clamav, my nightmare
Abril 5, 2008 Deixe um comentário
Falha de segurança de 2007, mas isto está a falhar demasiadas vezes para ser considerado um problema normal.
Mon, Sep 03 14:55:00 CEST 2007
Security Update for clamav
Sebastian Harl uploaded new packages for clamav which fixed the following security problems:
It was discovered that the RTF and RFC2397 parsers can be tricked into dereferencing a NULL pointer, resulting in denial of service.
It was discovered clamav-milter performs insufficicient input sanitising, resulting in the execution of arbitrary shell commands.