Lucene search
Alpine Linux Development TeamALPINE:CVE-2017-12374HistoryJan 26, 2018 - 8:29 p.m.
CVE-2017-12374
2018-01-2620:29:00
Alpine Linux Development Team
security.alpinelinux.org
23
0.009 Low
EPSS
Percentile
82.8%
The ClamAV AntiVirus software versions 0.99.2 and prior contain a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to a lack of input validation checking mechanisms during certain mail parsing operations (mbox.c operations on bounce messages). If successfully exploited, the ClamAV software could allow a variable pointing to the mail body which could cause a used after being free (use-after-free) instance which may lead to a disruption of services on an affected device to include a denial of service condition.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | edge-community | noarch | clamav | <Â 0.99.3-r0 | UNKNOWN |
| Alpine | 3.10-main | noarch | clamav | <Â 0.99.3-r0 | UNKNOWN |
| Alpine | 3.11-main | noarch | clamav | <Â 0.99.3-r0 | UNKNOWN |
| Alpine | 3.12-main | noarch | clamav | <Â 0.99.3-r0 | UNKNOWN |
| Alpine | 3.13-main | noarch | clamav | <Â 0.99.3-r0 | UNKNOWN |
| Alpine | 3.14-community | noarch | clamav | <Â 0.99.3-r0 | UNKNOWN |
| Alpine | 3.15-community | noarch | clamav | <Â 0.99.3-r0 | UNKNOWN |
| Alpine | 3.16-community | noarch | clamav | <Â 0.99.3-r0 | UNKNOWN |
| Alpine | 3.17-community | noarch | clamav | <Â 0.99.3-r0 | UNKNOWN |
| Alpine | 3.18-community | noarch | clamav | <Â 0.99.3-r0 | UNKNOWN |
Related
ubuntucve
ubuntucve
CVE-2017-12374
2018-01-29 00:00:00
debiancve
debiancve
CVE-2017-12374
2018-01-26 20:29:00
osv
osv
CVE-2017-12374
2018-01-26 20:29:00
clamav - security update
2018-01-27 00:00:00
cvelist
cvelist
CVE-2017-12374
2018-01-26 20:00:00
prion
prion
Design/Logic Flaw
2018-01-26 20:29:00
cve
cve
CVE-2017-12374
2018-01-26 20:29:00
debian
debian
[SECURITY] [DLA 1261-1] clamav security update
2018-01-28 02:50:41
openvas
openvas
ClamAV <= 0.99.2 'messageAddArgument' Multiple Vulnerabilities - Windows
2018-01-29 00:00:00
Mageia: Security Advisory (MGASA-2018-0117)
2022-01-28 00:00:00
ClamAV <= 0.99.2 'messageAddArgument' Multiple Vulnerabilities - Linux
2018-01-29 00:00:00
freebsd
freebsd
clamav -- multiple vulnerabilities
2018-01-25 00:00:00
ubuntu
ubuntu
ClamAV vulnerabilities
2018-01-30 00:00:00
ClamAV vulnerabilities
2018-02-05 00:00:00
nessus
nessus
Ubuntu 14.04 LTS / 16.04 LTS : ClamAV vulnerabilities (USN-3550-1)
2018-01-31 00:00:00
FreeBSD : clamav -- multiple vulnerabilities (b464f61b-84c7-4e1c-8ad4-6cf9efffd025)
2018-01-29 00:00:00
ClamAV < 0.99.3 Multiple libclamav DoS
2018-02-06 00:00:00
mageia
mageia
Updated clamav packages fix security vulnerability
2018-02-06 09:25:44
redhatcve
redhatcve
CVE-2017-12377
2022-05-21 00:22:02
gentoo
gentoo
ClamAV: Multiple vulnerabilities
2018-01-26 00:00:00
archlinux
archlinux
[ASA-201802-1] clamav: multiple issues
2018-02-09 00:00:00
fedora
fedora
[SECURITY] Fedora 27 Update: clamav-0.99.3-1.fc27
2018-01-29 18:09:32
[SECURITY] Fedora 26 Update: clamav-0.99.3-1.fc26
2018-02-06 10:54:02
[SECURITY] Fedora 27 Update: clamav-0.100.2-2.fc27
2018-10-16 12:10:03
amazon
amazon
Medium: clamav
2018-02-20 21:35:00
suse
suse
Security update for clamav (important)
2018-01-28 15:06:45
Security update for clamav (important)
2018-01-27 21:07:02
Security update for clamav (important)
2018-01-27 18:07:57