17 matches found
Ubuntu: Security Advisory (USN-3393-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2018:0255-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security fix for the ALT Linux 8 package clamav version 0.99.3-alt1
0.99.3-alt1 built Jan. 30, 2018 Sergey Y. Afonin in task 198652 Jan. 28, 2018 Sergey Y. Afonin - 0.99.3 multiple CVE's, look to README - removed cve-2017-6418.patch and cve-2017-6420.patch in upstream now...
openSUSE: Security Advisory for clamav (openSUSE-SU-2018:0258-1)
The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
SUSE SLED12 / SLES12 Security Update : clamav (SUSE-SU-2018:0255-1)
This update for clamav fixes the following issues : - Update to security release 0.99.3 bsc1077732 - CVE-2017-12376 ClamAV Buffer Overflow in handlepdfname Vulnerability - CVE-2017-12377 ClamAV Mew Packet Heap Overflow Vulnerability - CVE-2017-12379 ClamAV Buffer Overflow in messageAddArgument...
Fedora 26 : clamav (2018-a86bad9689)
Fixes some regressions of previous versions ---- Security fixes CVE-2017-6420 1483910, CVE-2017-6418 1483908 ---- Fixes for rhbz 1530678 and 1518016 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempt...
Fedora 27 : clamav (2018-2a1f469c85)
Fixes some regressions of previous versions ---- Security fixes CVE-2017-6420 1483910, CVE-2017-6418 1483908 ---- - Fix bugs 1126595,1464269,1126625 and 1258536, - Update of main.cvd, daily.cvd and bytecode.cvd ---- - Fixes for rhbz 1530678 and 1518016 Note that Tenable Network Security has...
Security fix for the ALT Linux 10 package clamav version 0.99.2-alt3
Sept. 25, 2017 Anton V. Boyarshinov 0.99.2-alt3 - Fixes: + CVE-2017-6418 remote attackers can cause a denial of service out-of-bounds read via a crafted e-mail message + CVE-2017-6420 remote attackers can cause a denial of service use-after-free via a crafted PE file with WWPack compression...
Security fix for the ALT Linux 8 package clamav version 0.99.2-alt3
Sept. 25, 2017 Anton V. Boyarshinov 0.99.2-alt3 - Fixes: + CVE-2017-6418 remote attackers can cause a denial of service out-of-bounds read via a crafted e-mail message + CVE-2017-6420 remote attackers can cause a denial of service use-after-free via a crafted PE file with WWPack compression...
Security fix for the ALT Linux 9 package clamav version 0.99.2-alt3
Sept. 25, 2017 Anton V. Boyarshinov 0.99.2-alt3 - Fixes: + CVE-2017-6418 remote attackers can cause a denial of service out-of-bounds read via a crafted e-mail message + CVE-2017-6420 remote attackers can cause a denial of service use-after-free via a crafted PE file with WWPack compression...
[SECURITY] [DLA 1105-1] clamav security update
Package : clamav Version : 0.99.2+dfsg-0+deb7u3 CVE ID : CVE-2017-6418 CVE-2017-6420 clamav is vulnerable to multiple issues that can lead to denial of service when processing untrusted content. CVE-2017-6418 out-of-bounds read in libclamav/message.c, allowing remote attackers to cause a denial o...
Updated clamav packages fix security vulnerabilities
It was discovered that ClamAV incorrectly handled parsing certain e-mail messages. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service CVE-2017-6418. It was discovered that ClamAV incorrectly handled parsing certain PE files with WWPack...
Ubuntu: Security Advisory (USN-3393-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
ClamAV <= 0.99.2 Multiple DoS Vulnerabilities - Linux
ClamAV is prone to multiple denial of service DoS vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:clamav:clamav"...
CVE-2017-6418
libclamav/message.c in ClamAV 0.99.2 allows remote attackers to cause a denial of service out-of-bounds read via a crafted e-mail message...
DEBIAN-CVE-2017-6418
libclamav/message.c in ClamAV 0.99.2 allows remote attackers to cause a denial of service out-of-bounds read via a crafted e-mail message...
CVE-2017-6418
CVE-2017-6418 affects ClamAV prior to 0.99.3. The issue is in libclamav/message.c, where a crafted e-mail message can trigger an out-of-bounds read, leading to DoS. Public documentation in the connected items confirms vulnerable code path and impact. Remediation documented in the connected source...