Lucene search
SuseSUSE-SU-2015:0298-1HistoryFeb 17, 2015 - 3:04 a.m.
Security update for clamav (important)
2015-02-1703:04:56
lists.opensuse.org
15
0.023 Low
EPSS
Percentile
88.6%
clamav was updated to version 0.98.6 to fix four security issues.
These security issues have been fixed:
* CVE-2015-1462: ClamAV allowed remote attackers to have unspecified
impact via a crafted upx packer file, related to a heap out of
bounds condition (bnc#916214).
* CVE-2015-1463: ClamAV allowed remote attackers to cause a denial of
service (crash) via a crafted petite packer file, related to an
incorrect compiler optimization (bnc#916215).
* CVE-2014-9328: ClamAV allowed remote attackers to have unspecified
impact via a crafted upack packer file, related to a heap out of
bounds condition (bnc#915512).
* CVE-2015-1461: ClamAV allowed remote attackers to have unspecified
impact via a crafted (1) Yoda's crypter or (2) mew packer file,
related to a heap out of bounds condition (bnc#916217).
Security Issues:
* CVE-2015-1462
<<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1462">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1462</a>>
* CVE-2014-9328
<<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9328">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9328</a>>
* CVE-2015-1463
<<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1463">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1463</a>>
* CVE-2015-1461
<<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1461">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1461</a>>
References
download.suse.com/patch/finder/?keywords=2f44be276ad7a4e53a81812520e256c5
download.suse.com/patch/finder/?keywords=b856018fc4dcd95c039167b1ea1c6e5d
download.suse.com/patch/finder/?keywords=b857e6f07106efda6eeb4c842640e58f
download.suse.com/patch/finder/?keywords=cabd1033f09ef394f7aad5c3fbd890a1
bugzilla.suse.com/915512
bugzilla.suse.com/916214
bugzilla.suse.com/916215
bugzilla.suse.com/916217
Related
nessus
nessus
SuSE 11.3 Security Update : clamav (SAT Patch Number 10283)
2015-02-17 00:00:00
Fedora 21 : clamav-0.98.6-1.fc21 (2015-1461)
2015-02-02 00:00:00
ClamAV < 0.98.6 Multiple Vulnerabilities
2015-02-03 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2015:0291-1)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2015:0298-1)
2021-06-09 00:00:00
SUSE: Security Advisory for clamav (SUSE-SU-2015:0298-1)
2015-10-13 00:00:00
suse
suse
Security update for clamav (important)
2015-02-13 16:05:18
gentoo
gentoo
ClamAV: Multiple vulnerabilities
2015-12-30 00:00:00
debian
debian
[SECURITY] [DLA 233-1] clamav security and upstream version update
2015-05-29 03:57:55
osv
osv
clamav - security update
2015-05-28 00:00:00
archlinux
archlinux
clamav: arbitrary code execution
2015-02-06 00:00:00
ubuntucve
ubuntucve
securityvulns
securityvulns
[ MDVSA-2015:042 ] clamav
2015-02-11 00:00:00
ClamAV memory corruptions
2015-02-11 00:00:00
fedora
fedora
[SECURITY] Fedora 21 Update: clamav-0.98.6-1.fc21
2015-01-30 23:56:42
[SECURITY] Fedora 20 Update: clamav-0.98.6-1.fc20
2015-01-30 23:53:55
altlinux
altlinux
Security fix for the ALT Linux 8 package clamav version 0.98.6-alt1
2015-01-28 00:00:00
Security fix for the ALT Linux 9 package clamav version 0.98.6-alt1
2015-01-28 00:00:00
Security fix for the ALT Linux 10 package clamav version 0.98.6-alt1
2015-01-28 00:00:00
cvelist
cvelist
prion
prion
Heap overflow
2015-02-03 16:59:00
Heap overflow
2015-02-03 16:59:00
Design/Logic Flaw
2015-02-03 16:59:00
amazon
amazon
Medium: clamav
2015-03-04 15:52:00
debiancve
debiancve
ubuntu
ubuntu
ClamAV vulnerability
2015-02-02 00:00:00
ClamAV vulnerability
2015-02-12 00:00:00
cve
cve
mageia
mageia
Updated clamav packages fix security vulnerabilities
2015-02-10 00:44:14