CVE-2008-5314 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2008-5314
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2008-5314

Description: Stack consumption vulnerability in libclamav/special.c in ClamAV before 0.94.2 allows remote attackers to cause a denial of service (daemon crash) via a crafted JPEG file, related to the cli_check_jpeg_exploit, jpeg_check_photoshop, and jpeg_check_photoshop_8bim functions.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/46985 UBUNTU http://www.ubuntu.com/usn/usn-684-1 SUSE http://lists.opensuse.org/opensuse-security-announce/2008-12/msg00003.html ST 1021296 SAID Secunia Advisory: SA33016 Secunia Advisory: SA32926 Secunia Advisory: SA32936 Secunia Advisory: SA33317 Secunia Advisory: SA33195 Secunia Advisory: SA33937 OSVDB 50363 MLIST http://www.openwall.com/lists/oss-security/2008/12/01/8 http://lurker.clamav.net/message/20081126.150241.55b1e092.en.html MILW0RM http://www.milw0rm.com/exploits/7330 MANDRIVA http://www.mandriva.com/security/advisories?name=MDVSA-2008:239 GENTOO http://security.gentoo.org/glsa/glsa-200812-21.xml DEBIAN http://www.debian.org/security/2008/dsa-1680 CONFIRM http://support.apple.com/kb/HT3438 http://sourceforge.net/project/shownotes.php?group_id=86638&release_id=643134 BID 32555 APPLE http://lists.apple.com/archives/security-announce/2009/Feb/msg00000.html

Return to the previous page.