CVE-2009-1241

Publication date 3 April 2009

Last updated 24 July 2024


Ubuntu priority

Unspecified vulnerability in ClamAV before 0.95 allows remote attackers to bypass detection of malware via a modified RAR archive.

Read the notes from the security team

Status

No maintained releases are affected by this CVE.

Package Ubuntu Release Status
clamav 10.04 LTS lucid
Not affected
9.10 karmic
Not affected
9.04 jaunty
Not affected
8.10 intrepid Ignored end of life, was needed
8.04 LTS hardy
Fixed 0.95.3+dfsg-1ubuntu0.09.04~hardy2
7.10 gutsy Ignored end of life, was needed
6.06 LTS dapper Ignored end of life

Notes


jdstrand

this is because Ubuntu and Debian use an external unrar. Upstream says support for external unrar will be removed in a future release