[clamav-users] Question regarding the 0.103.1 PNG bug fix

Pierre Olivier KAPLAN pierreolivier.kaplan at stormshield.eu
Wed Mar 3 13:11:48 UTC 2021


I have two question regarding the 0.103.1 Releases Notes. 
In the bug fixes is mentionned an issue with some PNG parsing file causing a stack exhaustion. With isn't this categorized as a vulnerability, as it allows DoS attacks ? 

It is also mentionned that a signature exists to avoid the parsing. But I couldn't find it in the database. Do you know which one we shall use ? 

Thanks in advance for your help 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.clamav.net/pipermail/clamav-users/attachments/20210303/fc85be9c/attachment.htm>

More information about the clamav-users mailing list