ALT-PU-2018-2030-1
Closed vulnerabilities
Published: 2019-11-06
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2007-0899
There is a possible heap overflow in libclamav/fsg.c before 0.100.0.
Severity: CRITICAL (9.8)
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
References:
Published: 2018-07-16
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2018-0360
ClamAV before 0.100.1 has an HWP integer overflow with a resultant infinite loop via a crafted Hangul Word Processor file. This is in parsehwp3_paragraph() in libclamav/hwp.c.
Severity: MEDIUM (5.5)
Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
References:
- 1041367
- 1041367
- https://blog.clamav.net/2018/07/clamav-01001-has-been-released.html
- https://blog.clamav.net/2018/07/clamav-01001-has-been-released.html
- [debian-lts-announce] 20180820 [SECURITY] [DLA 1461-1] clamav security update
- [debian-lts-announce] 20180820 [SECURITY] [DLA 1461-1] clamav security update
- https://secuniaresearch.flexerasoftware.com/secunia_research/2018-12/
- https://secuniaresearch.flexerasoftware.com/secunia_research/2018-12/
- GLSA-201904-12
- GLSA-201904-12
- USN-3722-1
- USN-3722-1
- USN-3722-2
- USN-3722-2
Published: 2018-07-16
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2018-0361
ClamAV before 0.100.1 lacks a PDF object length check, resulting in an unreasonably long time to parse a relatively small file.
Severity: LOW (3.3)
Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
References:
- 1041367
- 1041367
- https://blog.clamav.net/2018/07/clamav-01001-has-been-released.html
- https://blog.clamav.net/2018/07/clamav-01001-has-been-released.html
- [debian-lts-announce] 20180820 [SECURITY] [DLA 1461-1] clamav security update
- [debian-lts-announce] 20180820 [SECURITY] [DLA 1461-1] clamav security update
- GLSA-201904-12
- GLSA-201904-12
Closed bugs
Обновить clamav