The remote host is missing an update to clamav announced via advisory DSA 824-1. Two vulnerabilities have been discovered in Clam AntiVirus, the antivirus scanner for Unix, designed for integration with mail servers to perform attachment scanning. The following problems were identified: CVE-2005-2919 A potentially infinite loop could lead to a denial of service. CVE-2005-2920 A buffer overflow could lead to a denial of service. The old stable distribution (woody) does not contain ClamAV packages.

For the stable distribution (sarge) these problems have been fixed in version 0.84-2.sarge.4. For the unstable distribution (sid) these problems have been fixed in version 0.87-1. We recommend that you upgrade your clamav package. https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20824-1