Overview

File _patchinfo of Package patchinfo.560

<patchinfo incident="560">
  <packager>AndreasStieger</packager>
  <issue tracker="cve" id="CVE-2012-1457">allows to bypass malware detection via a TAR archive entry with a length field that exceeds the total TAR file size</issue>
  <issue tracker="cve" id="CVE-2012-1458">allows to bypass malware detection via a crafted reset interval in the LZXC header of a CHM file</issue>
  <issue tracker="cve" id="CVE-2012-1459">allows to bypass malware detection via a TAR archive entry with a length field corresponding to that entire entry, plus part of the header of the next entry</issue>
  <issue tracker="bnc" id="767574">ClamAV 0.97.5 addresses possible evasion cases in some archive formats and stability issues in bytecode engine</issue>
  <category>security</category>
  <rating>important</rating>
  <summary>ClamAV: 0.97.5 update</summary>
  <description>This update addresses possible evasion cases in some archive formats and stability issues in portions of the bytecode engine.</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places