CVE-2007-6337
First published: Mon Dec 31 2007(Updated: )
Unspecified vulnerability in the bzip2 decompression algorithm in nsis/bzlib_private.h in ClamAV before 0.92 has unknown impact and remote attack vectors.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Gentoo Linux | ||
| ClamAV | =0.91.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://security.gentoo.org/glsa/glsa-200712-20.xml
- http://www.securityfocus.com/bid/27063
- http://securitytracker.com/id?1019149
- http://secunia.com/advisories/28278
- http://www.mandriva.com/security/advisories?name=MDVSA-2008:003
- http://secunia.com/advisories/28153
- http://secunia.com/advisories/28421
- http://lists.opensuse.org/opensuse-security-announce/2008-01/msg00002.html
- http://secunia.com/advisories/28412
- https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00740.html
- https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00644.html
- http://secunia.com/advisories/28587
- http://docs.info.apple.com/article.html?artnum=307562
- http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html
- http://secunia.com/advisories/29420
- http://osvdb.org/42293
- http://www.vupen.com/english/advisories/2008/0924/references
Frequently Asked Questions
What is the severity of CVE-2007-6337?
The severity of CVE-2007-6337 is currently unknown due to unspecified details of the vulnerability.
Which versions of ClamAV are affected by CVE-2007-6337?
CVE-2007-6337 affects ClamAV versions prior to 0.92, specifically 0.91.2.
What could be the impact of CVE-2007-6337 on users?
The impact of CVE-2007-6337 is unknown, but it may allow remote attacks due to an issue in the bzip2 decompression algorithm.
How do I resolve CVE-2007-6337?
To resolve CVE-2007-6337, users should upgrade to ClamAV version 0.92 or higher.
Is there a specific platform mentioned for CVE-2007-6337?
Yes, ClamAV versions prior to 0.92 are potentially affected on any platform that runs this software.
- collector/nvd-historical
- agent/softwarecombine
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/remedy
- agent/author
- agent/references
- agent/severity
- agent/last-modified-date
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/gentoo
- canonical/gentoo linux
- vendor/clam anti-virus
- canonical/clamav
- version/clamav/0.91.2