On Mon, 11 Jun 2007 21:33:44 +0200 (CEST), Jan-Erik Lärka wrote:

>
>Note that ClamAV has released a newer scanner engine 0.90.3, but we
>have 0.90.2, and it will warn you about that, but it's nothing to worry
>about.

FWIW:  Clam 0.90.2 has some vulnerabilities.
jon


07.24.31 CVE: CVE-2007-3023, CVE-2007-3024
Platform: Cross Platform
Title: Clam AntiVirus Multiple Unspecified Vulnerabilities
Description: ClamAV is an antivirus application for Microsoft 
Windows
and UNIX-like operating systems. The application is exposed to 
multiple
unspecified issues. The incorrect calculation of the end of a 
buffer
could lead to buffer overflow conditions. Improper permissions
associated with temporary files could lead to symlink-type attacks. 
Clam
AntiVirus versions prior to 0.90.3 are affected.
Ref: http://www.securityfocus.com/bid/24358



07.24.47 CVE: Not Available
Platform: Cross Platform
Title: Clam AntiVirus ClamAV RAR Handling Remote Denial of Service
Description: ClamAV is an antivirus application for Microsoft 
Windows
and Unix-like operating systems. The application is exposed to a
remote denial of service issue while handling malicious RAR 
archives
that can cause heap-based memory corruption.
Ref: http://kolab.org/security/kolab-vendor-notice-15.txt



 
Yahoo! Groups Links

 To visit your group on the web, go to:
    http://groups.yahoo.com/group/os2user/

 Your email settings:
    Individual Email | Traditional

 To change settings online go to:
    http://groups.yahoo.com/group/os2user/join
    (Yahoo! ID required)

 To change settings via email:
    mailto:os2user-digest{at}yahoogroups.com 
    mailto:os2user-fullfeatured{at}yahoogroups.com

 To unsubscribe from this group, send an email to:
    os2user-unsubscribe{at}yahoogroups.com

 Your use of Yahoo! Groups is subject to:
    http://docs.yahoo.com/info/terms/
 

---