CVE-2008-2713

Name of the Vulnerable Software and Affected Versions libclamav versions prior to 0.93.1

Description The issue concerns multiple vulnerabilities in the libclamav package of the Debian GNU/Linux operating system, which can lead to a disruption of protected information availability. These vulnerabilities can be exploited remotely. Specifically, a crafted Petite file can trigger an out-of-bounds read in the petite.c file of ClamAV, causing a denial of service.

Recommendations For versions prior to 0.93.1, update to version 0.93.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the petite.c file or disabling the handling of Petite files until a patch is available.