It turns out the changes in 0.92.1~dfsg2-1 were not complete for CVE 2008-1833. 0.92.1~dfsg2-1.1 in hardy and dapper-backports fixes that. Updates are in ubuntu-clamav PPA too.
-- ClamAV Upack Processing Buffer Overflow Vulnerability https://bugs.launchpad.net/bugs/217256 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
