Hi, SUSE apparently ships a custom patched libbz2 v. 1.0.5. That is the vulnerable libbz2 but, instead of crashing it infloops on the bz2 PoC. SUSE has not yet provided a non vulnerable libbz2 (v.1.0.6).
In the meantime the quick and dirty patch found at https://wwws.clamav.net/bugzilla/attachment.cgi?id=1498 allows configure to continue. Cheers, --aCaB _______________________________________________ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
