GLSA Advocate
Joined: 12 May 2004 Posts: 2663
|
Posted: Tue Sep 07, 2010 9:26 pm Post subject: [ GLSA 201009-06 ] Clam AntiVirus: Multiple vulnerabilities |
|
|
Gentoo Linux Security Advisory
Title: Clam AntiVirus: Multiple vulnerabilities (GLSA 201009-06)
Severity: normal
Exploitable: remote
Date: September 07, 2010
Bug(s): #314087, #321157
ID: 201009-06
Synopsis
Multiple vulnerabilities have been reported in Clam AntiVirus.
Background
Clam AntiVirus (short: ClamAV) is an anti-virus toolkit for UNIX,
designed especially for e-mail scanning on mail gateways.
Affected Packages
Package: app-antivirus/clamav
Vulnerable: < 0.96.1
Unaffected: >= 0.96.1
Architectures: All supported architectures
Description
Multiple vulnerabilities were discovered in Clam AntiVirus. For further
information, please consult the CVE entries referenced below.
Impact
A remote attacker could possibly bypass virus detection or cause a
Denial of Service.
Workaround
There is no known workaround at this time.
Resolution
All Clam AntiVirus users should upgrade to the latest version:
Code: | # emerge --sync
# emerge --ask --oneshot --verbose ">=app-antivirus/clamav-0.96.1" |
References
CVE-2010-0098
CVE-2010-1311
CVE-2010-1639
CVE-2010-1640 |
|