17 matches found
SUSE: Security Advisory (SUSE-SU-2025:0325-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Amazon Linux AMI : clamav (ALAS-2023-1820)
The version of clamav installed on the remote host is prior to 0.103.9-1.55. It is, therefore, affected by a vulnerability as referenced in the ALAS-2023-1820 advisory. A vulnerability in the filesystem image parser for Hierarchical File System Plus HFS+ of ClamAV could allow an unauthenticated,...
Important: clamav
Issue Overview: A vulnerability in the filesystem image parser for Hierarchical File System Plus HFS+ of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to an incorrect check for completion when a...
Important: clamav
Issue Overview: A vulnerability in the filesystem image parser for Hierarchical File System Plus HFS+ of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to an incorrect check for completion when a...
OESA-2023-1560 clamav security update
Clam AntiVirus clamav is an open source antivirus engine for detecting trojans, viruses, malware and other malicious threats. The main purpose of this software is the integration with mail servers attachment scanning. The package provides a flexible and scalable multi-threaded daemon, a command...
OESA-2023-1559 clamav security update
Clam AntiVirus clamav is an open source antivirus engine for detecting trojans, viruses, malware and other malicious threats. The main purpose of this software is the integration with mail servers attachment scanning. The package provides a flexible and scalable multi-threaded daemon, a command...
OESA-2023-1557 clamav security update
Clam AntiVirus clamav is an open source antivirus engine for detecting trojans, viruses, malware and other malicious threats. The main purpose of this software is the integration with mail servers attachment scanning. The package provides a flexible and scalable multi-threaded daemon, a command...
SUSE SLES12 Security Update : clamav (SUSE-SU-2023:3435-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2023:3435-1 advisory. - Update to 0.103.9 - CVE-2023-20197: Fixed a possible denial of service vulnerability in the HFS+ file parser. bsc1214342 Tenable has...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : clamav (SUSE-SU-2023:3456-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:3456-1 advisory. - Update to 0.103.9 - CVE-2023-20197: Fixed a possible denial of service vulnerability in the HFS+ file...
SUSE-SU-2023:3456-1 Security update for clamav
This update for clamav fixes the following issues: - Update to 0.103.9 - CVE-2023-20197: Fixed a possible denial of service vulnerability in the HFS+ file parser. bsc1214342...
Debian dla-3544 : clamav - security update
The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3544 advisory. - ----------------------------------------------------------------------- Debian LTS Advisory DLA-3544-1 [email protected] https://www.debian.org/lts/security/...
Fedora 37 : clamav (2023-9f948bec13)
The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-9f948bec13 advisory. CVE-2023-20197 ClamAV File Scanning Infinite Loop Denial of Service Vulnerability Tenable has extracted the preceding description block directly fro...
Fedora 38 : clamav (2023-bf72d8833e)
The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-bf72d8833e advisory. CVE-2023-20197 ClamAV File Scanning Infinite Loop Denial of Service Vulnerability Tenable has extracted the preceding description block directly fro...
Ubuntu 20.04 LTS / 22.04 LTS / 23.04 : ClamAV vulnerability (USN-6303-1)
The remote Ubuntu 20.04 LTS / 22.04 LTS / 23.04 host has packages installed that are affected by a vulnerability as referenced in the USN-6303-1 advisory. It was discovered that ClamAV incorrectly handled parsing HFS+ files. A remote attacker could possibly use this issue to cause ClamAV to crash...
FreeBSD : clamav -- Possible denial of service vulnerability in the HFS+ file parser (51a59f36-3c58-11ee-b32e-080027f5fec9)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 51a59f36-3c58-11ee-b32e-080027f5fec9 advisory. - A vulnerability in the filesystem image parser for Hierarchical File System Plus HFS+ of ClamAV could...
CVE-2023-20197
A vulnerability in the filesystem image parser for Hierarchical File System Plus HFS+ of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to an incorrect check for completion when a file is...
CVE-2023-20197
CVE-2023-20197 describes a DoS in ClamAV caused by the HFS+ filesystem image parser. The root cause is an incorrect completion-check during file decompression, which can trigger an infinite loop and make the ClamAV scanning process stop responding, consuming resources. Exploitation requires sendi...