Amazon Linux 2023 : clamav, clamav-data, clamav-devel (ALAS2023-2024-615)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-615 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks ...

Mageia: Security Advisory (MGASA-2024-0048)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-6636-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 23.10 : ClamAV vulnerabilities (USN-6636-1)

The remote Ubuntu 23.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6636-1 advisory. It was discovered that ClamAV incorrectly handled parsing certain OLE2 files. A remote attacker could possibly use this issue to cause ClamAV to crash,...

USN-6636-1: ClamAV vulnerabilities

It was discovered that ClamAV incorrectly handled parsing certain OLE2 files. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service. CVE-2024-20290 Amit Schendel discovered that the ClamAV ClamD service incorrectly handled the VirusEvent featur...

Fedora 38 : clamav (2024-c42cf0e576)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-c42cf0e576 advisory. Update to 1.0.5 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested fo...

FreeBSD : clamav -- Multiple vulnerabilities (68ae70c5-c5e5-11ee-9768-08002784c58d)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 68ae70c5-c5e5-11ee-9768-08002784c58d advisory. - A vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated,...

CVE-2024-20290

creationtimestamp| type| source ---|---|--- 2024-02-07 18:32:23+00:00| seen| https://t.me/ctinow/180882 2024-02-09 17:21:56+00:00| seen| https://t.me/itsecnews/4100 2024-03-01 21:16:40+00:00| seen| https://t.me/ctinow/197989 2024-03-02 10:11:58+00:00| seen| https://t.me/ctinow/198302...

CVE-2024-20290 vulnerabilities

Vulnerabilities for packages: clamav...

CVE-2024-20290 vulnerabilities

Vulnerabilities for packages: clamav...

CVE-2024-20290

A vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to an incorrect check for end-of-string values during scanning, which may result in a heap buffer...

CVE-2024-20290

A vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to an incorrect check for end-of-string values during scanning, which may result in a heap buffer...