diff options
| author | simon <simon@FreeBSD.org> | 2005-03-27 04:49:39 +0800 |
|---|---|---|
| committer | simon <simon@FreeBSD.org> | 2005-03-27 04:49:39 +0800 |
| commit | 7dee7ed86e0fc4d698ed87de43d3d84c2aa9fd18 (patch) | |
| tree | c3e46baa490a915b7f7a131df37b70ea41737529 /security | |
| parent | 59fb95561892c6e5b522c2c606f6f2d5e8d5298a (diff) | |
| download | freebsd-ports-gnome-7dee7ed86e0fc4d698ed87de43d3d84c2aa9fd18.tar.gz freebsd-ports-gnome-7dee7ed86e0fc4d698ed87de43d3d84c2aa9fd18.tar.zst freebsd-ports-gnome-7dee7ed86e0fc4d698ed87de43d3d84c2aa9fd18.zip | |
Document clamav -- zip handling DoS vulnerability.
Approved by: portmgr (blanket, VuXML)
Diffstat (limited to 'security')
| -rw-r--r-- | security/vuxml/vuln.xml | 30 |
1 files changed, 30 insertions, 0 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml index 3334d190cc59..0eb26f3a4fe0 100644 --- a/security/vuxml/vuln.xml +++ b/security/vuxml/vuln.xml @@ -32,6 +32,36 @@ EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. --> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1"> + <vuln vid="70b62f5e-9e2e-11d9-a256-0001020eed82"> + <topic>clamav -- zip handling DoS vulnerability</topic> + <affects> + <package> + <name>clamav</name> + <range><lt>0.81</lt></range> + </package> + <package> + <name>clamav-devel</name> + <range><gt>0</gt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml"> + <p>The clamav daemon is vulnerable to a DoS vulnerability due + to insufficient handling of malformed zip files which can + crash the clamav daemon.</p> + </body> + </description> + <references> + <bid>12408</bid> + <cvename>CAN-2005-0133</cvename> + <url>http://sourceforge.net/project/shownotes.php?release_id=300116</url> + </references> + <dates> + <discovery>2005-01-27</discovery> + <entry>2005-03-26</entry> + </dates> + </vuln> + <vuln vid="48a59c96-9c6e-11d9-a040-000a95bc6fae"> <topic>wine -- information disclosure due to insecure temporary file handling</topic> |