21 matches found
Ubuntu: Security Advisory (USN-4435-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mageia: Security Advisory (MGASA-2020-0322)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2020:3790-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2021:14592-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2021:14592-1 Security update for clamav
This update for clamav fixes the following issues: - Update to 0.103.0 to implement jscECO-3010 and bsc1118459 - This update incorporates incompatible changes that were introduced in version 0.101.0. - Accumulated security fixes: CVE-2020-3350: Fix a vulnerability wherein a malicious user could...
SUSE SLES12 Security Update : clamav (SUSE-SU-2020:3918-1)
This update for clamav fixes the following issues : clamav was updated to 0.103.0 to implement jscECO-3010 and bsc1118459. clamd can now reload the signature database without blocking scanning. This multi-threaded database reload improvement was made possible thanks to a community effort. -...
Security update for clamav (moderate)
openSUSE Security Update: Security update for clamav Announcement ID: openSUSE-SU-2020:2276-1 Rating: moderate References: 1104457 1118459 1130721 1144504 1149458 1157763 Cross-References: CVE-2019-12625 CVE-2019-12900 CVE-2019-15961 CVE-2019-1785 CVE-2019-1786 CVE-2019-1787 CVE-2019-1788...
SUSE SLED15 / SLES15 Security Update : clamav (SUSE-SU-2020:3790-1)
This update for clamav fixes the following issues : clamav was updated to the new major release 0.103.0. jscECO-3010,bsc1118459 Note that libclamav was changed incompatible, if you have a 3rd party application that uses libclamav, it needs to be rebuilt. Update to 0.103.0 clamd can now reload the...
Amazon Linux AMI : clamav (ALAS-2020-1433)
The version of clamav installed on the remote host is prior to 0.102.4-1.44. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2020-1433 advisory. Fixed a vulnerability in the ARJ archive-parsing module in ClamAV 0.102.3 that could cause a denial-of- service DoS...
Important: clamav
Issue Overview: Fixed a vulnerability in the ARJ archive-parsing module in ClamAV 0.102.3 that could cause a denial-of-service DoS condition. Improper bounds checking resulted in an out-of-bounds read that could cause a crash. The previous fix for this CVE in version 0.102.3 was incomplete. This...
Fedora 32 : clamav (2020-6584a641ae)
ClamAV 0.102.4 is a bug patch release to address the following issues : CVE-2020-3350 Fixed a vulnerability a malicious user could exploit to replace a scan target's directory with a symlink to another path to trick clamscan, clamdscan, or clamonacc into removing or moving a different file such a...
Fedora 31 : clamav (2020-dd0c20d985)
ClamAV 0.102.4 is a bug patch release to address the following issues : CVE-2020-3350 Fixed a vulnerability a malicious user could exploit to replace a scan target's directory with a symlink to another path to trick clamscan, clamdscan, or clamonacc into removing or moving a different file such a...
Security fix for the ALT Linux 8 package clamav version 0.102.4-alt1
0.102.4-alt1 built July 30, 2020 Sergey Y. Afonin in task 255498 July 28, 2020 Sergey Y. Afonin - 0.102.4 + CVE-2020-3350 + CVE-2020-3327 + CVE-2020-3481...
Security fix for the ALT Linux 9 package clamav version 0.102.4-alt1
0.102.4-alt1 built July 29, 2020 Sergey Y. Afonin in task 255486 July 28, 2020 Sergey Y. Afonin - 0.102.4 + CVE-2020-3350 + CVE-2020-3327 + CVE-2020-3481...
Security fix for the ALT Linux 10 package clamav version 0.102.4-alt1
July 28, 2020 Sergey Y. Afonin 0.102.4-alt1 - 0.102.4 + CVE-2020-3350 + CVE-2020-3327 + CVE-2020-3481...
Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : ClamAV vulnerabilities (USN-4435-1)
The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4435-1 advisory. It was discovered that ClamAV incorrectly handled parsing ARJ archives. A remote attacker could possibly use this issue to cause...
USN-4435-2 clamav vulnerabilities
USN-4435-1 fixed several vulnerabilities in ClamAV. This update provides the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM. Original advisory details: It was discovered that ClamAV incorrectly handled parsing ARJ archives. A remote attacker could possibly use this issue to cause...
USN-4435-2: ClamAV vulnerabilities
USN-4435-1 fixed several vulnerabilities in ClamAV. This update provides the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM. Original advisory details: It was discovered that ClamAV incorrectly handled parsing ARJ archives. A remote attacker could possibly use this issue to cause...
USN-4435-1: ClamAV vulnerabilities
It was discovered that ClamAV incorrectly handled parsing ARJ archives. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service. CVE-2020-3327 It was discovered that ClamAV incorrectly handled scanning malicious files. A local attacker could...
FreeBSD : clamav -- multiple vulnerabilities (f7a02651-c798-11ea-81d6-6805cabe6ebb)
Micah Snyder reports : CVE-2020-3350 Fixed a vulnerability a malicious user could exploit to replace a scan target's directory with a symlink to another path to trick clamscan, clamdscan, or clamonacc into removing or moving a different file such as a critical system file. The issue would affect...