05ed 22073819 clamav_0.94.dfsg.2.orig.tar.gz
 950519b5aa2fb5e7c310645dfec0361ec0850b4e29b122797a8893baea35eaa2 159237 clamav_0.94.dfsg.2-1lenny2.diff.gz
 7d49639d8abf114d42e5acf73e73ac5718a8cadade52470374fb7d16eeb41841 19495586 clamav-base_0.94.dfsg.2-1lenny2_all.deb
 ac0e033f9bad41eecffbd03e9ec0217bc7cb26d1ddb6b1c2f071be6afeffbccd 207358 clamav-testfiles_0.94.dfsg.2-1lenny2_all.deb
 1d6dc78a08692689aa86aa28ee70c5bc1b2814574127c6c15e13666c80bed558 1079046 clamav-docs_0.94.dfsg.2-1lenny2_all.deb
 e538d25855d19d4e450272d2267e2ccb60dab4c0f17b3c6c3bc8ad634e17ec4a 537718 libclamav5_0.94.dfsg.2-1lenny2_amd64.deb
 0e92a454d3e221c3138eefd68b2e4e1d85c0cbcc0bbfca24b2184c5c0f7dd6a4 234846 clamav_0.94.dfsg.2-1lenny2_amd64.deb
 cf143e24556d134e66047815aa5b5bb1996fba2eb6ab530327023cdd86a3be4f 237738 clamav-daemon_0.94.dfsg.2-1lenny2_amd64.deb
 7a64910633060212d72dbf6a6e6a5c4624ef190185afb38b5caa795a618735ef 252658 clamav-freshclam_0.94.dfsg.2-1lenny2_amd64.deb
 d8c12a92e43dce90ca9c7a80715f062e3dfc021264197707412218c7734f37b2 231494 clamav-milter_0.94.dfsg.2-1lenny2_amd64.deb
 884b5954705b61b55d77df0a3ecfd9f26ee8b55c6fbcf8c87a3f2e17a36ec869 571656 libclamav-dev_0.94.dfsg.2-1lenny2_amd64.deb
 68c3c8ea4220d6fa8efbeb6452a457fa195c29cd92af7b80161615edc0473c39 865116 clamav-dbg_0.94.dfsg.2-1lenny2_amd64.deb
Files: 
 5217b56ac23f06ca65ef3ea5aeb24841 1411 utils optional clamav_0.94.dfsg.2-1lenny2.dsc
 7b45b0c54b887b23cb49e4bff807cf58 22073819 utils optional clamav_0.94.dfsg.2.orig.tar.gz
 d31334a956f54c30cb95c99273c6de7e 159237 utils optional clamav_0.94.dfsg.2-1lenny2.diff.gz
 0fffde16847013d6adce47a0457f455f 19495586 utils optional clamav-base_0.94.dfsg.2-1lenny2_all.deb
 4cfa028b1b7f9408e300a22ec807c6e7 207358 utils optional clamav-testfiles_0.94.dfsg.2-1lenny2_all.deb
 649f899e8d50b7c00a5d463038a158b7 1079046 doc optional clamav-docs_0.94.dfsg.2-1lenny2_all.deb
 e2d98d5abaa6dc69c7f04a2fba6b85aa 537718 libs optional libclamav5_0.94.dfsg.2-1lenny2_amd64.deb
 c4e05de999689f8ee619bf64e6e8802b 234846 utils optional clamav_0.94.dfsg.2-1lenny2_amd64.deb
 8d44aa0a9a253c0be06b404853e777cd 237738 utils optional clamav-daemon_0.94.dfsg.2-1lenny2_amd64.deb
 51e70fea9d6da3ef8ff426ea74597604 252658 utils optional clamav-freshclam_0.94.dfsg.2-1lenny2_amd64.deb
 b975f22836d8de10d74f304ae6c614a4 231494 utils extra clamav-milter_0.94.dfsg.2-1lenny2_amd64.deb
 9c2734c96a92f5aad81d1ed74c0b41a9 571656 libdevel optional libclamav-dev_0.94.dfsg.2-1lenny2_amd64.deb
 4b8762dca5e0ef54edc4edf1b09c6c5e 865116 utils extra clamav-dbg_0.94.dfsg.2-1lenny2_amd64.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iEYEARECAAYFAknk6QsACgkQvx6dH3bVKsSJ4QCgoTg4A5iQCKNp/oRGdgiiGYyH
Q7IAn04iuNfl3+8nXDmyBGG5EzQ79AR8
=BsnP
-----END PGP SIGNATURE-----

Reply sent to Stephen Gran <sgran@debian.org>:
You have taken responsibility. (Tue, 21 Apr 2009 22:30:15 GMT) (full text, mbox, link).

Notification sent to "Michael S. Gilbert" <michael.s.gilbert@gmail.com>:
Bug acknowledged by developer. (Tue, 21 Apr 2009 22:30:15 GMT) (full text, mbox, link).

Message #35 received at 523016-close@bugs.debian.org (full text, mbox, reply):

Source: clamav
Source-Version: 0.95.1+dfsg-0volatile1

We believe that the bug you reported is fixed in the latest version of
clamav, which is due to be installed in the volatile.debian.org FTP archive:

clamav-base_0.95.1+dfsg-0volatile1_all.deb
  to pool/volatile/main/c/clamav/clamav-base_0.95.1+dfsg-0volatile1_all.deb
clamav-daemon_0.95.1+dfsg-0volatile1_i386.deb
  to pool/volatile/main/c/clamav/clamav-daemon_0.95.1+dfsg-0volatile1_i386.deb
clamav-dbg_0.95.1+dfsg-0volatile1_i386.deb
  to pool/volatile/main/c/clamav/clamav-dbg_0.95.1+dfsg-0volatile1_i386.deb
clamav-docs_0.95.1+dfsg-0volatile1_all.deb
  to pool/volatile/main/c/clamav/clamav-docs_0.95.1+dfsg-0volatile1_all.deb
clamav-freshclam_0.95.1+dfsg-0volatile1_i386.deb
  to pool/volatile/main/c/clamav/clamav-freshclam_0.95.1+dfsg-0volatile1_i386.deb
clamav-milter_0.95.1+dfsg-0volatile1_i386.deb
  to pool/volatile/main/c/clamav/clamav-milter_0.95.1+dfsg-0volatile1_i386.deb
clamav-testfiles_0.95.1+dfsg-0volatile1_all.deb
  to pool/volatile/main/c/clamav/clamav-testfiles_0.95.1+dfsg-0volatile1_all.deb
clamav_0.95.1+dfsg-0volatile1.diff.gz
  to pool/volatile/main/c/clamav/clamav_0.95.1+dfsg-0volatile1.diff.gz
clamav_0.95.1+dfsg-0volatile1.dsc
  to pool/volatile/main/c/clamav/clamav_0.95.1+dfsg-0volatile1.dsc
clamav_0.95.1+dfsg-0volatile1_i386.deb
  to pool/volatile/main/c/clamav/clamav_0.95.1+dfsg-0volatile1_i386.deb
clamav_0.95.1+dfsg.orig.tar.gz
  to pool/volatile/main/c/clamav/clamav_0.95.1+dfsg.orig.tar.gz
libclamav-dev_0.95.1+dfsg-0volatile1_i386.deb
  to pool/volatile/main/c/clamav/libclamav-dev_0.95.1+dfsg-0volatile1_i386.deb
libclamav6_0.95.1+dfsg-0volatile1_i386.deb
  to pool/volatile/main/c/clamav/libclamav6_0.95.1+dfsg-0volatile1_i386.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 523016@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

volatile.debian.org distribution maintenance software
pp.
Stephen Gran <sgran@debian.org> (supplier of updated clamav package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@volatile.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Tue, 21 Apr 2009 21:40:13 +0100
Source: clamav
Binary: clamav libclamav-dev clamav-dbg clamav-milter clamav-base clamav-freshclam clamav-testfiles clamav-daemon clamav-docs libclamav6
Architecture: source i386 all
Version: 0.95.1+dfsg-0volatile1
Distribution: etch-volatile
Urgency: high
Maintainer: ClamAV Team <pkg-clamav-devel@lists.alioth.debian.org>
Changed-By: Stephen Gran <sgran@debian.org>
Description: 
 clamav     - anti-virus utility for Unix - command-line interface
 clamav-base - anti-virus utility for Unix - base package
 clamav-daemon - anti-virus utility for Unix - scanner daemon
 clamav-dbg - debug symbols for ClamAV
 clamav-docs - anti-virus utility for Unix - documentation
 clamav-freshclam - anti-virus utility for Unix - virus database update utility
 clamav-milter - anti-virus utility for Unix - sendmail integration
 clamav-testfiles - anti-virus utility for Unix - test files
 libclamav-dev - anti-virus utility for Unix - development files
 libclamav6 - anti-virus utility for Unix - library
Closes: 523016
Changes: 
 clamav (0.95.1+dfsg-0volatile1) etch-volatile; urgency=high
 .
   * Prepare volatile upload
   * Fixes DoS in tar unpacker (closes: #523016)
Files: 
 dd241d11d635bfc8ccf30acd407589c2 1006 utils optional clamav_0.95.1+dfsg-0volatile1.dsc
 1e9618ac1b9b58e5c1c1b665adf26749 24233062 utils optional clamav_0.95.1+dfsg.orig.tar.gz
 82bb92c6d91305a2b64d2daa6cb2252e 236334 utils optional clamav_0.95.1+dfsg-0volatile1.diff.gz
 ff08b2705fccd01ced73d7c2e3ea072f 21396656 utils optional clamav-base_0.95.1+dfsg-0volatile1_all.deb
 c8216865e39ce3f401df519a09bcd632 222066 utils optional clamav-testfiles_0.95.1+dfsg-0volatile1_all.deb
 eaba90ededff3be36e77719aceeacc64 1110464 doc optional clamav-docs_0.95.1+dfsg-0volatile1_all.deb
 8677c1e7ae6459fa25fc029be129469d 574136 libs optional libclamav6_0.95.1+dfsg-0volatile1_i386.deb
 f47d263174a9b4419b63763a9aa37dd0 264470 utils optional clamav_0.95.1+dfsg-0volatile1_i386.deb
 15674a21c9f5f978bdbe8244dc75ceb2 373452 utils optional clamav-daemon_0.95.1+dfsg-0volatile1_i386.deb
 3a2f3041cd98756243732dd7317ab2ec 273618 utils optional clamav-freshclam_0.95.1+dfsg-0volatile1_i386.deb
 7fce16db587f1ef048c650a6e21f7325 256512 utils extra clamav-milter_0.95.1+dfsg-0volatile1_i386.deb
 040a6c3b8d2ab98d747b42a26d5f8721 602644 libdevel optional libclamav-dev_0.95.1+dfsg-0volatile1_i386.deb
 bd2ac5d8467b4a9bc8b80cb13f471061 1073060 debug extra clamav-dbg_0.95.1+dfsg-0volatile1_i386.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFJ7kD/SYIMHOpZA44RAq0eAKCWgZxB4n3VqI+JYNVFeY/znr3F/ACffFfC
Ecx2UrF0Zg/r1M7AxyJXv9U=
=HRmf
-----END PGP SIGNATURE-----

Reply sent to Stephen Gran <sgran@debian.org>:
You have taken responsibility. (Tue, 21 Apr 2009 22:54:03 GMT) (full text, mbox, link).

Notification sent to "Michael S. Gilbert" <michael.s.gilbert@gmail.com>:
Bug acknowledged by developer. (Tue, 21 Apr 2009 22:54:03 GMT) (full text, mbox, link).

Message #40 received at 523016-close@bugs.debian.org (full text, mbox, reply):

Source: clamav
Source-Version: 0.95.1+dfsg-1volatile1

We believe that the bug you reported is fixed in the latest version of
clamav, which is due to be installed in the volatile.debian.org FTP archive:

clamav-base_0.95.1+dfsg-1volatile1_all.deb
  to pool/volatile/main/c/clamav/clamav-base_0.95.1+dfsg-1volatile1_all.deb
clamav-daemon_0.95.1+dfsg-1volatile1_amd64.deb
  to pool/volatile/main/c/clamav/clamav-daemon_0.95.1+dfsg-1volatile1_amd64.deb
clamav-dbg_0.95.1+dfsg-1volatile1_amd64.deb
  to pool/volatile/main/c/clamav/clamav-dbg_0.95.1+dfsg-1volatile1_amd64.deb
clamav-docs_0.95.1+dfsg-1volatile1_all.deb
  to pool/volatile/main/c/clamav/clamav-docs_0.95.1+dfsg-1volatile1_all.deb
clamav-freshclam_0.95.1+dfsg-1volatile1_amd64.deb
  to pool/volatile/main/c/clamav/clamav-freshclam_0.95.1+dfsg-1volatile1_amd64.deb
clamav-milter_0.95.1+dfsg-1volatile1_amd64.deb
  to pool/volatile/main/c/clamav/clamav-milter_0.95.1+dfsg-1volatile1_amd64.deb
clamav-testfiles_0.95.1+dfsg-1volatile1_all.deb
  to pool/volatile/main/c/clamav/clamav-testfiles_0.95.1+dfsg-1volatile1_all.deb
clamav_0.95.1+dfsg-1volatile1.diff.gz
  to pool/volatile/main/c/clamav/clamav_0.95.1+dfsg-1volatile1.diff.gz
clamav_0.95.1+dfsg-1volatile1.dsc
  to pool/volatile/main/c/clamav/clamav_0.95.1+dfsg-1volatile1.dsc
clamav_0.95.1+dfsg-1volatile1_amd64.deb
  to pool/volatile/main/c/clamav/clamav_0.95.1+dfsg-1volatile1_amd64.deb
libclamav-dev_0.95.1+dfsg-1volatile1_amd64.deb
  to pool/volatile/main/c/clamav/libclamav-dev_0.95.1+dfsg-1volatile1_amd64.deb
libclamav6_0.95.1+dfsg-1volatile1_amd64.deb
  to pool/volatile/main/c/clamav/libclamav6_0.95.1+dfsg-1volatile1_amd64.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 523016@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

volatile.debian.org distribution maintenance software
pp.
Stephen Gran <sgran@debian.org> (supplier of updated clamav package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@volatile.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Tue, 21 Apr 2009 21:40:13 +0100
Source: clamav
Binary: clamav-base clamav-docs clamav-dbg clamav libclamav-dev libclamav6 clamav-daemon clamav-testfiles clamav-freshclam clamav-milter
Architecture: source all amd64
Version: 0.95.1+dfsg-1volatile1
Distribution: lenny-volatile
Urgency: high
Maintainer: ClamAV Team <pkg-clamav-devel@lists.alioth.debian.org>
Changed-By: Stephen Gran <sgran@debian.org>
Description: 
 clamav     - anti-virus utility for Unix - command-line interface
 clamav-base - anti-virus utility for Unix - base package
 clamav-daemon - anti-virus utility for Unix - scanner daemon
 clamav-dbg - debug symbols for ClamAV
 clamav-docs - anti-virus utility for Unix - documentation
 clamav-freshclam - anti-virus utility for Unix - virus database update utility
 clamav-milter - anti-virus utility for Unix - sendmail integration
 clamav-testfiles - anti-virus utility for Unix - test files
 libclamav-dev - anti-virus utility for Unix - development files
 libclamav6 - anti-virus utility for Unix - library
Closes: 523016
Changes: 
 clamav (0.95.1+dfsg-1volatile1) lenny-volatile; urgency=high
 .
   * Prepare volatile upload
   * Fixes DoS in tar unpacker (closes: #523016)
Checksums-Sha1: 
 c93d5d315bc6d9663abcecf0dcd44c8d1c27c2ec 1458 clamav_0.95.1+dfsg-1volatile1.dsc
 5b08fad75a8d4a6afeb71a2d4ef09635e3374ba0 236443 clamav_0.95.1+dfsg-1volatile1.diff.gz
 9ce2cd3544fa3aaf41689161b0ec843b4d23713f 21398644 clamav-base_0.95.1+dfsg-1volatile1_all.deb
 1146fb08f3bf2791b8d40b7bd9290a3a27e93007 223880 clamav-testfiles_0.95.1+dfsg-1volatile1_all.deb
 1121935a57b985d814f8c4325888b16810850e25 1113636 clamav-docs_0.95.1+dfsg-1volatile1_all.deb
 63d06edf73639340d9f27f28c6b7a8da5e4c979b 575684 libclamav6_0.95.1+dfsg-1volatile1_amd64.deb
 f9bf90be5b40e53944b1f6b947cc4463ebc5f7f9 270754 clamav_0.95.1+dfsg-1volatile1_amd64.deb
 65bfb5f532b66bb257205fdbf0945053bb21b82d 390626 clamav-daemon_0.95.1+dfsg-1volatile1_amd64.deb
 7ae657cd09f7098dc050c34b93b4f021a11f4472 278140 clamav-freshclam_0.95.1+dfsg-1volatile1_amd64.deb
 faa4db34800dc1a58b84094c8abf395668d70f44 262810 clamav-milter_0.95.1+dfsg-1volatile1_amd64.deb
 afed429d5a1bf69a61e3c220ba565d05dbe7f21a 616402 libclamav-dev_0.95.1+dfsg-1volatile1_amd64.deb
 9ee2ab3baa6442948870642d5fb4cb7c7957c521 1147536 clamav-dbg_0.95.1+dfsg-1volatile1_amd64.deb
Checksums-Sha256: 
 7359db27693e3ae3e9b55f7979bed8c7d29919471a24f134a7bbf824647a36d2 1458 clamav_0.95.1+dfsg-1volatile1.dsc
 401cb26febd64e3c17d6838cd1fa788a5872bf62ea66d46c5cc926cdd69a3d73 236443 clamav_0.95.1+dfsg-1volatile1.diff.gz
 0bcae9ba9531afb1c439bd1f1c31f8d0a8f0a3ad442f9d5741c4ae4c0dbd3d18 21398644 clamav-base_0.95.1+dfsg-1volatile1_all.deb
 bc5abd44d2debe6d4858b359e8be1c8e238641fac8b8f302715dc25ba9b459aa 223880 clamav-testfiles_0.95.1+dfsg-1volatile1_all.deb
 cdc845d3a97a2d2eac1d1d88eead7b1dcbe82fcd1e328ba07233db39b9312e79 1113636 clamav-docs_0.95.1+dfsg-1volatile1_all.deb
 9330fffbdad7ac20aadcf8a4a7f35a5d34efba2e9cd50a39e493c1e2459aa7da 575684 libclamav6_0.95.1+dfsg-1volatile1_amd64.deb
 cd903ecdeefd85076650eae17e1bfb8e6dfb3b0ce242f80a946e241453a835c2 270754 clamav_0.95.1+dfsg-1volatile1_amd64.deb
 9675fb6e318a9a0e1cb06c4ba1a5db749a9ea723bd944f34b1d248e3916bd890 390626 clamav-daemon_0.95.1+dfsg-1volatile1_amd64.deb
 3d7d0af1013fbd058c58c23e0795fbc419875378e6743171d3cd147b574dd47d 278140 clamav-freshclam_0.95.1+dfsg-1volatile1_amd64.deb
 16ad9ea880598205c6effe4c3bc590e4e0fbb5ce438fba7b73cbd5c3d60d953b 262810 clamav-milter_0.95.1+dfsg-1volatile1_amd64.deb
 c7671a51bfcc9e2b6d7bf5b043f5214f3115edbb1037d86f99cd2a58e32388c3 616402 libclamav-dev_0.95.1+dfsg-1volatile1_amd64.deb
 dfd67dd613ca7725c6988376ceaf9270728056eab7a5ca88f0af2736f05c61bb 1147536 clamav-dbg_0.95.1+dfsg-1volatile1_amd64.deb
Files: 
 44a8f22486596bd12d19c36325a59531 1458 utils optional clamav_0.95.1+dfsg-1volatile1.dsc
 40f4aeb378545a98a428aa462cfb862b 236443 utils optional clamav_0.95.1+dfsg-1volatile1.diff.gz
 ff204e01a2a8fe2883d1abd4f65c569c 21398644 utils optional clamav-base_0.95.1+dfsg-1volatile1_all.deb
 bb50043c7fd7cf3cf2f98ec1bcb47f92 223880 utils optional clamav-testfiles_0.95.1+dfsg-1volatile1_all.deb
 3b5610282e5c93d6e2dacdee0d4d4b94 1113636 doc optional clamav-docs_0.95.1+dfsg-1volatile1_all.deb
 81d62665d47d94c2cf42f5d5ac7ebf42 575684 libs optional libclamav6_0.95.1+dfsg-1volatile1_amd64.deb
 1e9186b86ddfebeb6ac8be9abb28f7f6 270754 utils optional clamav_0.95.1+dfsg-1volatile1_amd64.deb
 1b1cc0c1ae4df224ceff369bd0cac29e 390626 utils optional clamav-daemon_0.95.1+dfsg-1volatile1_amd64.deb
 c6aa369720922c3a2b762f528668411c 278140 utils optional clamav-freshclam_0.95.1+dfsg-1volatile1_amd64.deb
 49d153d876f015c2f8389466a6b492e0 262810 utils extra clamav-milter_0.95.1+dfsg-1volatile1_amd64.deb
 541f199214c7b198caac95e2183a840c 616402 libdevel optional libclamav-dev_0.95.1+dfsg-1volatile1_amd64.deb
 531b9eb5d786224bc45d0eeea0d5a6a8 1147536 debug extra clamav-dbg_0.95.1+dfsg-1volatile1_amd64.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iEYEARECAAYFAknuScsACgkQSYIMHOpZA47+TgCfVnFQ84DuLZpVEAnGcBXTVlrN
mssAoMdX6BP7cY2xlgRoWUrw9rVKEpYD
=sn4m
-----END PGP SIGNATURE-----

Reply sent to Michael Tautschnig <mt@debian.org>:
You have taken responsibility. (Sat, 27 Jun 2009 16:42:17 GMT) (full text, mbox, link).

Notification sent to "Michael S. Gilbert" <michael.s.gilbert@gmail.com>:
Bug acknowledged by developer. (Sat, 27 Jun 2009 16:42:17 GMT) (full text, mbox, link).

Message #45 received at 523016-close@bugs.debian.org (full text, mbox, reply):

Source: clamav
Source-Version: 0.94.dfsg.2-1lenny2

We believe that the bug you reported is fixed in the latest version of
clamav, which is due to be installed in the Debian FTP archive:

clamav-base_0.94.dfsg.2-1lenny2_all.deb
  to pool/main/c/clamav/clamav-base_0.94.dfsg.2-1lenny2_all.deb
clamav-daemon_0.94.dfsg.2-1lenny2_amd64.deb
  to pool/main/c/clamav/clamav-daemon_0.94.dfsg.2-1lenny2_amd64.deb
clamav-dbg_0.94.dfsg.2-1lenny2_amd64.deb
  to pool/main/c/clamav/clamav-dbg_0.94.dfsg.2-1lenny2_amd64.deb
clamav-docs_0.94.dfsg.2-1lenny2_all.deb
  to pool/main/c/clamav/clamav-docs_0.94.dfsg.2-1lenny2_all.deb
clamav-freshclam_0.94.dfsg.2-1lenny2_amd64.deb
  to pool/main/c/clamav/clamav-freshclam_0.94.dfsg.2-1lenny2_amd64.deb
clamav-milter_0.94.dfsg.2-1lenny2_amd64.deb
  to pool/main/c/clamav/clamav-milter_0.94.dfsg.2-1lenny2_amd64.deb
clamav-testfiles_0.94.dfsg.2-1lenny2_all.deb
  to pool/main/c/clamav/clamav-testfiles_0.94.dfsg.2-1lenny2_all.deb
clamav_0.94.dfsg.2-1lenny2.diff.gz
  to pool/main/c/clamav/clamav_0.94.dfsg.2-1lenny2.diff.gz
clamav_0.94.dfsg.2-1lenny2.dsc
  to pool/main/c/clamav/clamav_0.94.dfsg.2-1lenny2.dsc
clamav_0.94.dfsg.2-1lenny2_amd64.deb
  to pool/main/c/clamav/clamav_0.94.dfsg.2-1lenny2_amd64.deb
libclamav-dev_0.94.dfsg.2-1lenny2_amd64.deb
  to pool/main/c/clamav/libclamav-dev_0.94.dfsg.2-1lenny2_amd64.deb
libclamav5_0.94.dfsg.2-1lenny2_amd64.deb
  to pool/main/c/clamav/libclamav5_0.94.dfsg.2-1lenny2_amd64.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 523016@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Michael Tautschnig <mt@debian.org> (supplier of updated clamav package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Tue, 14 Apr 2009 16:53:46 +0200
Source: clamav
Binary: clamav-base clamav-docs clamav-dbg clamav libclamav-dev libclamav5 clamav-daemon clamav-testfiles clamav-freshclam clamav-milter
Architecture: source all amd64
Version: 0.94.dfsg.2-1lenny2
Distribution: stable-security
Urgency: low
Maintainer: ClamAV Team <pkg-clamav-devel@lists.alioth.debian.org>
Changed-By: Michael Tautschnig <mt@debian.org>
Description: 
 clamav     - anti-virus utility for Unix - command-line interface
 clamav-base - anti-virus utility for Unix - base package
 clamav-daemon - anti-virus utility for Unix - scanner daemon
 clamav-dbg - debug symbols for ClamAV
 clamav-docs - anti-virus utility for Unix - documentation
 clamav-freshclam - anti-virus utility for Unix - virus database update utility
 clamav-milter - anti-virus utility for Unix - sendmail integration
 clamav-testfiles - anti-virus utility for Unix - test files
 libclamav-dev - anti-virus utility for Unix - development files
 libclamav5 - anti-virus utility for Unix - library
Closes: 522744 523016
Changes: 
 clamav (0.94.dfsg.2-1lenny2) stable-security; urgency=low
 .
   [ Scott Kittermann ]
   * Backported change from 0.95 of FLEVEL_DCONF to be able to re-enable
     signatures when security issues have been fixed.
   * Security issues addressed in this release (closes: #523016, 522744):
     - [CVE-2008-6680] Fixed division by zero with --detect-broken.
     - [CVE-2009-1270] clamd and clamscan get hung up.
 .
   [ Michael Tautschnig ]
   * Backported hardening of CLI_ISCONTAINED macros (fixes UPack crash with
     malformed file, #1552)
Checksums-Sha1: 
 fc6b8dcd20d1f90a79449a6426acac0d752e13ca 1411 clamav_0.94.dfsg.2-1lenny2.dsc
 73a8968a1925efea50260c75f1a1b7807af8ac9d 22073819 clamav_0.94.dfsg.2.orig.tar.gz
 e3bead31261af5b3136d89c3628eb775bf6a7445 159237 clamav_0.94.dfsg.2-1lenny2.diff.gz
 8a0972042905e1b990c664a6533f8a3639760103 19495586 clamav-base_0.94.dfsg.2-1lenny2_all.deb
 47166eb70ad101cedd6708a2a953e4a616eec6dd 207358 clamav-testfiles_0.94.dfsg.2-1lenny2_all.deb
 e9cd1ac872caed7be353a5420be255db313ea0d8 1079046 clamav-docs_0.94.dfsg.2-1lenny2_all.deb
 ff7d159c84620355febc3ec29532bcc66cf10b29 537718 libclamav5_0.94.dfsg.2-1lenny2_amd64.deb
 90a04fe682c9158eaa568e00f7c52ff66577435f 234846 clamav_0.94.dfsg.2-1lenny2_amd64.deb
 4f068481cf8ce790a0ff1cb80827fe8575a830fd 237738 clamav-daemon_0.94.dfsg.2-1lenny2_amd64.deb
 b06737af1e17fb02b8f42f93fbf82c1ce747beb2 252658 clamav-freshclam_0.94.dfsg.2-1lenny2_amd64.deb
 eb5d966256f13e4f9a2a9add8060c176df2e0509 231494 clamav-milter_0.94.dfsg.2-1lenny2_amd64.deb
 ad0e7722e8758fdb26e606a6a2fa19465b895dc0 571656 libclamav-dev_0.94.dfsg.2-1lenny2_amd64.deb
 6ecc0f9a26b407b2980e3d5d2f0197469236b307 865116 clamav-dbg_0.94.dfsg.2-1lenny2_amd64.deb
Checksums-Sha256: 
 e11254e010391ec0539087e4fc31492d1ca9ad0981a4d9cbbfb50df7758026d5 1411 clamav_0.94.dfsg.2-1lenny2.dsc
 421aedf91ade791a5609d1127399a153aa856712e33c2ae59f7b88e2605c05ed 22073819 clamav_0.94.dfsg.2.orig.tar.gz
 950519b5aa2fb5e7c310645dfec0361ec0850b4e29b122797a8893baea35eaa2 159237 clamav_0.94.dfsg.2-1lenny2.diff.gz
 7d49639d8abf114d42e5acf73e73ac5718a8cadade52470374fb7d16eeb41841 19495586 clamav-base_0.94.dfsg.2-1lenny2_all.deb
 ac0e033f9bad41eecffbd03e9ec0217bc7cb26d1ddb6b1c2f071be6afeffbccd 207358 clamav-testfiles_0.94.dfsg.2-1lenny2_all.deb
 1d6dc78a08692689aa86aa28ee70c5bc1b2814574127c6c15e13666c80bed558 1079046 clamav-docs_0.94.dfsg.2-1lenny2_all.deb
 e538d25855d19d4e450272d2267e2ccb60dab4c0f17b3c6c3bc8ad634e17ec4a 537718 libclamav5_0.94.dfsg.2-1lenny2_amd64.deb
 0e92a454d3e221c3138eefd68b2e4e1d85c0cbcc0bbfca24b2184c5c0f7dd6a4 234846 clamav_0.94.dfsg.2-1lenny2_amd64.deb
 cf143e24556d134e66047815aa5b5bb1996fba2eb6ab530327023cdd86a3be4f 237738 clamav-daemon_0.94.dfsg.2-1lenny2_amd64.deb
 7a64910633060212d72dbf6a6e6a5c4624ef190185afb38b5caa795a618735ef 252658 clamav-freshclam_0.94.dfsg.2-1lenny2_amd64.deb
 d8c12a92e43dce90ca9c7a80715f062e3dfc021264197707412218c7734f37b2 231494 clamav-milter_0.94.dfsg.2-1lenny2_amd64.deb
 884b5954705b61b55d77df0a3ecfd9f26ee8b55c6fbcf8c87a3f2e17a36ec869 571656 libclamav-dev_0.94.dfsg.2-1lenny2_amd64.deb
 68c3c8ea4220d6fa8efbeb6452a457fa195c29cd92af7b80161615edc0473c39 865116 clamav-dbg_0.94.dfsg.2-1lenny2_amd64.deb
Files: 
 5217b56ac23f06ca65ef3ea5aeb24841 1411 utils optional clamav_0.94.dfsg.2-1lenny2.dsc
 7b45b0c54b887b23cb49e4bff807cf58 22073819 utils optional clamav_0.94.dfsg.2.orig.tar.gz
 d31334a956f54c30cb95c99273c6de7e 159237 utils optional clamav_0.94.dfsg.2-1lenny2.diff.gz
 0fffde16847013d6adce47a0457f455f 19495586 utils optional clamav-base_0.94.dfsg.2-1lenny2_all.deb
 4cfa028b1b7f9408e300a22ec807c6e7 207358 utils optional clamav-testfiles_0.94.dfsg.2-1lenny2_all.deb
 649f899e8d50b7c00a5d463038a158b7 1079046 doc optional clamav-docs_0.94.dfsg.2-1lenny2_all.deb
 e2d98d5abaa6dc69c7f04a2fba6b85aa 537718 libs optional libclamav5_0.94.dfsg.2-1lenny2_amd64.deb
 c4e05de999689f8ee619bf64e6e8802b 234846 utils optional clamav_0.94.dfsg.2-1lenny2_amd64.deb
 8d44aa0a9a253c0be06b404853e777cd 237738 utils optional clamav-daemon_0.94.dfsg.2-1lenny2_amd64.deb
 51e70fea9d6da3ef8ff426ea74597604 252658 utils optional clamav-freshclam_0.94.dfsg.2-1lenny2_amd64.deb
 b975f22836d8de10d74f304ae6c614a4 231494 utils extra clamav-milter_0.94.dfsg.2-1lenny2_amd64.deb
 9c2734c96a92f5aad81d1ed74c0b41a9 571656 libdevel optional libclamav-dev_0.94.dfsg.2-1lenny2_amd64.deb
 4b8762dca5e0ef54edc4edf1b09c6c5e 865116 utils extra clamav-dbg_0.94.dfsg.2-1lenny2_amd64.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iEYEARECAAYFAknk6QsACgkQvx6dH3bVKsSJ4QCgoTg4A5iQCKNp/oRGdgiiGYyH
Q7IAn04iuNfl3+8nXDmyBGG5EzQ79AR8
=BsnP
-----END PGP SIGNATURE-----

Bug archived. Request was from Debbugs Internal Request <owner@bugs.debian.org> to internal_control@bugs.debian.org. (Sun, 26 Jul 2009 07:29:20 GMT) (full text, mbox, link).

Send a report that this bug log contains spam.

Debian bug tracking system administrator <owner@bugs.debian.org>. Last modified: Wed Jun 19 18:00:54 2019; Machine Name: buxtehude

Debian Bug tracking system

Debbugs is free software and licensed under the terms of the GNU Public License version 2. The current version can be obtained from https://bugs.debian.org/debbugs-source/.

clamav vulnerability

Debian Bug report logs - #523016
clamav vulnerability

Vulmon Search

About

Products

Connect

clamav vulnerability

Debian Bug report logs - #523016 clamav vulnerability

Vulmon Search

About

Products

Connect

Debian Bug report logs - #523016
clamav vulnerability