Date: Fri, 9 Sep 2005 09:24:00 -0500 From: Dan Nelson <dnelson@allantgroup.com> To: Chantal Rosmuller <chantal@antenna.nl> Cc: Kris Kennaway <kris@obsecurity.org>, freebsd-questions@freebsd.org Subject: Re: question about zlib security patch Message-ID: <20050909142359.GD84582@dan.emsphone.com> In-Reply-To: <4321328C.6090306@antenna.nl> References: <4320494D.6030503@antenna.nl> <200509082309.43229.yuanjue122@gmail.com> <20050908173948.GE49084@xor.obsecurity.org> <200509090813.06887.yuanjue122@gmail.com> <4321328C.6090306@antenna.nl>
next in thread | previous in thread | raw e-mail | index | archive | help
In the last episode (Sep 09), Chantal Rosmuller said: > Thanks everyone for the advice, I installed the sources and applied > the patch, so I guess I took care of the zlib security issue The > clamav error remained though but someone at the qmail rocks > mailinglist suggested that clamav cannot see that zlib is patched so > it is safe to ignore the error. To be on the safe side I will post > the question about the error on the clamav mailing list. Yes, clamav only checks the version number in the header; it doesn't actually test the bug. -- Dan Nelson dnelson@allantgroup.com
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20050909142359.GD84582>