[ MDVSA-2015:221 ] clamav

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 _______________________________________________________________________

 Mandriva Linux Security Advisory                         MDVSA-2015:221
 http://www.mandriva.com/en/support/security/
 _______________________________________________________________________

 Package : clamav
 Date    : May 4, 2015
 Affected: Business Server 1.0, Business Server 2.0
 _______________________________________________________________________

 Problem Description:

 Multiple vulnerabilities has been found and corrected in clamav:
 
 Fix infinite loop condition on crafted y0da cryptor file. Identified
 and patch suggested by Sebastian Andrzej Siewior (CVE-2015-2221).
 
 Fix crash on crafted petite packed file. Reported and patch supplied
 by Sebastian Andrzej Siewior (CVE-2015-2222).
 
 Fix an infinite loop condition on a crafted xz archive file. This
 was reported by Dimitri Kirchner and Goulven Guiheux (CVE-2015-2668).
 
 Apply upstream patch for possible heap overflow in H

007 Software

[ MDVSA-2015:221 ] clamav

Leave a Reply Cancel reply

Software and Security Information