- ------------------------------------------------------------------------Debian Security Advisory DSA-1660-1 security@debian.org
http://www.debian.org/security/ Florian Weimer
October 26, 2008 http://www.debian.org/security/faq
- ------------------------------------------------------------------------Package : clamav
Vulnerability : null pointer derefence, resource exhaustation
Problem type : local (remote)
Debian-specific: no
CVE Id(s) : CVE-2008-3912, CVE-2008-3913, CVE-2008-3914
Several denial-of-service vulnerabilities have been discovered in
the ClamAV anti-virus toolkit:
Insufficient checking for out-of-memory conditions results in null
pointer derefences (CVE-2008-3912).
Incorrect error handling logic leads to memory leaks (CVE-2008-3913)
and file descriptor leaks (CVE-2008-3914).
For the stable distribution (etch), these problems have been fixed in
version 0.90.1dfsg-4etch15.
For the unstable distribution (sid) and the testing distribution
(lenny), these problems have been fixed in version 0.94.dfsg-1.
We recommend that you upgrade your clamav package.
Upgrade instructions
- --------------------wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
If you are using the apt-get package manager, use the line for
sources.list as given below:
apt-get update
will update the internal database
apt-get upgrade
will install corrected packages
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian GNU/Linux 4.0 alias etch
- -------------------------------Source archives:
Size/MD5 checksum: 211673 f32684dc7b5c10438ed72ed8c522ced8
Size/MD5 checksum: 11610428 6dc18602b0aa653924d47316f9411e49
Size/MD5 checksum: 900 5c1aca2a402b405e027e79c7d9fdde39
Architecture independent packages:
Size/MD5 checksum: 1005428 058124325863f5c4d6009547b81d3d10
Size/MD5 checksum: 202184 24e50f137412d6432f489f0c0bccefa2
Size/MD5 checksum: 158456 ee5378f52517374ecc6d45d0954a8da8
alpha architecture (DEC Alpha)
Size/MD5 checksum: 372930 f51ff2874a06cf834e586ffd629935a4
Size/MD5 checksum: 182734 5c0db34ae38a22c21513210c00c3c69b
Size/MD5 checksum: 465258 e5745dfa0c5a1b59e19fcce6743b8ea6
Size/MD5 checksum: 9305242 c8970fe72c484513f6b405b5bbc2107f
Size/MD5 checksum: 862312 196a2f722ea12a073ab81ca361a4c8a4
Size/MD5 checksum: 597822 f183a3e677f0eda5196f32e164c74bcd
Size/MD5 checksum: 180882 91a8a71ea5822c9bb74907d1c273c6a8
amd64 architecture (AMD x86_64 (AMD64))
Size/MD5 checksum: 341716 cf6f3fa99270adead786b673311f8d61
Size/MD5 checksum: 9301976 2876b674f6cea7d15c5157e2de2328ee
Size/MD5 checksum: 355170 de088b17a337d686b4621770fe4f9857
Size/MD5 checksum: 856710 666d145be4f30dff32fa4ea4a7baf3cf
Size/MD5 checksum: 593892 f998497019eda5c09b4b9d72b28a20cd
Size/MD5 checksum: 177632 012e805063b0f0d0add72b3b7e31bc27
Size/MD5 checksum: 178214 9cb0fd2d134382ab68377ea080354c39
arm architecture (ARM)
Size/MD5 checksum: 175958 61f2238a6151d710f61898a69a7f17dd
Size/MD5 checksum: 554314 eeca09ab4e6114c1647f58e056bbbe88
Size/MD5 checksum: 335754 a4455a0a045e44d7fe4e78e3138f9839
Size/MD5 checksum: 336508 7381b097f4239890fd7ecf3604b18a7b
Size/MD5 checksum: 853888 cc8eb16ceef93c5dc7a344c31b76a1c4
Size/MD5 checksum: 9299654 079be0e85b9488a6c1a79e47fa473697
Size/MD5 checksum: 171826 4caa4c8de5d905072458b20c47fe6cf7
hppa architecture (HP PA RISC)
Size/MD5 checksum: 178420 bb3bf378c5b4b2399066ef14d3a56f99
Size/MD5 checksum: 373022 03ab8e9d8f491cc2e36b6231df6a1598
Size/MD5 checksum: 572122 49ede4d4a1cfaf08d2335a0643445281
Size/MD5 checksum: 178162 def9c5ec2aa784f7dce6292be42f47d9
Size/MD5 checksum: 857652 5d02382877ea32a59807865743c97bfd
Size/MD5 checksum: 396408 ef2e43b492945bb1769a6f706788b658
Size/MD5 checksum: 9303936 f3f4d2f867bde284abf7db446705ed95
i386 architecture (Intel ia32)
Size/MD5 checksum: 9301270 0a5dc62b3aab325ab4ea20276a45442d
Size/MD5 checksum: 856306 8d74ae00e735d95515aa9bb808c6671c
Size/MD5 checksum: 340162 08312dde22cde79581b15286c44f4301
Size/MD5 checksum: 172982 22de0edc3a1de0f0fbcb87edca082d50
Size/MD5 checksum: 338336 d1ef1a5beae644f9f1296d6039bb69ef
Size/MD5 checksum: 175660 db8eac754a12034b9f75eaf05386ca82
Size/MD5 checksum: 560354 9c8893eb2188dadfaf3fd17a434f8b06
ia64 architecture (Intel ia64)
Size/MD5 checksum: 610916 7ad33fed4d558be67ede30630d6c72a7
Size/MD5 checksum: 427888 c209553ee479329f7c7363c1ebdc1a74
Size/MD5 checksum: 192618 befb38ab9b489751714f779dbea3d291
Size/MD5 checksum: 879096 61a9e8155e1f09336597fe3f4a37d3fe
Size/MD5 checksum: 465992 0c339ef0bb56f9b78396c5cef52d7f9b
Size/MD5 checksum: 202350 a7a2a4426c2009d5834d077992fc958c
Size/MD5 checksum: 9315990 f98473c93e67b4b211484830daf41832
mips architecture (MIPS (Big Endian))
Size/MD5 checksum: 179764 7993bddf6d20c53d04dfa82db8c45f17
Size/MD5 checksum: 343582 963becae67065832dc9544c1b81c6af9
Size/MD5 checksum: 9301686 cc048163c4d480e18e26fc43a20557a5
Size/MD5 checksum: 599950 0cdd81bdd2254f51bb0042b9aff03799
Size/MD5 checksum: 398656 085b4754c33410f999a6c92a7fab83e5
Size/MD5 checksum: 175634 aa1d7b2f22ed7e3e1d380e8e8b81affd
Size/MD5 checksum: 855198 0a1ff9eb459bd43042abd61a5e417b7b
powerpc architecture (PowerPC)
Size/MD5 checksum: 591114 c8462b221e0ffa9e98768074c1a35e46
Size/MD5 checksum: 372666 368d9b9438ad78195fab6682815d0658
Size/MD5 checksum: 350662 e003d2a4c115aa56b5cb58703ea8abb8
Size/MD5 checksum: 182422 50b96cab6541a0ea2809a60ec2977f6e
Size/MD5 checksum: 177040 c44f2cdab20f3159c6e05decd53e5a42
Size/MD5 checksum: 857930 14100228766332ab199d6d0e5e023a31
Size/MD5 checksum: 9303010 8d9887c249921ffd2d077060b86c33cd
s390 architecture (IBM S/390)
Size/MD5 checksum: 176984 c73d0d25cb9c6fb1471dc75dc1eae93b
Size/MD5 checksum: 370222 85073bbf0c93b0febd8653ea69d4bdd8
Size/MD5 checksum: 581758 20aad1ce19fb1e89f14f14cb9cb15abc
Size/MD5 checksum: 361652 5a0de663fbef083c9dcbd26bec3be8b1
Size/MD5 checksum: 855896 ba7952cb99fcbe5f7d95e3ee94a8cc60
Size/MD5 checksum: 177818 667e53e87004a1a3dec45f976223b5ff
Size/MD5 checksum: 9301658 bc0b5281a733ed8dad0721921f3074d8
sparc architecture (Sun SPARC/UltraSPARC)
Size/MD5 checksum: 174724 e0ba1dd7dc376ed26e1ad691be01bc28
Size/MD5 checksum: 852022 571af9e5cca4709e67315bc8d4e27f8d
Size/MD5 checksum: 172782 e1f14cbb1310608ae919dbe2ba6dc2da
Size/MD5 checksum: 9299404 dc0687d0d19b33a47549213a92986141
Size/MD5 checksum: 541198 a7f2f8746008045edf1b94acacc60db9
Size/MD5 checksum: 358074 71ddd770d23bd40dc8da26271556471a
Size/MD5 checksum: 349468 24934fe9a2cd03571fcbdcac63aa11c9
These files will probably be moved into the stable distribution on
its next update.
- ---------------------------------------------------------------------------------For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.
Cloud Security Cryptography Desktop Security Firewall Government Hacks/Cracks IoT Security Network Security Organizations/Events Privacy Security Projects Security Trends Security Vulnerabilities Server Security Vendors/Products
Debian Debian LTS Fedora Gentoo Mageia Oracle openSUSE RockyLinux Slackware SuSE Ubuntu
Harden My Filesystem Learn Tips and Tricks Secure My E-mail Secure My Firewall Secure My Network Secure My Webserver Strengthen My Privacy
Best Secure Linux Distros for Enhanced Privacy & Security The Truth About Linux Malware & How to Protect Your System Is Linux A More Secure Option Than Windows For Businesses? How Secure Is Linux? Top Tips for Securing Your Linux System
Advertise Contribute Your Article Legal Notice RSS Feeds Contact Us Terms of Service Privacy Policy
Linux Security - Your source for Top Linux News, Advisories, HowTo's and Feature Release.
