The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Clam AntiVirus

ClamAV: denial of service via Zip Bomb Variation
An attacker can trigger a fatal error via Zip Bomb Variation of ClamAV, in order to trigger a denial of service...
CVE-2019-12625, DLA-1953-1, DLA-1953-2, DSA-2020-052, DSA-2020-053, openSUSE-SU-2019:2595-1, openSUSE-SU-2019:2597-1, SUSE-SU-2019:14231-1, SUSE-SU-2019:3053-1, SUSE-SU-2019:3066-1, USN-4146-1, USN-4146-2, VIGILANCE-VUL-30124
ClamAV: infinite loop via Better Zip Bomb Overlapping
An attacker can trigger an infinite loop via Zip Bomb of ClamAV, in order to trigger a denial of service (same origin than VIGILANCE-VUL-29701)...
12356, CVE-2019-13232, STORM-2019-009, VIGILANCE-VUL-29947
bzip2: buffer overflow via BZ2_decompress
An attacker can trigger a buffer overflow via BZ2_decompress() of bzip2, in order to trigger a denial of service, and possibly to run code...
bulletinjul2019, CVE-2019-12900, DLA-1833-1, DLA-1833-2, DLA-1953-1, DLA-1953-2, DSA-2019-148, DSA-2019-149, DSA-2020-052, DSA-2020-053, FreeBSD-SA-19:18.bzip2, K68713584, openSUSE-SU-2019:1781-1, openSUSE-SU-2019:1918-1, openSUSE-SU-2019:2595-1, openSUSE-SU-2019:2597-1, SSA:2019-195-01, SSB-439005, SUSE-SU-2019:14122-1, SUSE-SU-2019:14139-1, SUSE-SU-2019:14231-1, SUSE-SU-2019:1846-1, SUSE-SU-2019:1955-1, SUSE-SU-2019:2013-1, SUSE-SU-2019:3053-1, SUSE-SU-2019:3066-1, USN-4038-1, USN-4038-2, USN-4038-3, USN-4038-4, USN-4146-1, USN-4146-2, VIGILANCE-VUL-29612
ClamAV: multiple vulnerabilities
An attacker can use several vulnerabilities of ClamAV...
CVE-2019-1785, CVE-2019-1786, CVE-2019-1787, CVE-2019-1788, CVE-2019-1789, CVE-2019-1798, DLA-1759-1, DSA-2019-093, openSUSE-SU-2019:1208-1, openSUSE-SU-2019:1210-1, SUSE-SU-2019:0861-1, SUSE-SU-2019:0897-1, SUSE-SU-2019:14015-1, USN-3940-1, USN-3940-2, VIGILANCE-VUL-28877
ClamAV: denial of service via MEW Unpacking
An attacker can generate a fatal error via MEW Unpacking of ClamAV, in order to trigger a denial of service...
CVE-2018-15378, DLA-1553-1, openSUSE-SU-2018:3315-1, openSUSE-SU-2018:3505-1, SUSE-SU-2018:3250-1, SUSE-SU-2018:3436-1, SUSE-SU-2018:3441-1, USN-3789-1, USN-3789-2, VIGILANCE-VUL-27412
libmspack: buffer overflow via TOLOWER
An attacker can generate a buffer overflow via TOLOWER() of libmspack, in order to trigger a denial of service, and possibly to run code...
CVE-2018-14682, DLA-1460-1, DSA-4260-1, FEDORA-2018-a5953af115, FEDORA-2018-c73d257297, FEDORA-2018-cb337fb199, openSUSE-SU-2018:3315-1, openSUSE-SU-2018:3505-1, RHSA-2018:3327-01, SUSE-SU-2018:3250-1, SUSE-SU-2018:3436-1, SUSE-SU-2018:3441-1, USN-3728-1, USN-3728-2, USN-3728-3, USN-3789-2, VIGILANCE-VUL-26893
libmspack: memory corruption via kwajd_read_headers
An attacker can generate a memory corruption via kwajd_read_headers() of libmspack, in order to trigger a denial of service, and possibly to run code...
CVE-2018-14681, DLA-1460-1, DSA-4260-1, FEDORA-2018-a5953af115, FEDORA-2018-c73d257297, FEDORA-2018-cb337fb199, openSUSE-SU-2018:3315-1, openSUSE-SU-2018:3505-1, RHSA-2018:3327-01, SUSE-SU-2018:3250-1, SUSE-SU-2018:3436-1, SUSE-SU-2018:3441-1, USN-3728-1, USN-3728-2, USN-3728-3, USN-3789-2, VIGILANCE-VUL-26892
libmspack: denial of service via Blank CHM
An attacker can generate a fatal error via Blank CHM of libmspack, in order to trigger a denial of service...
CVE-2018-14680, DLA-1460-1, DSA-4260-1, FEDORA-2018-a5953af115, FEDORA-2018-c73d257297, FEDORA-2018-cb337fb199, openSUSE-SU-2018:3315-1, openSUSE-SU-2018:3505-1, RHSA-2018:3327-01, SUSE-SU-2018:3250-1, SUSE-SU-2018:3436-1, SUSE-SU-2018:3441-1, USN-3728-1, USN-3728-2, USN-3728-3, USN-3789-2, VIGILANCE-VUL-26891
libmspack: out-of-bounds memory reading via CHM PMGI/PMGL Chunk Number
An attacker can force a read at an invalid address via CHM PMGI/PMGL Chunk Number of libmspack, in order to trigger a denial of service, or to obtain sensitive information...
CVE-2018-14679, DLA-1460-1, DSA-4260-1, FEDORA-2018-ddda173f56, FEDORA-2018-e1adecd46c, openSUSE-SU-2018:2406-1, RHSA-2018:3327-01, SUSE-SU-2018:2323-1, USN-3728-1, USN-3728-2, USN-3728-3, USN-3789-2, VIGILANCE-VUL-26890
ClamAV: denial of service via PDF Object Length
An attacker can generate a fatal error via PDF Object Length of ClamAV, in order to trigger a denial of service...
CVE-2018-0361, DLA-1461-1, openSUSE-SU-2018:2259-1, openSUSE-SU-2018:2406-1, SUSE-SU-2018:2230-1, SUSE-SU-2018:2232-1, SUSE-SU-2018:2323-1, USN-3722-1, USN-3722-2, USN-3722-3, USN-3722-4, USN-3722-5, USN-3722-6, VIGILANCE-VUL-26664
Our database contains other pages. You can request a free trial to read them.

Display information about Clam AntiVirus: