Lucene search
K

22 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:20 a.m.3 views

SUSE CVE-2018-1000085

ClamAV version version 0.99.3 contains a Out of bounds heap memory read vulnerability in XAR parser, function xarhashcheck that can result in Leaking of memory, may help in developing exploit chains.. This attack appear to be exploitable via The victim must scan a crafted XAR file. This...

7.5CVSS9.2AI score0.0167EPSS
Exploits0References10
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.20 views

Mageia: Security Advisory (MGASA-2018-0169)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.9AI score0.02672EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2018:0863-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.2AI score0.10027EPSS
Exploits4References8
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.19 views

SUSE: Security Advisory (SUSE-SU-2018:2323-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.5AI score0.03312EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.28 views

SUSE: Security Advisory (SUSE-SU-2018:2323-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.5AI score0.03312EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2018:0809-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.2AI score0.10027EPSS
Exploits4References8
Tenable Nessus
Tenable Nessus
added 2018/10/22 12:0 a.m.30 views

SUSE SLES12 Security Update : clamav (SUSE-SU-2018:2323-2)

This update for clamav to version 0.100.1 fixes the following issues : The following security vulnerabilities were addressed : CVE-2018-0360: HWP integer overflow, infinite loop vulnerability bsc1101410 CVE-2018-0361: PDF object length check, unreasonably long time to parse relatively small file...

6.5CVSS6.7AI score0.03312EPSS
Exploits0References14
Tenable Nessus
Tenable Nessus
added 2018/08/20 12:0 a.m.32 views

openSUSE Security Update : clamav (openSUSE-2018-889)

This update for clamav to version 0.100.1 fixes the following issues: The following security vulnerabilities were addressed : - CVE-2018-0360: HWP integer overflow, infinite loop vulnerability bsc1101410 - CVE-2018-0361: PDF object length check, unreasonably long time to parse relatively small fi...

6.5CVSS6.7AI score0.03312EPSS
Exploits0References9
OpenVAS
OpenVAS
added 2018/08/18 12:0 a.m.32 views

openSUSE: Security Advisory for clamav (openSUSE-SU-2018:2406-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

6.5CVSS6.7AI score0.03312EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/08/15 12:0 a.m.34 views

SUSE SLED12 / SLES12 Security Update : clamav (SUSE-SU-2018:2323-1)

This update for clamav to version 0.100.1 fixes the following issues: The following security vulnerabilities were addressed : - CVE-2018-0360: HWP integer overflow, infinite loop vulnerability bsc1101410 - CVE-2018-0361: PDF object length check, unreasonably long time to parse relatively small fi...

6.5CVSS6.7AI score0.03312EPSS
Exploits0References14
Tenable Nessus
Tenable Nessus
added 2018/04/04 12:0 a.m.26 views

SUSE SLES11 Security Update : clamav (SUSE-SU-2018:0863-1)

This update for clamav fixes the following issues: Security issues fixed : - CVE-2012-6706: VMSFDELTA filter inside the unrar implementation allows an arbitrary memory write bsc1045315. - CVE-2017-6419: A heap-based buffer overflow that can lead to a denial of service in libmspack via a crafted C...

10CVSS7.3AI score0.10027EPSS
Exploits4References16
Tenable Nessus
Tenable Nessus
added 2018/03/27 12:0 a.m.31 views

openSUSE Security Update : clamav (openSUSE-2018-314)

This update for clamav fixes the following issues : Security issues fixed : - CVE-2012-6706: VMSFDELTA filter inside the unrar implementation allows an arbitrary memory write bsc1045315. - CVE-2017-6419: A heap-based buffer overflow that can lead to a denial of service in libmspack via a crafted...

10CVSS7.3AI score0.10027EPSS
Exploits4References10
Tenable Nessus
Tenable Nessus
added 2018/03/19 12:0 a.m.26 views

Debian DLA-1307-1 : clamav security update

Some vulnerabilities have been found in ClamAV, an open source antivirus engine : CVE-2018-0202 It was found that ClamAV didn't process certain PDF files correctly, relating to a heap overflow. Specially crafted PDFs could yield ClamAV to crash, resulting in a denial of service or potentially...

5.5CVSS6.4AI score0.02672EPSS
Exploits0References4
ArchLinux
ArchLinux
added 2018/03/18 12:0 a.m.44 views

[ASA-201803-14] clamav: multiple issues

Arch Linux Security Advisory ASA-201803-14 ========================================== Severity: Critical Date : 2018-03-18 CVE-ID : CVE-2012-6706 CVE-2017-6419 CVE-2017-11423 CVE-2018-0202 CVE-2018-1000085 Package : clamav Type : multiple issues Remote : Yes Link :...

10CVSS1.7AI score0.10027EPSS
Exploits4References27
Mageia
Mageia
added 2018/03/14 5:0 p.m.43 views

Updated clamav packages fix security vulnerabilities

Clamav has been updated to fix 2 security issues and also contains a lot of bugfixes. Out-of-bounds access in the PDF parser CVE-2018-0202 Out-of-bounds heap read in XAR parser CVE-2018-1000085...

5.5CVSS3AI score0.02672EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2018/03/14 12:0 a.m.25 views

Ubuntu: Security Advisory (USN-3592-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS6AI score0.02672EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2018/03/14 12:0 a.m.33 views

Fedora Update for clamav FEDORA-2018-d2b08aa37f

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.2AI score0.10027EPSS
Exploits4References2
OSV
OSV
added 2018/03/13 3:29 p.m.19 views

CVE-2018-1000085

ClamAV version version 0.99.3 contains a Out of bounds heap memory read vulnerability in XAR parser, function xarhashcheck that can result in Leaking of memory, may help in developing exploit chains.. This attack appear to be exploitable via The victim must scan a crafted XAR file. This...

5.5CVSS6.6AI score
Exploits0References6
CVE
CVE
added 2018/03/13 3:0 p.m.109 views

CVE-2018-1000085

ClamAV (v0.99.3) contains an out-of-bounds heap memory read in the XAR parser’s xar_hash_check function, which can cause a memory leak and denial of service when scanning a crafted XAR file. Public advisories indicate the issue was fixed in upstream with the release of 0.99.4 (and related distro ...

5.5CVSS6.2AI score0.0167EPSS
Exploits0References6Affected Software1
Ubuntu
Ubuntu
added 2018/03/08 12:16 p.m.59 views

USN-3592-1: ClamAV vulnerabilities

It was discovered that ClamAV incorrectly handled parsing certain PDF files. A remote attacker could use this issue to cause ClamAV to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2018-0202 Hanno Böck discovered that ClamAV incorrectly handled parsing certain X...

5.5CVSS6.8AI score0.02672EPSS
Exploits0
Rows per page
Query Builder