Author: nion Date: 2008-09-05 19:57:30 +0000 (Fri, 05 Sep 2008) New Revision: 9766 Modified: data/CVE/list Log: new clamav issues fixed in 0.94.dfsg-1 Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-09-05 16:19:52 UTC (rev 9765) +++ data/CVE/list 2008-09-05 19:57:30 UTC (rev 9766) @@ -1,3 +1,9 @@ +CVE-2008-3912 [out-of-memory null dereference in clamav] + - clamav 0.94.dfsg-1 +CVE-2008-3913 [error path memleaks in clamav] + - clamav 0.94.dfsg-1 +CVE-2008-3914 [file descriptor leaks in clamav] + - clamav 0.94.dfsg-1 CVE-2008-XXXX [buffer overflow via crafted configuration file (COMMAND)] - gmanedit <unfixed> (low; bug #497835) TODO: request CVE id @@ -5869,8 +5875,9 @@ - asterisk 1:1.4.19.1~dfsg-1 (low) [etch] - asterisk <not-affected> (Only 1.4.x affected) [sarge] - asterisk <not-affected> (Only 1.4.x affected) -CVE-2008-1389 +CVE-2008-1389 [possible invalid memory access in clamav] RESERVED + - clamav 0.94.dfsg-1 CVE-2008-1388 RESERVED CVE-2008-1387 (ClamAV before 0.93 allows remote attackers to cause a denial of ...)