EUVD-2022-26053

Malicious code in bioql PyPI...

EUVD-2024-18005

Malicious code in bioql PyPI...

MGASA-2025-0031 Updated clamav packages fix security vulnerability

ClamAV OLE2 File Format Decryption Denial of Service Vulnerability. CVE-2025-20128...

FreeBSD : clamav -- Possbile denial-of-service vulnerability (1e109b60-d92e-11ef-a661-08002784c58d)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 1e109b60-d92e-11ef-a661-08002784c58d advisory. The ClamAV project reports: A possible buffer overflow read bug is found in the OLE2 file parser that...

Medium: clamav

Issue Overview: A vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to an incorrect check for end-of-string values during scanning, which may result in ...

Fedora 38 : clamav (2024-c42cf0e576)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-c42cf0e576 advisory. Update to 1.0.5 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested fo...

ClamAV 1.0.0 < 1.0.4, 1.1.x, 1.2.0 < 1.2.1 DoS

A vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to an incorrect check for end-of-string values during scanning, which may result in a heap buffer...

CVE-2024-20290

A vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to an incorrect check for end-of-string values during scanning, which may result in a heap buffer...

CVE-2024-20290

A vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to an incorrect check for end-of-string values during scanning, which may result in a heap buffer...

CVE-2022-20803

A vulnerability in the OLE2 file parser of Clam AntiVirus ClamAV versions 0.104.0 through 0.104.2 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device.The vulnerability is due to incorrect use of the realloc function that may result in a...

CVE-2022-20803

A vulnerability in the OLE2 file parser of Clam AntiVirus ClamAV versions 0.104.0 through 0.104.2 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device.The vulnerability is due to incorrect use of the realloc function that may result in a...

Double free

A vulnerability in the OLE2 file parser of Clam AntiVirus ClamAV versions 0.104.0 through 0.104.2 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device.The vulnerability is due to incorrect use of the realloc function that may result in a...

CVE-2022-20803 ClamAV Double-free Vulnerability in the OLE2 File Parser

A vulnerability in the OLE2 file parser of Clam AntiVirus ClamAV versions 0.104.0 through 0.104.2 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device.The vulnerability is due to incorrect use of the realloc function that may result in a...

CVE-2022-20803

CVE-2022-20803 : In ClamAV, the OLE2 file parser in versions 0.104.0–0.104.2 has a flaw due to incorrect use of realloc that may cause a double-free. This can enable an unauthenticated, remote attacker to trigger a denial of service by submitting a crafted OLE2 file for scanning, crashing the Cla...

CVE-2022-20803

A vulnerability in the OLE2 file parser of Clam AntiVirus ClamAV versions 0.104.0 through 0.104.2 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device.The vulnerability is due to incorrect use of the realloc function that may result in a...

openSUSE Security Update : clamav (openSUSE-2019-1210)

This update for clamav to version 0.100.3 fixes the following issues : Security issues fixed bsc1130721: - CVE-2019-1787: Fixed an out-of-bounds heap read condition which may occur when scanning PDF documents. - CVE-2019-1789: Fixed an out-of-bounds heap read condition which may occur when scanni...

The vulnerability of the ClamAV antivirus software lies in the fact that an operation is performed outside the buffer in memory, allowing a hacker to trigger a service failure.

The vulnerability of the ClamAV antivirus program is related to the issue of writing operations outside the buffer in memory when processing OLE2 files. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

Design/Logic Flaw

A vulnerability in the Object Linking & Embedding OLE2 file scanning functionality of Clam AntiVirus ClamAV Software versions 0.101.1 and prior could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to a lack of prope...

CVE-2019-1788 ClamAV OLE2 File Out-Of-Bounds Write Vulnerability

A vulnerability in the Object Linking & Embedding OLE2 file scanning functionality of Clam AntiVirus ClamAV Software versions 0.101.1 and prior could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to a lack of prope...

Code injection

The OLE2 parser in Clam AntiVirus ClamAV allows remote attackers to cause a denial of service resource consumption via an OLE2 file with 1 a large property size or 2 a loop in the FAT file block chain that triggers an infinite loop, as demonstrated via a crafted DOC file...