Описание
Clam AntiVirus ClamAV before 0.90 does not close open file descriptors under certain conditions, which allows remote attackers to cause a denial of service (file descriptor consumption and failed scans) via CAB archives with a cabinet header record length of zero, which causes a function to return without closing a file descriptor.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 0.92.1~dfsg2-1.1~dapper2 |
| devel | released | 0.91.2-3ubuntu1 |
| edgy | ignored | end of life, was needed |
| feisty | released | 0.90.2-0ubuntu1.3 |
| gutsy | released | 0.91.2-3ubuntu1 |
| hardy | released | 0.91.2-3ubuntu1 |
| upstream | needs-triage |
Показывать по
Ссылки на источники
4.3 Medium
CVSS2
7.5 High
CVSS3
Связанные уязвимости
Clam AntiVirus ClamAV before 0.90 does not close open file descriptors under certain conditions, which allows remote attackers to cause a denial of service (file descriptor consumption and failed scans) via CAB archives with a cabinet header record length of zero, which causes a function to return without closing a file descriptor.
Clam AntiVirus ClamAV before 0.90 does not close open file descriptors ...
Clam AntiVirus ClamAV before 0.90 does not close open file descriptors under certain conditions, which allows remote attackers to cause a denial of service (file descriptor consumption and failed scans) via CAB archives with a cabinet header record length of zero, which causes a function to return without closing a file descriptor.
4.3 Medium
CVSS2
7.5 High
CVSS3