CVE-2010-1311 — Improper Input Validation in Clamav

CWE-20 — Improper Input Validation8 documents7 sources

Severity

5.0MEDIUMNVD

EPSS

8.5%

top 7.59%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Clamav Debian Clamav Clamavs Clamav

Timeline

PublishedApr 8

Latest updateMay 2

Description

The qtm_decompress function in libclamav/mspack.c in ClamAV before 0.96 allows remote attackers to cause a denial of service (memory corruption and application crash) via a crafted CAB archive that uses the Quantum (aka .Q) compression format. NOTE: some of these details are obtained from third party information.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages4 packages

▶debiandebian/clamav< clamav 0.96+dfsg-2 (bookworm)

▶Debianclamav/clamav< 0.96+dfsg-2+3

▶NVDclamav/clamav0.96+76

▶NVDclamavs/clamav0.04, 0.06+1

Patches

Patch: www.securityfocus.com ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-vhq4-v6r5-87qq: The qtm_decompress function in libclamav/mspack↗2022-05-02

▶

OSV

CVE-2010-1311: The qtm_decompress function in libclamav/mspack↗2010-04-08

▶

📋Vendor Advisories

Ubuntu

ClamAV vulnerabilities↗2010-04-08

▶

Debian

CVE-2010-1311: clamav - The qtm_decompress function in libclamav/mspack.c in ClamAV before 0.96 allows r...↗2010

▶

Red Hat

v0.96): Memory corruption by scanning Quantum-compressed file(s)↗2009-12-07

▶

💬Community

Bugzilla

CVE-2010-1311 Clam AntiVirus (prior to v0.96): Memory corruption by scanning Quantum-compressed file(s)↗2010-04-08

▶

Bugzilla

CVE-2010-0098 CVE-2010-1311 Multiple clamav vulnerabilities [Fedora all]↗2010-04-08

▶