VDB

GCVE-110-MAGEIA-2020-105

GCVE-110-MAGEIA-2020-105
Advisory Published
Vulnetix · Advisory published February 26, 2020
The updated packages fix a security vulnerability: A vulnerability in the Data-Loss-Prevention (DLP) module in Clam AntiVirus (ClamAV) Software versions 0.102.1 and 0.102.0 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to an out-of-bounds read affecting users that have enabled the optional DLP feature. An attacker could exploit this vulnerability by sending a crafted email file to an affected device. An exploit could allow the attacker to cause the ClamAV scanning process crash, resulting in a denial of service condition. (CVE-2020-3123)

Affected Products

VendorProductVersionsPlatforms
Mageiaclamav0 (affected), 0.102.2-1.mga7 (unaffected), 0 (affected), 0.102.2-1.mga7 (unaffected)
Mageiaflash-player-plugin0 (affected), 32.0.0.363-1.mga7.nonfree (unaffected)

Browse GCVE Records

73,738 records in the GCVE database · Updated July 19, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›