Descriptionunrar.c in libclamav in ClamAV before 0.90.3 and 0.91 before 0.91rc1 allows remote attackers to cause a denial of service (core dump) via a crafted RAR file with a modified vm_codesize value, which triggers a heap-based buffer overflow.
Overall state of this security issue: Resolved
This issue is currently rated as having moderate severity.
|National Vulnerability Database|
- SUSE-SA:2007:033, published Wed, 06 Jun 2007 15:00:00 +0000
List of released packages
|Product(s)||Fixed package version(s)||References|
|Open Enterprise Server|| ||
YOU Patch Nr: 11543
|SUSE LINUX 10.0|| |
|SUSE LINUX 10.1|| |