Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2015:0291-1

Опубликовано: 06 фев. 2015
Источник: suse-cvrf

Описание

Security update for clamav

clamav was updated to version 0.98.6 to fix four security issues.

These security issues were fixed:

  • CVE-2015-1462: ClamAV allowed remote attackers to have unspecified impact via a crafted upx packer file, related to a heap out of bounds condition (bnc#916214).
  • CVE-2015-1463: ClamAV allowed remote attackers to cause a denial of service (crash) via a crafted petite packer file, related to an incorrect compiler optimization (bnc#916215).
  • CVE-2014-9328: ClamAV allowed remote attackers to have unspecified impact via a crafted upack packer file, related to a heap out of bounds condition (bnc#915512).
  • CVE-2015-1461: ClamAV allowed remote attackers to have unspecified impact via a crafted (1) Yoda's crypter or (2) mew packer file, related to a heap out of bounds condition (bnc#916217).

Список пакетов

SUSE Linux Enterprise Desktop 12
clamav-0.98.6-10.1
SUSE Linux Enterprise Server 12
clamav-0.98.6-10.1
SUSE Linux Enterprise Server for SAP Applications 12
clamav-0.98.6-10.1

Ссылки

Описание

ClamAV before 0.98.6 allows remote attackers to have unspecified impact via a crafted upack packer file, related to a "heap out of bounds condition."

Затронутые продукты
SUSE Linux Enterprise Desktop 12:clamav-0.98.6-10.1
SUSE Linux Enterprise Server 12:clamav-0.98.6-10.1
SUSE Linux Enterprise Server for SAP Applications 12:clamav-0.98.6-10.1
Ссылки

Описание

ClamAV before 0.98.6 allows remote attackers to have unspecified impact via a crafted (1) Yoda's crypter or (2) mew packer file, related to a "heap out of bounds condition."

Затронутые продукты
SUSE Linux Enterprise Desktop 12:clamav-0.98.6-10.1
SUSE Linux Enterprise Server 12:clamav-0.98.6-10.1
SUSE Linux Enterprise Server for SAP Applications 12:clamav-0.98.6-10.1
Ссылки

Описание

ClamAV before 0.98.6 allows remote attackers to have unspecified impact via a crafted upx packer file, related to a "heap out of bounds condition."

Затронутые продукты
SUSE Linux Enterprise Desktop 12:clamav-0.98.6-10.1
SUSE Linux Enterprise Server 12:clamav-0.98.6-10.1
SUSE Linux Enterprise Server for SAP Applications 12:clamav-0.98.6-10.1
Ссылки

Описание

ClamAV before 0.98.6 allows remote attackers to cause a denial of service (crash) via a crafted petite packer file, related to an "incorrect compiler optimization."

Затронутые продукты
SUSE Linux Enterprise Desktop 12:clamav-0.98.6-10.1
SUSE Linux Enterprise Server 12:clamav-0.98.6-10.1
SUSE Linux Enterprise Server for SAP Applications 12:clamav-0.98.6-10.1
Ссылки
Уязвимость SUSE-SU-2015:0291-1