VDB

GCVE-110-MAGEIA-2015-56

GCVE-110-MAGEIA-2015-56
Advisory Published
Vulnetix · Advisory published February 9, 2015
ClamAV 0.98.6 is a maintenance release to fix some bugs, some of them being security bugs: Fix a heap out of bounds condition with crafted Yoda's crypter files. This issue was discovered by Felix Groebert of the Google Security Team. Fix a heap out of bounds condition with crafted mew packer files. This issue was discovered by Felix Groebert of the Google Security Team. Fix a heap out of bounds condition with crafted upx packer files. This issue was discovered by Kevin Szkudlapski of Quarkslab. Fix a heap out of bounds condition with crafted upack packer files. This issue was discovered by Sebastian Andrzej Siewior (CVE-2014-9328). Compensate a crash due to incorrect compiler optimization when handling crafted petite packer files. This issue was discovered by Sebastian Andrzej Siewior.

Affected Products

VendorProductVersionsPlatforms
Mageiaclamav0 (affected), 0.98.6-1.mga4 (unaffected), 0 (affected), 0.98.6-1.mga4 (unaffected)
Mageiagit0 (affected), 2.3.8-1.mga5 (unaffected)

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›