Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntuUbuntuUSN-2488-2
HistoryFeb 12, 2015 - 12:00 a.m.

ClamAV vulnerability

2015-02-1200:00:00
ubuntu.com
25

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.8 Medium

AI Score

Confidence

Low

0.131 Low

EPSS

Percentile

95.5%

JSON

Releases

  • Ubuntu 10.04

Packages

  • clamav - Anti-virus utility for Unix

Details

USN-2488-1 fixed a vulnerability in ClamAV for Ubuntu 14.10, Ubuntu
14.04 LTS, and Ubuntu 12.04 LTS. This update provides the corresponding
update for Ubuntu 10.04 LTS.

Original advisory details:

Sebastian Andrzej Siewior discovered that ClamAV incorrectly handled
certain upack packer files. An attacker could possibly use this issue to
cause ClamAV to crash, resulting in a denial of service, or possibly
execute arbitrary code.

OSVersionArchitecturePackageVersionFilename
Ubuntu10.04noarchclamav< 0.98.6+dfsg-0ubuntu0.10.04.1UNKNOWN
Ubuntu10.04noarchclamav-daemon< 0.98.6+dfsg-0ubuntu0.10.04.1UNKNOWN
Ubuntu10.04noarchclamav-dbg< 0.98.6+dfsg-0ubuntu0.10.04.1UNKNOWN
Ubuntu10.04noarchclamav-freshclam< 0.98.6+dfsg-0ubuntu0.10.04.1UNKNOWN
Ubuntu10.04noarchclamav-milter< 0.98.6+dfsg-0ubuntu0.10.04.1UNKNOWN
Ubuntu10.04noarchlibclamav-dev< 0.98.6+dfsg-0ubuntu0.10.04.1UNKNOWN
Ubuntu10.04noarchlibclamav6< 0.98.6+dfsg-0ubuntu0.10.04.1UNKNOWN

Related

openvas 25
nessus 24
archlinux 2
ubuntucve 2
ubuntu 2
amazon 2
debiancve 2
prion 2
fedora 5
securityvulns 4
altlinux 3
cvelist 2
cve 2
nvd 2
mageia 2
suse 6
debian 2
osv 2
gentoo 1
openvas
openvas
Ubuntu: Security Advisory (USN-2488-2)
2015-02-14 00:00:00
Ubuntu: Security Advisory (USN-2488-1)
2015-02-03 00:00:00
Fedora Update for clamav FEDORA-2015-1461
2015-01-31 00:00:00
nessus
nessus
Ubuntu 10.04 LTS : clamav vulnerability (USN-2488-2)
2015-02-13 00:00:00
Mandriva Linux Security Advisory : clamav (MDVSA-2015:166)
2015-03-30 00:00:00
Ubuntu 14.04 LTS : ClamAV vulnerability (USN-2488-1)
2015-02-03 00:00:00
archlinux
archlinux
clamav: arbitrary code execution
2015-02-06 00:00:00
clamav: denial of service
2014-11-20 00:00:00
ubuntucve
ubuntucve
CVE-2014-9328
2015-01-29 00:00:00
CVE-2013-6497
2013-12-31 00:00:00
ubuntu
ubuntu
ClamAV vulnerability
2015-02-02 00:00:00
ClamAV vulnerabilities
2014-11-26 00:00:00
amazon
amazon
Medium: clamav
2015-03-04 15:52:00
Low: clamav
2014-12-08 13:12:00
debiancve
debiancve
CVE-2014-9328
2015-02-03 16:59:02
CVE-2013-6497
2014-12-01 15:59:00
prion
prion
Heap overflow
2015-02-03 16:59:00
Code injection
2014-12-01 15:59:00
fedora
fedora
[SECURITY] Fedora 21 Update: clamav-0.98.6-1.fc21
2015-01-30 23:56:42
[SECURITY] Fedora 20 Update: clamav-0.98.6-1.fc20
2015-01-30 23:53:55
[SECURITY] Fedora 20 Update: clamav-0.98.5-1.fc20
2014-11-22 12:39:19
securityvulns
securityvulns
ClamAV memory corruptions
2015-02-11 00:00:00
[ MDVSA-2015:042 ] clamav
2015-02-11 00:00:00
ClamAV memory corruptions
2014-11-30 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package clamav version 0.98.6-alt1
2015-01-28 00:00:00
Security fix for the ALT Linux 9 package clamav version 0.98.6-alt1
2015-01-28 00:00:00
Security fix for the ALT Linux 8 package clamav version 0.98.6-alt1
2015-01-28 00:00:00
cvelist
cvelist
CVE-2014-9328
2015-02-03 16:00:00
CVE-2013-6497
2014-12-01 15:00:00
cve
cve
CVE-2014-9328
2015-02-03 16:59:02
CVE-2013-6497
2014-12-01 15:59:00
nvd
nvd
CVE-2014-9328
2015-02-03 16:59:02
CVE-2013-6497
2014-12-01 15:59:00
mageia
mageia
Updated clamav packages fix security vulnerabilities
2015-02-10 00:44:14
Updated clamav packages fix security vulnerabilities
2014-11-26 13:14:01
suse
suse
Security update for clamav (important)
2014-12-21 19:04:40
Security update for clamav (important)
2014-12-05 21:04:59
Security update for clamav (important)
2014-12-05 10:04:48
debian
debian
[SECURITY] [DLA 95-1] clamav security update
2014-12-02 21:37:10
[SECURITY] [DLA 233-1] clamav security and upstream version update
2015-05-29 03:57:22
osv
osv
clamav - security update
2014-12-02 00:00:00
clamav - security update
2015-05-28 00:00:00
gentoo
gentoo
ClamAV: Multiple vulnerabilities
2015-12-30 00:00:00

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.8 Medium

AI Score

Confidence

Low

0.131 Low

EPSS

Percentile

95.5%

JSON
Related for USN-2488-2
openvas25nessus24archlinux2ubuntucve2ubuntu2amazon2debiancve2prion2fedora5securityvulns4altlinux3cvelist2cve2nvd2mageia2suse6debian2osv2gentoo1