2 matches found
Denial Of Service (DoS)
clamav is vulnerable to denial of service DoS. A missing buffer size check results in a heap buffer overflow write, an attacker could submit a crafted HFS+ partition file allowing them to execute arbitrary code resulting in a system crash...
SUSE CVE-2023-20032
On Feb 15, 2023, the following vulnerability in the ClamAV scanning library was disclosed: A vulnerability in the HFS+ partition file parser of ClamAV versions 1.0.0 and earlier, 0.105.1 and earlier, and 0.103.7 and earlier could allow an unauthenticated, remote attacker to execute arbitrary code...