Comparing the exploitable code from http://www.overflow.pl/adv/clamav_upx_heap.txt to the code present in the source of libclamav1_0.84-2.sarge.9_i386.deb it seems to me that the current stable version of libclamav1 is vulnerable.
Can you confirm/deny this? IMHO stable should be fixed?! I can supply a patch if needed. Ralf -- Ralf Schlatterbeck email: [EMAIL PROTECTED] FAX: +43/2243/26465/23 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
