This is the mail archive of the
mailing list for the Cygwin project.
[ANNOUNCEMENT] Security update: clamav-0.87.1-1
- From: Reini Urban <rurban at x-ray dot at>
- To: cygwin at cygwin dot com
- Date: Mon, 07 Nov 2005 23:30:33 +0100
- Subject: [ANNOUNCEMENT] Security update: clamav-0.87.1-1
- Reply-to: cygwin at cygwin dot com
Clam AntiVirus is subject to vulnerabilities ranging from Denial of
Service to execution of arbitrary code when handling compressed
executables. (CAN-2005-2919, CAN-2005-2920)
Clam AntiVirus is also vulnerable to integer overflows when handling
several file formats, potentially resulting in the execution of
arbitrary code. (CAN-2005-2450)
Solution: Update to 0.87.1-1
Clam AntiVirus is an anti-virus toolkit for Unix. The main purpose of
this software is the integration with mail servers (attachment
scanning). The package provides a flexible and scalable multi-threaded
daemon, a commandline scanner, and a tool for automatic updating via
Internet. The programs are based on a shared library distributed with
the Clam AntiVirus package, which you can use in your own software.
improve scanning of zip files.
See http://www.clamav.net/doc/0.87.1/ChangeLog and
To update your installation, click on the "Install Cygwin now" link on
the http://cygwin.com/ web page. This downloads setup.exe to your
system. Then, run setup and answer all of the questions.
*** CYGWIN-ANNOUNCE UNSUBSCRIBE INFO ***
If you want to unsubscribe from the cygwin-announce mailing list, look
at the "List-Unsubscribe: " tag in the email header of this message.
Send email to the address specified there. It will be in the format:
If you need more information on unsubscribing, start reading here:
Please read *all* of the information on unsubscribing that is available
starting at this URL.
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
Problem reports: http://cygwin.com/problems.html