pkg:Debian/clamav
207 total CVEsCRITICAL9HIGH39MEDIUM30LOW1
✅ Check your installed version
All known vulnerabilities
- CRITICAL9.8CVE-2025-20260A vulnerability in the PDF scanning processes of ClamAV could allow an unauthenticated, remote attacker to cause a buffer overflow conditio…from 0, < 1.0.9+dfsg-1~deb11u1
- from 0, < 0.103.8+dfsg-0+deb11u1
- from 0, < 0.103.8+dfsg-0+deb10u1
- from 0, < 0.97.7+dfsg-1
- from 0, < 0.97.7+dfsg-1
- from 0, < 0.91.2-1~volatile1
- from 0, < 0.90-1
- CRITICAL9.8CVE-2017-12379ClamAV AntiVirus software versions 0.99.2 and prior contain a vulnerability that could allow an unauthenticated, remote attacker to cause a…from 0, < 0.99.3~beta2+dfsg-1
- CRITICAL9.8CVE-2017-12377ClamAV AntiVirus software versions 0.99.2 and prior contain a vulnerability that could allow an unauthenticated, remote attacker to cause a…from 0, < 0.99.3~beta2+dfsg-1
- HIGH7.8CVE-2022-20792A vulnerability in the regex module used by the signature database load module of Clam AntiVirus (ClamAV) versions 0.104.0 through 0.104.2…from 0, < 0.103.6+dfsg-0+deb11u1
- HIGH7.8CVE-2019-1785A vulnerability in the RAR file scanning functionality of Clam AntiVirus (ClamAV) Software versions 0.101.1 and 0.101.0 could allow an unau…from 0, < 0.101.2+dfsg-1
- HIGH7.8CVE-2017-12376ClamAV AntiVirus software versions 0.99.2 and prior contain a vulnerability that could allow an unauthenticated, remote attacker to cause a…from 0, < 0.99.3~beta2+dfsg-1
- HIGH7.8CVE-2017-6419mspack/lzxd.c in libmspack 0.5alpha, as used in ClamAV 0.99.2, allows remote attackers to cause a denial of service (heap-based buffer over…from 0, < 0.99.3~beta1+dfsg-1
- HIGH7.5CVE-2025-20234A vulnerability in Universal Disk Format (UDF) processing of ClamAV could allow an unauthenticated, remote attacker to cause a denial of se…from 0, < 1.4.3+dfsg-1
- from 0, < 1.0.9+dfsg-1~deb11u1
- from 0, < 1.0.9+dfsg-1~deb11u1
- from 0, < 1.0.7+dfsg-1~deb11u1
- from 0, < 1.0.7+dfsg-1~deb11u1
- HIGH7.5CVE-2024-20290A vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS)…from 0, < 1.0.5+dfsg-1~deb12u1
- HIGH7.5CVE-2023-20212A vulnerability in the AutoIt module of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition…from 0, < 1.0.2+dfsg-1~deb12u1
- from 0, < 0.103.9+dfsg-0+deb10u1
- from 0, < 0.103.9+dfsg-0+deb11u1
- HIGH7.5CVE-2022-20785On April 20, 2022, the following vulnerability in the ClamAV scanning library versions 0.103.5 and earlier and 0.104.2 and earlier was disc…from 0, < 0.103.6+dfsg-0+deb11u1
- HIGH7.5CVE-2022-20771On April 20, 2022, the following vulnerability in the ClamAV scanning library versions 0.103.5 and earlier and 0.104.2 and earlier was disc…from 0, < 0.103.6+dfsg-0+deb11u1
- from 0, < 0.103.6+dfsg-0+deb11u1
- from 0, < 0.103.6+dfsg-0+deb9u1
- HIGH7.5CVE-2022-20698A vulnerability in the OOXML parsing module in Clam AntiVirus (ClamAV) Software version 0.104.1 and LTS version 0.103.4 and prior versions…from 0, < 0.103.5+dfsg-0+deb11u1
- from 0, < 0.103.2+dfsg-1
- from 0, < 0.102.4+dfsg-0+deb9u2
- HIGH7.5CVE-2021-1404A vulnerability in the PDF parsing module in Clam AntiVirus (ClamAV) Software versions 0.103.0 and 0.103.1 could allow an unauthenticated,…from 0, < 0.103.2+dfsg-1
- HIGH7.5CVE-2021-1252A vulnerability in the Excel XLM macro parsing module in Clam AntiVirus (ClamAV) Software versions 0.103.0 and 0.103.1 could allow an unaut…from 0, < 0.103.2+dfsg-1
- HIGH7.5CVE-2020-3481A vulnerability in the EGG archive parsing module in Clam AntiVirus (ClamAV) Software versions 0.102.0 - 0.102.3 could allow an unauthentic…from 0, < 0.102.4+dfsg-1
- HIGH7.5CVE-2020-3341A vulnerability in the PDF archive parsing module in Clam AntiVirus (ClamAV) Software versions 0.101 - 0.102.2 could allow an unauthenticat…from 0, < 0.102.3+dfsg-1
- from 0, < 0.102.4+dfsg-0+deb9u1
- from 0, < 0.101.5+dfsg-0+deb8u2
- from 0, < 0.102.4+dfsg-1
- HIGH7.5CVE-2020-3123A vulnerability in the Data-Loss-Prevention (DLP) module in Clam AntiVirus (ClamAV) Software versions 0.102.1 and 0.102.0 could allow an un…from 0, < 0.102.2+dfsg-1
- from 0, < 0.97.7+dfsg-1
- HIGH7.5CVE-2019-1789ClamAV versions prior to 0.101.2 are susceptible to a denial of service (DoS) vulnerability.from 0, < 0.101.2+dfsg-1
- from 0, < 0.101.4+dfsg-1
- from 0, < 0.101.4+dfsg-0+deb8u1
- HIGH7.5CVE-2017-12380ClamAV AntiVirus software versions 0.99.2 and prior contain a vulnerability that could allow an unauthenticated, remote attacker to cause a…from 0, < 0.99.3~beta2+dfsg-1
- HIGH7.5CVE-2017-12375The ClamAV AntiVirus software versions 0.99.2 and prior contain a vulnerability that could allow an unauthenticated, remote attacker to cau…from 0, < 0.99.3~beta2+dfsg-1
- from 0, < 0.99.2+dfsg-0+deb7u4
- from 0, < 0.99.3~beta2+dfsg-1
- HIGH7.5CVE-2016-1405libclamav in ClamAV (aka Clam AntiVirus), as used in Advanced Malware Protection (AMP) on Cisco Email Security Appliance (ESA) devices befo…from 0, < 0.99+dfsg-1
- from 0, < 0.90-1
- from 0, < 0.84-2.sarge.15
- from 0, < 0.101.5+dfsg-0+deb8u1
- from 0, < 0.102.1+dfsg-1
- MEDIUM6.3CVE-2020-3350A vulnerability in the endpoint software of Cisco AMP for Endpoints and Clam AntiVirus could allow an authenticated, local attacker to caus…from 0, < 0.102.4+dfsg-1
- MEDIUM6.1CVE-2024-20506A vulnerability in the ClamD service module of Clam AntiVirus (ClamAV) versions 1.4.0, 1.3.2 and prior versions, all 1.2.x versions, 1.0.6…from 0, < 1.0.7+dfsg-1~deb11u1
- MEDIUM5.5CVE-2022-20796On May 4, 2022, the following vulnerability in the ClamAV scanning library versions 0.103.5 and earlier and 0.104.2 and earlier was disclos…from 0, < 0.103.6+dfsg-0+deb11u1
- MEDIUM5.5CVE-2019-1798A vulnerability in the Portable Executable (PE) file scanning functionality of Clam AntiVirus (ClamAV) Software versions 0.101.1 and prior…from 0, < 0.101.2+dfsg-1
- MEDIUM5.5CVE-2019-1788A vulnerability in the Object Linking & Embedding (OLE2) file scanning functionality of Clam AntiVirus (ClamAV) Software versions 0.101.1 a…from 0, < 0.101.2+dfsg-1
- from 0, < 0.100.3+dfsg-0+deb8u1
- from 0, < 0.101.2+dfsg-1
- MEDIUM5.5CVE-2019-1786A vulnerability in the Portable Document Format (PDF) scanning functionality of Clam AntiVirus (ClamAV) Software versions 0.101.1 and 0.101…from 0, < 0.101.2+dfsg-1
- from 0, < 0.100.2+dfsg-1
- from 0, < 0.100.2+dfsg-0+deb8u1
- from 0, < 0.100.1+dfsg-0+deb8u1
- from 0, < 0.100.1+dfsg-1
- from 0, < 0.100.0~beta+dfsg-2
- from 0, < 0.99.4+dfsg-1+deb7u1
- MEDIUM5.5CVE-2018-1000085ClamAV version version 0.99.3 contains a Out of bounds heap memory read vulnerability in XAR parser, function xar_hash_check() that can res…from 0, < 0.99.3~beta1+dfsg-1
- MEDIUM5.5CVE-2017-12378ClamAV AntiVirus software versions 0.99.2 and prior contain a vulnerability that could allow an unauthenticated, remote attacker to cause a…from 0, < 0.99.3~beta2+dfsg-1
- MEDIUM5.5CVE-2017-6420The wwunpack function in libclamav/wwunpack.c in ClamAV 0.99.2 allows remote attackers to cause a denial of service (use-after-free) via a…from 0, < 0.99.3~beta1+dfsg-1
- from 0, < 0.99.3~beta1+dfsg-1
- from 0, < 0.99.2+dfsg-0+deb7u3
- from 0, < 0.99.3~beta1+dfsg-1
- from 0, < 0.99.2+dfsg-0+deb7u5
- MEDIUM5.5CVE-2016-1372ClamAV (aka Clam AntiVirus) before 0.99.2 allows remote attackers to cause a denial of service (application crash) via a crafted 7z file.from 0, < 0.99.2+dfsg-1
- from 0, < 0.99.2+dfsg-1
- from 0, < 0.99.2+dfsg-0+deb7u2
- MEDIUM5.3CVE-2026-20031A vulnerability in the HTML Cascading Style Sheets (CSS) module of ClamAV could allow an unauthenticated, remote attacker to cause a denial…from 0
- MEDIUM5.3CVE-2024-20328A vulnerability in the VirusEvent feature of ClamAV could allow a local attacker to inject arbitrary commands with the privileges of the ap…from 0, < 1.0.5+dfsg-1~deb12u1
- MEDIUM5.3CVE-2023-20052On Feb 15, 2023, the following vulnerability in the ClamAV scanning library was disclosed: A vulnerability in the DMG file parser of ClamAV…from 0, < 0.103.8+dfsg-0+deb11u1
- from 0, < 0.101.4+dfsg-1
- LOW3.3CVE-2018-0361ClamAV before 0.100.1 lacks a PDF object length check, resulting in an unreasonably long time to parse a relatively small file.from 0, < 0.100.1+dfsg-1
- —CVE-2020-37167ClamAV versions prior to 0.103.0-rc contain a vulnerability in function name processing through the ClamBC bytecode interpreter that allows…from 0, < 0.103.0+dfsg-1
- —CVE-2015-2668ClamAV before 0.98.7 allows remote attackers to cause a denial of service (infinite loop) via a crafted xz archive file.from 0, < 0.98.7+dfsg-1
- —CVE-2015-2222ClamAV before 0.98.7 allows remote attackers to cause a denial of service (crash) via a crafted petite packed file.from 0, < 0.98.7+dfsg-1
- —CVE-2015-2221ClamAV before 0.98.7 allows remote attackers to cause a denial of service (infinite loop) via a crafted y0da cryptor file.from 0, < 0.98.7+dfsg-1
- —CVE-2015-2170The upx decoder in ClamAV before 0.98.7 allows remote attackers to cause a denial of service (crash) via a crafted file.from 0, < 0.98.7+dfsg-1
- from 0, < 0.98.7+dfsg-1
- —CVE-2015-1463ClamAV before 0.98.6 allows remote attackers to cause a denial of service (crash) via a crafted petite packer file, related to an "incorrec…from 0, < 0.98.6+dfsg-1
- —CVE-2015-1462ClamAV before 0.98.6 allows remote attackers to have unspecified impact via a crafted upx packer file, related to a "heap out of bounds con…from 0, < 0.98.6+dfsg-1
- —CVE-2015-1461ClamAV before 0.98.6 allows remote attackers to have unspecified impact via a crafted (1) Yoda's crypter or (2) mew packer file, related to…from 0, < 0.98.6+dfsg-1
- from 0, < 0.98.6+dfsg-1
- from 0, < 0.98.7+dfsg-0+deb6u1
- —CVE-2014-9050Heap-based buffer overflow in the cli_scanpe function in libclamav/pe.c in ClamAV before 0.98.5 allows remote attackers to cause a denial o…from 0, < 0.98.5+dfsg-1
- from 0, < 0.98.5+dfsg-1
- from 0, < 0.98.1+dfsg-1+deb6u4
- —CVE-2013-2021pdf.c in ClamAV 0.97.1 through 0.97.7 allows remote attackers to cause a denial of service (out-of-bounds-read) via a crafted length value…from 0, < 0.97.8+dfsg-1
- —CVE-2013-2020Integer underflow in the cli_scanpe function in pe.c in ClamAV before 0.97.8 allows remote attackers to cause a denial of service (crash) v…from 0, < 0.97.8+dfsg-1
- —CVE-2012-1459The TAR file parser in AhnLab V3 Internet Security 2011.01.18.00, Avira AntiVir 7.11.1.163, Antiy Labs AVL SDK 2.0.3.7, avast! Antivirus 4.…from 0, < 0.97.5+dfsg-1
- —CVE-2012-1458The Microsoft CHM file parser in ClamAV 0.96.4 and Sophos Anti-Virus 4.61.0 allows remote attackers to bypass malware detection via a craft…from 0, < 0.97.5+dfsg-1
- —CVE-2012-1457The TAR file parser in Avira AntiVir 7.11.1.163, Antiy Labs AVL SDK 2.0.3.7, avast! Antivirus 4.8.1351.0 and 5.0.677.0, AVG Anti-Virus 10.0…from 0, < 0.97.5+dfsg-1
- —CVE-2012-1419The TAR file parser in ClamAV 0.96.4 and Quick Heal (aka Cat QuickHeal) 11.00 allows remote attackers to bypass malware detection via a POS…from 0, < 0.97.5+dfsg-1
- —CVE-2011-3627The bytecode engine in ClamAV before 0.97.3 allows remote attackers to cause a denial of service (crash) via vectors related to "recursion…from 0, < 0.97.3+dfsg-1
- —CVE-2011-2721Off-by-one error in the cli_hm_scan function in matcher-hash.c in libclamav in ClamAV before 0.97.2 allows remote attackers to cause a deni…from 0, < 0.97.2+dfsg-1
- —CVE-2011-1003Double free vulnerability in the vba_read_project_strings function in vba_extract.c in libclamav in ClamAV before 0.97 might allow remote a…from 0, < 0.97+dfsg-1
- —CVE-2010-4479Unspecified vulnerability in pdf.c in libclamav in ClamAV before 0.96.5 allows remote attackers to cause a denial of service (application c…from 0, < 0.96.5+dfsg-1
- —CVE-2010-4261Off-by-one error in the icon_cb function in pe_icons.c in libclamav in ClamAV before 0.96.5 allows remote attackers to cause a denial of se…from 0, < 0.96.5+dfsg-1
- —CVE-2010-4260Multiple unspecified vulnerabilities in pdf.c in libclamav in ClamAV before 0.96.5 allow remote attackers to cause a denial of service (app…from 0, < 0.96.5+dfsg-1
- —CVE-2010-3434Buffer overflow in the find_stream_bounds function in pdf.c in libclamav in ClamAV before 0.96.3 allows remote attackers to cause a denial…from 0, < 0.96.3+dfsg-1
- from 0, < 0.96.3+dfsg-1
- —CVE-2010-1640Off-by-one error in the parseicon function in libclamav/pe_icons.c in ClamAV 0.96 allows remote attackers to cause a denial of service (cra…from 0, < 0.96.1+dfsg-1
- —CVE-2010-1639The cli_pdf function in libclamav/pdf.c in ClamAV before 0.96.1 allows remote attackers to cause a denial of service (crash) via a malforme…from 0, < 0.96.1+dfsg-1
- —CVE-2010-1311The qtm_decompress function in libclamav/mspack.c in ClamAV before 0.96 allows remote attackers to cause a denial of service (memory corrup…from 0, < 0.96+dfsg-2
- —CVE-2010-0098ClamAV before 0.96 does not properly handle the (1) CAB and (2) 7z file formats, which allows remote attackers to bypass virus detection vi…from 0, < 0.96+dfsg-1
- from 0, < 0.95+dfsg-1
- —CVE-2008-6845The unpack feature in ClamAV 0.93.3 and earlier allows remote attackers to cause a denial of service (segmentation fault) via a corrupted L…from 0, < 0.94.dfsg-1
- —CVE-2009-1372Stack-based buffer overflow in the cli_url_canon function in libclamav/phishcheck.c in ClamAV before 0.95.1 allows remote attackers to caus…from 0, < 0.95.1+dfsg-1
- —CVE-2009-1371The CLI_ISCONTAINED macro in libclamav/others.h in ClamAV before 0.95.1 allows remote attackers to cause a denial of service (application c…from 0, < 0.95.1+dfsg-1
- —CVE-2009-1270libclamav/untar.c in ClamAV before 0.95 allows remote attackers to cause a denial of service (infinite loop) via a crafted TAR file that ca…from 0, < 0.95.1+dfsg-1
- from 0, < 0.90.1dfsg-4etch19
- from 0, < 0.95.1+dfsg-1
- —CVE-2009-1241Unspecified vulnerability in ClamAV before 0.95 allows remote attackers to bypass detection of malware via a modified RAR archive.from 0, < 0.95+dfsg-1
- —CVE-2008-5314Stack consumption vulnerability in libclamav/special.c in ClamAV before 0.94.2 allows remote attackers to cause a denial of service (daemon…from 0, < 0.94.dfsg.2-1
- from 0, < 0.90.1dfsg-4etch16
- from 0, < 0.94.dfsg.1-1
- —CVE-2008-3914Multiple unspecified vulnerabilities in ClamAV before 0.94 have unknown impact and attack vectors related to file descriptor leaks on the "…from 0, < 0.94.dfsg-1
- —CVE-2008-3913Multiple memory leaks in freshclam/manager.c in ClamAV before 0.94 might allow attackers to cause a denial of service (memory consumption)…from 0, < 0.94.dfsg-1
- from 0, < 0.90.1dfsg-4etch15
- from 0, < 0.94.dfsg-1
- —CVE-2008-1389libclamav/chmunpack.c in the chm-parser in ClamAV before 0.94 allows remote attackers to cause a denial of service (application crash) via…from 0, < 0.94.dfsg-1
- —CVE-2008-3215libclamav/petite.c in ClamAV before 0.93.3 allows remote attackers to cause a denial of service via a malformed Petite file that triggers a…from 0, < 0.93.1.dfsg-1.1
- from 0, < 0.90.1dfsg-3.1etch14
- from 0, < 0.93~dfsg-1+lenny1
- from 0, < 0.93.1.dfsg-1.1
- —CVE-2008-1387ClamAV before 0.93 allows remote attackers to cause a denial of service (CPU consumption) via a crafted ARJ archive, as demonstrated by the…from 0, < 0.92.1~dfsg2-1
- —CVE-2008-1833Heap-based buffer overflow in pe.c in libclamav in ClamAV 0.92.1 allows remote attackers to execute arbitrary code via a crafted WWPack com…from 0, < 0.92.1~dfsg2-1.1
- from 0, < 0.90.1dfsg-3etch11
- from 0, < 0.92.1~dfsg2-1
- —CVE-2008-1100Buffer overflow in the cli_scanpe function in libclamav (libclamav/pe.c) for ClamAV 0.92 and 0.92.1 allows remote attackers to execute arbi…from 0, < 0.92.1~dfsg2-1
- —CVE-2008-0318Integer overflow in the cli_scanpe function in libclamav in ClamAV before 0.92.1, as used in clamd, allows remote attackers to cause a deni…from 0, < 0.92.1~dfsg-1
- —CVE-2008-0728The unmew11 function in libclamav/mew.c in libclamav in ClamAV before 0.92.1 has unknown impact and attack vectors that trigger "heap corru…from 0, < 0.92.1~dfsg-1
- from 0, < 0.92.1~dfsg-1
- —CVE-2007-6337Unspecified vulnerability in the bzip2 decompression algorithm in nsis/bzlib_private.h in ClamAV before 0.92 has unknown impact and remote…from 0, < 0.92~dfsg-1~volatile2
- from 0, < 0.90.1dfsg-3etch10
- —CVE-2007-6596ClamAV 0.92 does not recognize Base64 UUEncoded archives, which allows remote attackers to bypass the scanner via a Base64-UUEncoded file.from 0, < 0.92.1~dfsg-1
- from 0, < 0.91.2-4.0lenny1
- —CVE-2007-6336Off-by-one error in ClamAV before 0.92 allows remote attackers to execute arbitrary code via a crafted MS-ZIP compressed CAB file.from 0, < 0.92~dfsg-1~volatile2
- from 0, < 0.90.1-3etch8
- from 0, < 0.92~dfsg-1~volatile2
- —CVE-2007-4560clamav-milter in ClamAV before 0.91.2, when run in black hole mode, allows remote attackers to execute arbitrary commands via shell metacha…from 0, < 0.91.2-1~volatile1
- from 0, < 0.90.1-3etch7
- from 0, < 0.91.2-1~volatile1
- from 0, < 0.90.1-3etch4
- from 0, < 0.91-1
- —CVE-2007-3024libclamav/others.c in ClamAV before 0.90.3 and 0.91 before 0.91rc1 uses insecure permissions for temporary files that are created by the cl…from 0, < 0.90.3-1
- —CVE-2007-3023unsp.c in ClamAV before 0.90.3 and 0.91 before 0.91rc1 does not properly calculate the end of a certain buffer, with unknown impact and rem…from 0, < 0.90.3-1
- —CVE-2007-3123unrar.c in libclamav in ClamAV before 0.90.3 and 0.91 before 0.91rc1 allows remote attackers to cause a denial of service (core dump) via a…from 0, < 0.90.3-1
- —CVE-2007-3122The parsing engine in ClamAV before 0.90.3 and 0.91 before 0.91rc1 allows remote attackers to bypass scanning via a RAR file with a header…from 0, < 0.90.3-1
- from 0, < 0.84-2.sarge.17
- from 0, < 0.90.1-3.1lenny3
- from 0, < 0.90.2-1
- —CVE-2007-2029File descriptor leak in the PDF handler in Clam AntiVirus (ClamAV) allows remote attackers to cause a denial of service via a crafted PDF f…from 0, < 0.90.2-1
- from 0, < 0.90.1-3lenny2
- from 0, < 0.84-2.sarge.16
- —CVE-2007-1997Integer signedness error in the (1) cab_unstore and (2) cab_extract functions in libclamav/cab.c in Clam AntiVirus (ClamAV) before 0.90.2 a…from 0, < 0.90.2-1
- from 0, < 0.90.2-1
- —CVE-2007-0898Directory traversal vulnerability in clamd in Clam AntiVirus ClamAV before 0.90 allows remote attackers to overwrite arbitrary files via a…from 0, < 0.90-1
- —CVE-2006-6481Clam AntiVirus (ClamAV) 0.88.6 allows remote attackers to cause a denial of service (stack overflow and application crash) by wrapping many…from 0, < 0.88.7-1
- from 0, < 0.86-1
- from 0, < 0.84-2.sarge.13
- from 0, < 0.88.7-1
- from 0, < 0.84-2.sarge.12
- —CVE-2006-5295Unspecified vulnerability in ClamAV before 0.88.5 allows remote attackers to cause a denial of service (scanning service crash) via a craft…from 0, < 0.88.5-1
- from 0, < 0.88.5-1
- from 0, < 0.84-2.sarge.11
- from 0, < 0.88.4-1
- from 0, < 0.84-2.sarge.10
- from 0, < 0.84-2.sarge.9
- from 0, < 0.88.2
- —CVE-2006-1630The cli_bitset_set function in libclamav/others.c in Clam AntiVirus (ClamAV) before 0.88.1 allows remote attackers to cause a denial of ser…from 0, < 0.88.1-1
- —CVE-2006-1615Multiple format string vulnerabilities in the logging code in Clam AntiVirus (ClamAV) before 0.88.1 might allow remote attackers to execute…from 0, < 0.88.1-1
- from 0, < 0.88.1-1
- from 0, < 0.84-2.sarge.8
- —CVE-2006-0162Heap-based buffer overflow in libclamav/upx.c in Clam Antivirus (ClamAV) before 0.88 allows remote attackers to cause a denial of service (…from 0, < 0.88-1
- from 0, < 0.87.1-1
- from 0, < 0.84-2.sarge.7
- —CVE-2005-3500The tnef_attachment function in tnef.c for Clam AntiVirus (ClamAV) before 0.87.1 allows remote attackers to cause a denial of service (infi…from 0, < 0.87.1-1
- —CVE-2005-3501The cabd_find function in cabd.c of the libmspack library (mspack) for Clam AntiVirus (ClamAV) before 0.87.1 allows remote attackers to cau…from 0, < 0.87.1-1
- —CVE-2005-3303The FSG unpacker (fsg.c) in Clam AntiVirus (ClamAV) 0.80 through 0.87 allows remote attackers to cause "memory corruption" and execute arbi…from 0, < 0.87.1-1
- from 0, < 0.87.1-1
- from 0, < 0.87.1-0etch.1
- from 0, < 0.84-2.sarge.6
- from 0, < 0.86.2-4etch2
- from 0, < 0.84-2.sarge.4
- from 0, < 0.87-1
- —CVE-2005-2920Buffer overflow in libclamav/upx.c in Clam AntiVirus (ClamAV) before 0.87 allows remote attackers to execute arbitrary code via a crafted U…from 0, < 0.87-1
- from 0, < 0.84-2.sarge.2
- from 0, < 0.86.2-1
- —CVE-2005-1923The ENSURE_BITS macro in mszipd.c for Clam AntiVirus (ClamAV) 0.83, and other versions vefore 0.86, allows remote attackers to cause a deni…from 0, < 0.86.1
- from 0, < 0.86.2-4etch1
- from 0, < 0.86.1-1
- from 0, < 0.84-2.sarge.1
- —CVE-2005-2056The Quantum archive decompressor in Clam AntiVirus (ClamAV) before 0.86.1 allows remote attackers to cause a denial of service (application…from 0, < 0.86.1-1
- —CVE-2005-2070The ClamAV Mail fILTER (clamav-milter) 0.84 through 0.85d, when used in Sendmail using long timeouts, allows remote attackers to cause a de…from 0, < 0.86.1
- —CVE-2005-0218ClamAV 0.80 and earlier allows remote attackers to bypass virus scanning via a base64 encoded image in a data: (RFC 2397) URL.from 0, < 0.81
- —CVE-2005-0133ClamAV 0.80 and earlier allows remote attackers to cause a denial of service (clamd daemon crash) via a ZIP file with malformed headers.from 0, < 0.80-0.81rc1-1
- —CVE-2004-1909Claim Anti-Virus (ClamAV) 0.68 and earlier allows remote attackers to cause a denial of service (crash) via certain RAR archives, such as t…from 0, < 0.68.1
- —CVE-2004-0270libclamav in Clam AntiVirus 0.65 allows remote attackers to cause a denial of service (crash) via a uuencoded e-mail message with an invali…from 0, < 0.80
- —CVE-2004-1876The "%f" feature in the VirusEvent directive in Clam AntiVirus daemon (clamd) before 0.70 allows local users to execute arbitrary commands…from 0, < 0.70-1
- —CVE-2003-0946Format string vulnerability in clamav-milter for Clam AntiVirus 0.60 through 0.60p, and other versions before 0.65, allows remote attackers…from 0, < 0.65