Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 496
Alerts This Week
Warning Icon 1 496

Gentoo 200612-18: Risk of ClamAV Denial of Service Vulnerability

gentoo
Calendar Grey December 18, 2006
Dist Gentoo Esm H88
A vulnerability in ClamAV on Gentoo poses a Denial of Service risk, necessitating an immediate update to address the issue.
ClamAV is vulnerable to Denial of Service.

Summary

Gentoo Linux Security Advisory GLSA 200612-18 https://security.gentoo.org/ Severity: Normal Title: ClamAV: Denial of Service Date: December 18, 2006 Bugs: #157698 ID: 200612-18

Synopsis ======= ClamAV is vulnerable to Denial of Service.
Background ========= ClamAV is a GPL virus scanner.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 app-antivirus/clamav < 0.88.7 >= 0.88.7
========== Hendrik Weimer discovered that ClamAV fails to properly handle deeply nested MIME multipart/mixed content.
Impact ===== By sending a specially crafted email with deeply nested MIME multipart/mixed content an attacker could cause ClamAV to crash.
Workaround ========= There ...

Read the Full Advisory

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround