Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 591
Alerts This Week
Warning Icon 1 591

Gentoo: GLSA-200610-10 High Severity: ClamAV Remote Code Execution

gentoo
Calendar Grey October 24, 2006
Dist Gentoo Esm H88
A critical vulnerability has been identified in ClamAV involving a buffer overflow that could enable unauthorized code execution and result in service interruption.
ClamAV is vulnerable to a heap-based buffer overflow potentially allowing remote execution of arbitrary code and a Denial of Service.

Summary

Gentoo Linux Security Advisory GLSA 200610-10 https://security.gentoo.org/ Severity: High Title: ClamAV: Multiple Vulnerabilities Date: October 24, 2006 Bugs: #151561 ID: 200610-10

Synopsis ======= ClamAV is vulnerable to a heap-based buffer overflow potentially allowing remote execution of arbitrary code and a Denial of Service.
Background ========= ClamAV is a GPL virus scanner.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 app-antivirus/clamav < 0.88.5 >= 0.88.5
========== Damian Put and an anonymous researcher reported a potential heap-based buffer overflow vulnerability in rebuildpe.c responsible for the rebuilding of an unpacked PE file, and a possibl...

Read the Full Advisory

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround