EUVD-2024-18005

Malicious code in bioql PyPI...

EUVD-2022-26053

Malicious code in bioql PyPI...

MGASA-2025-0031 Updated clamav packages fix security vulnerability

ClamAV OLE2 File Format Decryption Denial of Service Vulnerability. CVE-2025-20128...

FreeBSD : clamav -- Possbile denial-of-service vulnerability (1e109b60-d92e-11ef-a661-08002784c58d)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 1e109b60-d92e-11ef-a661-08002784c58d advisory. The ClamAV project reports: A possible buffer overflow read bug is found in the OLE2 file parser that...

Medium: clamav

Issue Overview: A vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to an incorrect check for end-of-string values during scanning, which may result in ...

Fedora 38 : clamav (2024-c42cf0e576)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-c42cf0e576 advisory. Update to 1.0.5 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested fo...

ClamAV 1.0.0 < 1.0.4, 1.1.x, 1.2.0 < 1.2.1 DoS

A vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to an incorrect check for end-of-string values during scanning, which may result in a heap buffer...

CVE-2024-20290

A vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to an incorrect check for end-of-string values during scanning, which may result in a heap buffer...

CVE-2024-20290

A vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to an incorrect check for end-of-string values during scanning, which may result in a heap buffer...

CVE-2022-20803

A vulnerability in the OLE2 file parser of Clam AntiVirus ClamAV versions 0.104.0 through 0.104.2 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device.The vulnerability is due to incorrect use of the realloc function that may result in a...

CVE-2022-20803

A vulnerability in the OLE2 file parser of Clam AntiVirus ClamAV versions 0.104.0 through 0.104.2 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device.The vulnerability is due to incorrect use of the realloc function that may result in a...

Double free

A vulnerability in the OLE2 file parser of Clam AntiVirus ClamAV versions 0.104.0 through 0.104.2 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device.The vulnerability is due to incorrect use of the realloc function that may result in a...

CVE-2022-20803 ClamAV Double-free Vulnerability in the OLE2 File Parser

A vulnerability in the OLE2 file parser of Clam AntiVirus ClamAV versions 0.104.0 through 0.104.2 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device.The vulnerability is due to incorrect use of the realloc function that may result in a...

CVE-2022-20803

CVE-2022-20803 : In ClamAV, the OLE2 file parser in versions 0.104.0–0.104.2 has a flaw due to incorrect use of realloc that may cause a double-free. This can enable an unauthenticated, remote attacker to trigger a denial of service by submitting a crafted OLE2 file for scanning, crashing the Cla...

CVE-2022-20803

A vulnerability in the OLE2 file parser of Clam AntiVirus ClamAV versions 0.104.0 through 0.104.2 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device.The vulnerability is due to incorrect use of the realloc function that may result in a...

openSUSE Security Update : clamav (openSUSE-2019-1210)

This update for clamav to version 0.100.3 fixes the following issues : Security issues fixed bsc1130721: - CVE-2019-1787: Fixed an out-of-bounds heap read condition which may occur when scanning PDF documents. - CVE-2019-1789: Fixed an out-of-bounds heap read condition which may occur when scanni...

Design/Logic Flaw

A vulnerability in the Object Linking & Embedding OLE2 file scanning functionality of Clam AntiVirus ClamAV Software versions 0.101.1 and prior could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to a lack of prope...

CVE-2019-1788 ClamAV OLE2 File Out-Of-Bounds Write Vulnerability

A vulnerability in the Object Linking & Embedding OLE2 file scanning functionality of Clam AntiVirus ClamAV Software versions 0.101.1 and prior could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to a lack of prope...

Code injection

The OLE2 parser in Clam AntiVirus ClamAV allows remote attackers to cause a denial of service resource consumption via an OLE2 file with 1 a large property size or 2 a loop in the FAT file block chain that triggers an infinite loop, as demonstrated via a crafted DOC file...

CVE-2007-2650

The OLE2 parser in Clam AntiVirus ClamAV allows remote attackers to cause a denial of service resource consumption via an OLE2 file with 1 a large property size or 2 a loop in the FAT file block chain that triggers an infinite loop, as demonstrated via a crafted DOC file...