remote code execution in clamav

2006-10-1815:52:10

lists.opensuse.org

0.367 Low

EPSS

Percentile

96.8%

JSON

Two security problems have been found and fixed in the anti virus scan engine “clamav”, which could be used by remote attackers sending prepared E-Mails containing special crafted infected files to potentially execute code.

Solution

There is no known workaround, please install the update packages.

OSVersionArchitecturePackageVersionFilename
openSUSE9.2i586clamav< 0.88.5-0.1clamav-0.88.5-0.1.i586.rpm
openSUSE10.1x86_64clamav< 0.88.5-0.2clamav-0.88.5-0.2.x86_64.rpm
openSUSE10.1i586clamav< 0.88.5-0.2clamav-0.88.5-0.2.i586.rpm
SUSE Linux Enterprise Server10ia64clamav< 0.88.5-0.2clamav-0.88.5-0.2.ia64.rpm
openSUSE9.2x86_64clamav< 0.88.5-0.1clamav-0.88.5-0.1.x86_64.rpm
SUSE Linux Enterprise Server10i586clamav< 0.88.5-0.2clamav-0.88.5-0.2.i586.rpm
openSUSE9.3i586clamav< 0.88.5-0.1clamav-0.88.5-0.1.i586.rpm
openSUSE10.0x86_64clamav< 0.88.5-0.1clamav-0.88.5-0.1.x86_64.rpm
openSUSE9.3x86_64clamav< 0.88.5-0.1clamav-0.88.5-0.1.x86_64.rpm
openSUSE10.1ppcclamav< 0.88.5-0.2clamav-0.88.5-0.2.ppc.rpm

OS	Version	Architecture	Package	Version	Filename
openSUSE	9.2	i586	clamav	< 0.88.5-0.1	clamav-0.88.5-0.1.i586.rpm
openSUSE	10.1	x86_64	clamav	< 0.88.5-0.2	clamav-0.88.5-0.2.x86_64.rpm
openSUSE	10.1	i586	clamav	< 0.88.5-0.2	clamav-0.88.5-0.2.i586.rpm
SUSE Linux Enterprise Server	10	ia64	clamav	< 0.88.5-0.2	clamav-0.88.5-0.2.ia64.rpm
openSUSE	9.2	x86_64	clamav	< 0.88.5-0.1	clamav-0.88.5-0.1.x86_64.rpm
SUSE Linux Enterprise Server	10	i586	clamav	< 0.88.5-0.2	clamav-0.88.5-0.2.i586.rpm
openSUSE	9.3	i586	clamav	< 0.88.5-0.1	clamav-0.88.5-0.1.i586.rpm
openSUSE	10.0	x86_64	clamav	< 0.88.5-0.1	clamav-0.88.5-0.1.x86_64.rpm
openSUSE	9.3	x86_64	clamav	< 0.88.5-0.1	clamav-0.88.5-0.1.x86_64.rpm
openSUSE	10.1	ppc	clamav	< 0.88.5-0.2	clamav-0.88.5-0.2.ppc.rpm

Rows per page:

1-10 of 151

0.367 Low

EPSS

Percentile

96.8%

JSON

Related for SUSE-SA:2006:060