Debian: Security Advisory (DLA-233-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE CVE-2015-2170

The upx decoder in ClamAV before 0.98.7 allows remote attackers to cause a denial of service crash via a crafted file...

Mageia: Security Advisory (MGASA-2015-0190)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2015:0882-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2015:0882-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Amazon Linux: Security Advisory (ALAS-2015-537)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

ClamAV < 0.98.7 Multiple DoS Vulnerabilities - Linux

ClamAV is prone to multiple denial of service DoS vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:clamav:clamav"...

ClamAV UPX File Handling Integer Overflow (CVE-2015-2170)

An integer overflow vulnerability exists in ClamAV Antivirus software. The vulnerability is due to an error in "upx.c" while parsing UPX-packed executable files. A remote attacker could exploit this vulnerability to cause a denial of service condition on the target system...

Medium: clamav

Issue Overview: ClamAV before 0.98.7 allows remote attackers to cause a denial of service infinite loop via a crafted y0da cryptor file. CVE-2015-2221 ClamAV before 0.98.7 allows remote attackers to cause a denial of service infinite loop via a crafted xz archive file. CVE-2015-2668 ClamAV before...

[SECURITY] [DLA 233-1] clamav security and upstream version update

Package : clamav Version : 0.98.7+dfsg-0+deb6u1 CVE ID : CVE-2014-9328 CVE-2015-1461 CVE-2015-1462 CVE-2015-1463 CVE-2015-2170 CVE-2015-2221 CVE-2015-2222 CVE-2015-2668 Upstream published version 0.98.7. This update updates sqeeze-lts to the latest upstream release in line with the approach used...

Debian DLA-233-1 : clamav security and upstream version update

Upstream published version 0.98.7. This update updates sqeeze-lts to the latest upstream release in line with the approach used for other Debian releases. The changes are not strictly required for operation, but users of the previous version in Squeeze may not be able to make use of all current...

SuSE 11.3 Security Update : clamav (SAT Patch Number 10664)

The ClamAV antivirus engine was updated to version 0.98.7 to fix several security issues : - Fix crash in upx decoder with crafted file. Discovered and patch supplied by Sebastian Andrzej Siewior. CVE-2015-2170 - Fix infinite loop condition on crafted y0da cryptor file. Identified and patch...

CVE-2015-2170

The CVE-2015-2170 entry concerns ClamAV upx decoding: the upx decoder (upx.c) in ClamAV before 0.98.7 can crash the scanner (DoS) when processing crafted UPX-packed files. Connected advisories confirm a fixed version in ClamAV 0.98.7 and downstream updates. Affected products include ClamAV 0.98.7...

CVE-2015-2170

The upx decoder in ClamAV before 0.98.7 allows remote attackers to cause a denial of service crash via a crafted file...

Mandriva Linux Security Advisory : clamav (MDVSA-2015:221)

Multiple vulnerabilities has been found and corrected in clamav : Fix infinite loop condition on crafted y0da cryptor file. Identified and patch suggested by Sebastian Andrzej Siewior CVE-2015-2221. Fix crash on crafted petite packed file. Reported and patch supplied by Sebastian Andrzej Siewior...

Fedora Update for clamav FEDORA-2015-7334

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...