7 matches found
USN-4435-2 clamav vulnerabilities
USN-4435-1 fixed several vulnerabilities in ClamAV. This update provides the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM. Original advisory details: It was discovered that ClamAV incorrectly handled parsing ARJ archives. A remote attacker could possibly use this issue to cause...
USN-4370-1 clamav vulnerabilities
It was discovered that ClamAV incorrectly handled parsing ARJ archives. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service. CVE-2020-3327 It was discovered that ClamAV incorrectly handled parsing PDF files. A remote attacker could possibly u...
FreeBSD : clamav -- multiple vulnerabilities (91ce95d5-cd15-4105-b942-af5ccc7144c1)
Micah Snyder reports : CVE-2020-3327: Fixed a vulnerability in the ARJ archive-parsing module in ClamAV 0.102.2 that could cause a denial-of-service condition. Improper bounds checking of an unsigned variable results in an out-of-bounds read which causes a crash. Special thanks to Daehui Chang an...
CVE-2020-3327
A vulnerability in the ARJ archive parsing module in Clam AntiVirus ClamAV Software versions 0.102.2 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to a heap buffer overflow read. An attacker could exploit thi...
DEBIAN-CVE-2020-3327
A vulnerability in the ARJ archive parsing module in Clam AntiVirus ClamAV Software versions 0.102.2 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to a heap buffer overflow read. An attacker could exploit thi...
UBUNTU-CVE-2020-3327
A vulnerability in the ARJ archive parsing module in Clam AntiVirus ClamAV Software versions 0.102.2 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to a heap buffer overflow read. An attacker could exploit thi...
F-Secure Antivirus buffer overflow
Buffer overflow on LZH archives parsing. Infinite loop on ARJ and FSG parsing...