Lucene search
GoogleOSV:DLA-95-1HistoryDec 02, 2014 - 12:00 a.m.
clamav - security update
2014-12-0200:00:00
Google
osv.dev
10
0.142 Low
EPSS
Percentile
95.7%
Two bugs were discovered in clamav and are fixed by this release.
One issue is in clamscan, the command line anti-virus scanner included
in the package, which could lead to crashes when scanning certain files
(CVE-2013-6497).
The second issue is in libclamav which caused a heap buffer overflow
when scanning a specially crafted y0da Crypter obfuscated PE file
(CVE-2014-9050). Note that this is remotely exploitable when ClamAV is
used as a mail gateway scanner.
For Debian 6 Squeeze, these issues have been fixed in clamav version 0.98.1+dfsg-1+deb6u4
If you use clamav, we highly recommend that you upgrade to this version.
References
Related
nessus
nessus
SuSE 11.3 Security Update : clamav (SAT Patch Number 10016)
2014-12-06 00:00:00
Fedora 19 : clamav-0.98.5-1.fc19 (2014-15463)
2014-11-28 00:00:00
Debian DLA-95-1 : clamav security update
2015-03-26 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: clamav-0.98.5-1.fc19
2014-11-27 08:37:32
[SECURITY] Fedora 21 Update: clamav-0.98.5-1.fc21
2014-12-06 10:32:13
[SECURITY] Fedora 20 Update: clamav-0.98.5-1.fc20
2014-11-22 12:39:19
securityvulns
securityvulns
ClamAV memory corruptions
2014-11-30 00:00:00
[USN-2423-1] ClamAV vulnerabilities
2014-11-30 00:00:00
ubuntu
ubuntu
ClamAV vulnerabilities
2014-11-26 00:00:00
ClamAV vulnerability
2015-02-12 00:00:00
suse
suse
Security update for clamav (important)
2014-12-21 19:04:40
Security update for clamav (important)
2014-12-05 21:04:59
Security update for clamav (important)
2014-12-05 10:04:48
openvas
openvas
Fedora Update for clamav FEDORA-2014-15434
2015-01-05 00:00:00
Fedora Update for clamav FEDORA-2014-15463
2014-11-28 00:00:00
SUSE: Security Advisory for clamav (SUSE-SU-2014:1574-1)
2015-10-13 00:00:00
debian
debian
[SECURITY] [DLA 95-1] clamav security update
2014-12-02 21:37:10
mageia
mageia
Updated clamav packages fix security vulnerabilities
2014-11-26 13:14:01
cvelist
cvelist
CVE-2014-9050
2014-12-01 15:00:00
CVE-2013-6497
2014-12-01 15:00:00
gentoo
gentoo
Clam AntiVirus: Denial of service
2014-12-09 00:00:00
nvd
nvd
CVE-2014-9050
2014-12-01 15:59:10
CVE-2013-6497
2014-12-01 15:59:00
ubuntucve
ubuntucve
CVE-2013-6497
2013-12-31 00:00:00
CVE-2014-9050
2014-11-24 00:00:00
amazon
amazon
Low: clamav
2014-12-08 13:12:00
cve
cve
CVE-2013-6497
2014-12-01 15:59:00
CVE-2014-9050
2014-12-01 15:59:10
debiancve
debiancve
CVE-2013-6497
2014-12-01 15:59:00
CVE-2014-9050
2014-12-01 15:59:10
prion
prion
Code injection
2014-12-01 15:59:00
Heap overflow
2014-12-01 15:59:00
archlinux
archlinux
clamav: denial of service
2014-11-20 00:00:00