Lucene search
SuseOPENSUSE-SU-2014:1679-1HistoryDec 21, 2014 - 7:04 p.m.
Security update for clamav (important)
2014-12-2119:04:40
lists.opensuse.org
9
0.151 Low
EPSS
Percentile
95.3%
clamav was updated to version 0.98.5 to fix two security issues.
These security issues were fixed:
- Segmentation fault when processing certain files (CVE-2013-6497).
- Heap-based buffer overflow when scanning crypted PE files
(CVE-2014-9050).
The following non-security issues were fixed:
- Support for the XDP file format and extracting, decoding, and scanning
PDF files within XDP files. - Addition of shared library support for LLVM versions 3.1 - 3.5 for the
purpose of just-in-time(JIT) compilation of ClamAV bytecode signatures. - Enhancements to the clambc command line utility to assist ClamAV
bytecode signature authors by providing introspection into compiled
bytecode programs. - Resolution of many of the warning messages from ClamAV compilation.
- Improved detection of malicious PE files.
- ClamAV 0.98.5 now works with OpenSSL in FIPS compliant mode (bnc#904207).
- Fix server socket setup code in clamd (bnc#903489).
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE Evergreen | 11.4 | i586 | clamav-debuginfo | < 0.98.5-37.1 | clamav-debuginfo-0.98.5-37.1.i586.rpm |
| openSUSE Evergreen | 11.4 | i586 | clamav | < 0.98.5-37.1 | clamav-0.98.5-37.1.i586.rpm |
| openSUSE Evergreen | 11.4 | x86_64 | clamav | < 0.98.5-37.1 | clamav-0.98.5-37.1.x86_64.rpm |
| openSUSE Evergreen | 11.4 | x86_64 | clamav-debugsource | < 0.98.5-37.1 | clamav-debugsource-0.98.5-37.1.x86_64.rpm |
| openSUSE Evergreen | 11.4 | noarch | clamav-db | < 0.98.5-37.1 | clamav-db-0.98.5-37.1.noarch.rpm |
| openSUSE Evergreen | 11.4 | x86_64 | clamav-debuginfo | < 0.98.5-37.1 | clamav-debuginfo-0.98.5-37.1.x86_64.rpm |
| openSUSE Evergreen | 11.4 | i586 | clamav-debugsource | < 0.98.5-37.1 | clamav-debugsource-0.98.5-37.1.i586.rpm |
Related
osv
osv
clamav - security update
2014-12-02 00:00:00
debian
debian
[SECURITY] [DLA 95-1] clamav security update
2014-12-02 21:37:38
nessus
nessus
Debian DLA-95-1 : clamav security update
2015-03-26 00:00:00
Fedora 19 : clamav-0.98.5-1.fc19 (2014-15463)
2014-11-28 00:00:00
SuSE 11.3 Security Update : clamav (SAT Patch Number 10016)
2014-12-06 00:00:00
openvas
openvas
Fedora Update for clamav FEDORA-2014-15434
2015-01-05 00:00:00
Ubuntu: Security Advisory (USN-2423-1)
2022-08-26 00:00:00
SUSE: Security Advisory for clamav (SUSE-SU-2014:1574-1)
2015-10-13 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: clamav-0.98.5-1.fc19
2014-11-27 08:37:32
[SECURITY] Fedora 21 Update: clamav-0.98.5-1.fc21
2014-12-06 10:32:13
[SECURITY] Fedora 20 Update: clamav-0.98.5-1.fc20
2014-11-22 12:39:19
securityvulns
securityvulns
ClamAV memory corruptions
2014-11-30 00:00:00
[USN-2423-1] ClamAV vulnerabilities
2014-11-30 00:00:00
ubuntu
ubuntu
ClamAV vulnerabilities
2014-11-26 00:00:00
ClamAV vulnerability
2015-02-12 00:00:00
suse
suse
Security update for clamav (important)
2014-12-05 10:04:48
Security update for clamav (important)
2014-12-05 21:04:59
Security update for clamav (important)
2014-12-05 19:04:48
mageia
mageia
Updated clamav packages fix security vulnerabilities
2014-11-26 13:14:01
cvelist
cvelist
CVE-2014-9050
2014-12-01 15:00:00
CVE-2013-6497
2014-12-01 15:00:00
ubuntucve
ubuntucve
CVE-2013-6497
2013-12-31 00:00:00
CVE-2014-9050
2014-11-24 00:00:00
amazon
amazon
Low: clamav
2014-12-08 13:12:00
prion
prion
Code injection
2014-12-01 15:59:00
Heap overflow
2014-12-01 15:59:00
debiancve
debiancve
CVE-2013-6497
2014-12-01 15:59:00
CVE-2014-9050
2014-12-01 15:59:00
gentoo
gentoo
Clam AntiVirus: Denial of service
2014-12-09 00:00:00
cve
cve
CVE-2013-6497
2014-12-01 15:59:00
CVE-2014-9050
2014-12-01 15:59:00
archlinux
archlinux
clamav: denial of service
2014-11-20 00:00:00