CVE 2008-2713
libclamav/petite.c in ClamAV before 0.93.1 allows remote attackers to cause a denial of service via a crafted Petite file that triggers an out-of-bounds read.
Related bugs and status
CVE-2008-2713 (Candidate) is related to these bugs:
Bug #238575: Possible invalid memory access in versions before 0.93.1
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 238575 | Possible invalid memory access in versions before 0.93.1 | clamav (Ubuntu) | Medium | Fix Released | ||
| 238575 | Possible invalid memory access in versions before 0.93.1 | clamav (Ubuntu Dapper) | Medium | Fix Released | ||
| 238575 | Possible invalid memory access in versions before 0.93.1 | clamav (Ubuntu Feisty) | Medium | Fix Released | ||
| 238575 | Possible invalid memory access in versions before 0.93.1 | clamav (Ubuntu Gutsy) | Medium | Fix Released | ||
| 238575 | Possible invalid memory access in versions before 0.93.1 | clamav (Ubuntu Hardy) | Medium | Fix Released | ||
| 238575 | Possible invalid memory access in versions before 0.93.1 | clamav (Ubuntu Intrepid) | Medium | Fix Released | ||
Bug #249316: libclamav petite.c denial of sevice issue
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 249316 | libclamav petite.c denial of sevice issue | clamav (Ubuntu) | Medium | Fix Released | ||
| 249316 | libclamav petite.c denial of sevice issue | clamav (Ubuntu Dapper) | Medium | Fix Released | ||
| 249316 | libclamav petite.c denial of sevice issue | clamav (Ubuntu Feisty) | Medium | Fix Released | ||
| 249316 | libclamav petite.c denial of sevice issue | clamav (Ubuntu Gutsy) | Medium | Fix Released | ||
| 249316 | libclamav petite.c denial of sevice issue | clamav (Ubuntu Hardy) | Medium | Fix Released | ||
Bug #253782: [CVE-2008-3215] ClamAV Petite DoS not fixed until 0.93.3
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 253782 | [CVE-2008-3215] ClamAV Petite DoS not fixed until 0.93.3 | clamav (Ubuntu) | Undecided | Fix Released | ||
Bug #304017: Recursive stack overflow in jpeg parsing code
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 304017 | Recursive stack overflow in jpeg parsing code | clamav (Ubuntu) | High | Fix Released | ||
| 304017 | Recursive stack overflow in jpeg parsing code | clamav (Ubuntu Intrepid) | High | Fix Released | ||
| 304017 | Recursive stack overflow in jpeg parsing code | clamav (Ubuntu Dapper) | Undecided | Fix Released | ||
| 304017 | Recursive stack overflow in jpeg parsing code | clamav (Ubuntu Gutsy) | Undecided | Won't Fix | ||
| 304017 | Recursive stack overflow in jpeg parsing code | clamav (Ubuntu Hardy) | Undecided | Fix Released | ||
| 304017 | Recursive stack overflow in jpeg parsing code | clamav (Ubuntu Jaunty) | High | Fix Released | ||
Bug #354190: Security fixes from clamav 0.95 need backport
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 354190 | Security fixes from clamav 0.95 need backport | clamav (Ubuntu) | Undecided | Fix Released | ||
| 354190 | Security fixes from clamav 0.95 need backport | clamav (Ubuntu Dapper) | Undecided | Fix Released | ||
| 354190 | Security fixes from clamav 0.95 need backport | clamav (Ubuntu Gutsy) | Undecided | Won't Fix | ||
| 354190 | Security fixes from clamav 0.95 need backport | clamav (Ubuntu Hardy) | Undecided | Fix Released | ||
| 354190 | Security fixes from clamav 0.95 need backport | clamav (Ubuntu Intrepid) | Medium | Fix Released | ||
| 354190 | Security fixes from clamav 0.95 need backport | Hardy Backports | High | Fix Released | ||
| 354190 | Security fixes from clamav 0.95 need backport | Dapper Backports | Undecided | Fix Released | ||
Bug #360502: Fix relevant security bugs from 0.95.1 in earlier releases
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 360502 | Fix relevant security bugs from 0.95.1 in earlier releases | clamav (Ubuntu) | High | Fix Released | ||
| 360502 | Fix relevant security bugs from 0.95.1 in earlier releases | clamav (Ubuntu Dapper) | Undecided | Fix Released | ||
| 360502 | Fix relevant security bugs from 0.95.1 in earlier releases | clamav (Ubuntu Gutsy) | Undecided | Won't Fix | ||
| 360502 | Fix relevant security bugs from 0.95.1 in earlier releases | clamav (Ubuntu Hardy) | Undecided | Fix Released | ||
| 360502 | Fix relevant security bugs from 0.95.1 in earlier releases | clamav (Ubuntu Intrepid) | High | Fix Released | ||
| 360502 | Fix relevant security bugs from 0.95.1 in earlier releases | Hardy Backports | Undecided | Fix Released | ||
| 360502 | Fix relevant security bugs from 0.95.1 in earlier releases | Dapper Backports | Undecided | Fix Released | ||
Bug #360919: AppArmor.d profile parsing error after update
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 360919 | AppArmor.d profile parsing error after update | clamav (Ubuntu) | Undecided | Fix Released | ||
| 360919 | AppArmor.d profile parsing error after update | Hardy Backports | Low | Fix Released | ||
See the 
CVE page on Mitre.org
for more details.
