Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2022-20698HistoryJan 14, 2022 - 6:15 a.m.
CVE-2022-20698
2022-01-1406:15:00
Debian Security Bug Tracker
security-tracker.debian.org
9
0.002 Low
EPSS
Percentile
64.6%
A vulnerability in the OOXML parsing module in Clam AntiVirus (ClamAV) Software version 0.104.1 and LTS version 0.103.4 and prior versions could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to improper checks that may result in an invalid pointer read. An attacker could exploit this vulnerability by sending a crafted OOXML file to an affected device. An exploit could allow the attacker to cause the ClamAV scanning process to crash, resulting in a denial of service condition.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | clamav | < 0.103.5+dfsg-1 | clamav_0.103.5+dfsg-1_all.deb |
| Debian | 11 | all | clamav | < 0.103.5+dfsg-0+deb11u1 | clamav_0.103.5+dfsg-0+deb11u1_all.deb |
| Debian | 10 | all | clamav | < 0.103.5+dfsg-0+deb10u1 | clamav_0.103.5+dfsg-0+deb10u1_all.deb |
| Debian | 999 | all | clamav | < 0.103.5+dfsg-1 | clamav_0.103.5+dfsg-1_all.deb |
| Debian | 13 | all | clamav | < 0.103.5+dfsg-1 | clamav_0.103.5+dfsg-1_all.deb |
Related
suse
suse
Security update for clamav (important)
2022-02-18 00:00:00
nessus
nessus
SUSE SLES12 Security Update : clamav (SUSE-SU-2022:0358-1)
2022-02-10 00:00:00
Ubuntu 18.04 LTS / 20.04 LTS : ClamAV vulnerability (USN-5233-1)
2022-01-18 00:00:00
openSUSE 15 Security Update : clamav (openSUSE-SU-2022:0493-1)
2022-02-22 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 8 package clamav version 0.103.5-alt1
2022-02-01 00:00:00
Security fix for the ALT Linux 9 package clamav version 0.103.5-alt1
2022-01-25 00:00:00
Security fix for the ALT Linux 10 package clamav version 0.103.5-alt1
2022-01-21 00:00:00
ubuntu
ubuntu
ClamAV vulnerability
2022-01-18 00:00:00
ClamAV vulnerability
2022-01-19 00:00:00
ubuntucve
ubuntucve
CVE-2022-20698
2022-01-13 00:00:00
freebsd
freebsd
clamav -- invalid pointer read that may cause a crash
2022-01-12 00:00:00
redos
redos
ROS-20220125-03
2022-01-25 00:00:00
osv
osv
clamav vulnerability
2022-01-19 12:42:55
clamav vulnerability
2022-01-18 12:24:28
CVE-2022-20698
2022-01-14 06:15:09
cbl_mariner
cbl_mariner
CVE-2022-20698 affecting package clamav 0.103.2-1
2022-03-10 23:47:31
CVE-2022-20698 affecting package clamav for versions less than 0.104.2-1
2022-04-09 06:51:55
mageia
mageia
Updated clamav packages fix security vulnerability
2022-01-18 22:29:46
cnvd
cnvd
Clam AntiVirus Input Validation Error Vulnerability (CNVD-2022-64263)
2022-01-17 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2022-0024)
2022-01-28 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:0358-1)
2022-02-10 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:0160-1)
2022-01-25 00:00:00
alpinelinux
alpinelinux
CVE-2022-20698
2022-01-14 06:15:00
cve
cve
CVE-2022-20698
2022-01-14 06:15:00
veracode
veracode
Denial Of Service (DoS)
2022-01-15 23:40:11
prion
prion
Input validation
2022-01-14 06:15:00
cvelist
cvelist
CVE-2022-20698 Clam AntiVirus (ClamAV) Denial of Service Vulnerability
2022-01-14 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2023-2285
2023-10-31 14:07:18
gentoo
gentoo
ClamAV: Multiple Vulnerabilities
2023-10-01 00:00:00