20 matches found
Debian: Security Advisory (DLA-95-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu: Security Advisory (USN-2423-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2014:1571-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory for clamav (SUSE-SU-2014:1571-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory for clamav (SUSE-SU-2014:1574-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DLA-95-1 : clamav security update
Two bugs were discovered in clamav and are fixed by this release. One issue is in clamscan, the command line anti-virus scanner included in the package, which could lead to crashes when scanning certain files. CVE-2013-6497 The second issue is in libclamav which caused a heap buffer overflow when...
Low: clamav
Issue Overview: clamscan in ClamAV before 0.98.5, when using -a option, allows remote attackers to cause a denial of service crash as demonstrated by the jwplayer.js file. Affected Packages: clamav Issue Correction: Run yum update clamav or yum update --advisory ALAS-2014-457 to update your syste...
openSUSE: Security Advisory for clamav (openSUSE-SU-2014:1560-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SuSE 11.3 Security Update : clamav (SAT Patch Number 10016)
clamav was updated to version 0.98.5 to fix three security issues and several non-security issues. These security issues have been fixed : - Crash when scanning maliciously crafted yoda's crypter files. CVE-2013-6497 - Heap-based buffer overflow when scanning crypted PE files. CVE-2014-9050 - Cra...
Security update for clamav (important)
clamav was updated to version 0.98.5 to fix two security issues. These security issues were fixed: - Segmentation fault when processing certain files CVE-2013-6497. - Heap-based buffer overflow when scanning crypted PE files CVE-2014-9050. The following non-security issues were fixed: - Support f...
[SECURITY] [DLA 95-1] clamav security update
this was initially sent on 2014-11-27, but did not reach the list due to a mistake on my side Package : clamav Version : 0.98.1+dfsg-1+deb6u4 CVE ID : CVE-2014-9050 CVE-2013-6497 Debian Bug : 770985 Two bugs were discovered in clamav and are fixed by this release. One issue is in clamscan, the...
CVE-2013-6497
clamscan in ClamAV before 0.98.5, when using -a option, allows remote attackers to cause a denial of service crash as demonstrated by the jwplayer.js file...
Fedora Update for clamav FEDORA-2014-15463
Check the version of clamav SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868522";...
Ubuntu 14.04 LTS : ClamAV vulnerabilities (USN-2423-1)
The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2423-1 advisory. Kurt Seifried discovered that ClamAV incorrectly handled certain JavaScript files. An attacker could possibly use this issue to cause ClamAV to crash,...
DLA-95-1 clamav - security update
Bulletin has no description...
USN-2423-1: ClamAV vulnerabilities
Kurt Seifried discovered that ClamAV incorrectly handled certain JavaScript files. An attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2013-6497 Damien Millescamp discovered that ClamAV incorrectly handled...
USN-2423-1 clamav vulnerabilities
Kurt Seifried discovered that ClamAV incorrectly handled certain JavaScript files. An attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2013-6497 Damien Millescamp discovered that ClamAV incorrectly handled...
Updated clamav packages fix security vulnerabilities
Certain javascript files causes ClamAV to segfault when scanned with the -a list archived files CVE-2013-6497. A heap buffer overflow was reported in ClamAV when scanning a specially crafted y0da Crypter obfuscated PE file CVE-2014-9050. ClamAV has been updated to version 0.98.5 to address these...
Fedora Update for clamav FEDORA-2014-15473
Check the version of clamav SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868506";...
Mandriva Linux Security Advisory : clamav (MDVSA-2014:217)
ClamAV 0.98.5 addresses several reported potential security bugs. Certain JavaScript files causes ClamAV to segfault when scanned with the -a list archived files CVE-2013-6497. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extract...