Bug number - 774767

Part of package: clamav.

Bug description:

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
Debian Bug report logs -  #774767 libmspack: CHM decompression: pointer arithmetic overflow
Package:      clamav; Maintainer for clamav is ClamAV Team <pkg-clamav-devel@lists.alioth.debian.org>; Source for clamav is src:clamav (PTS, buildd, popcon).
Reported by: Jakub Wilk <jwilk@debian.org>
Date: Tue,  6 Jan 2015 20:21:06 UTC
Severity: grave
Tags: patch, security
Found in version clamav/0.98.5+dfsg-0+deb7u1
Fixed in version clamav/0.98.5+dfsg-0+deb7u3
Done: Sebastian Andrzej Siewior <sebastian@breakpoint.cc>
Bug is archived. No further changes may be made.

All x-patch and x-diff attachments.

Patch	Author	Date
fix-pointer-arithmetic-overflow.diff	Jakub Wilk <jwilk@debian.org>	Tue, 6 Jan 2015 21:18:30 +0100

Original bug report here.