Debian Clamav vulnerabilities

CVE-2006-5295 [MEDIUM] CVE-2006-5295: clamav - Unspecified vulnerability in ClamAV before 0.88.5 allows remote attackers to cau... Unspecified vulnerability in ClamAV before 0.88.5 allows remote attackers to cause a denial of service (scanning service crash) via a crafted Compressed HTML Help (CHM) file that causes ClamAV to "read an invalid memory location." Scope: local bookworm: resolved (fixed in 0.88.5-1) bullseye: resolved (fixed in 0.88.5-1) forky: resolved (fixed in 0.88.5-1) sid: resolv

CVE-2006-6406 [MEDIUM] CVE-2006-6406: clamav - Clam AntiVirus (ClamAV) 0.88.6 allows remote attackers to bypass virus detection... Clam AntiVirus (ClamAV) 0.88.6 allows remote attackers to bypass virus detection by inserting invalid characters into base64 encoded content in a multipart/mixed MIME file, as demonstrated with the EICAR test file. Scope: local bookworm: resolved (fixed in 0.88.7-1) bullseye: resolved (fixed in 0.88.7-1) forky: resolved (fixed in 0.88.7-1) sid: resolved (fixed in 0.8

CVE-2006-5874 [MEDIUM] CVE-2006-5874: clamav - Clam AntiVirus (ClamAV) 0.88 and earlier allows remote attackers to cause a deni... Clam AntiVirus (ClamAV) 0.88 and earlier allows remote attackers to cause a denial of service (crash) via a malformed base64-encoded MIME attachment that triggers a null pointer dereference. Scope: local bookworm: resolved (fixed in 0.86-1) bullseye: resolved (fixed in 0.86-1) forky: resolved (fixed in 0.86-1) sid: resolved (fixed in 0.86-1) trixie: resolved (fixed i

CVE-2006-1630 [MEDIUM] CVE-2006-1630: clamav - The cli_bitset_set function in libclamav/others.c in Clam AntiVirus (ClamAV) bef... The cli_bitset_set function in libclamav/others.c in Clam AntiVirus (ClamAV) before 0.88.1 allows remote attackers to cause a denial of service via unspecified vectors that trigger an "invalid memory access." Scope: local bookworm: resolved (fixed in 0.88.1-1) bullseye: resolved (fixed in 0.88.1-1) forky: resolved (fixed in 0.88.1-1) sid: resolved (fixed in 0.88.1-1)

CVE-2006-1614 [MEDIUM] CVE-2006-1614: clamav - Integer overflow in the cli_scanpe function in the PE header parser (libclamav/p... Integer overflow in the cli_scanpe function in the PE header parser (libclamav/pe.c) in Clam AntiVirus (ClamAV) before 0.88.1, when ArchiveMaxFileSize is disabled, allows remote attackers to cause a denial of service and possibly execute arbitrary code. Scope: local bookworm: resolved (fixed in 0.88.1-1) bullseye: resolved (fixed in 0.88.1-1) forky: resolved (fixed i

CVE-2006-1989 [MEDIUM] CVE-2006-1989: clamav - Buffer overflow in the get_database function in the HTTP client in Freshclam in ... Buffer overflow in the get_database function in the HTTP client in Freshclam in ClamAV 0.80 to 0.88.1 might allow remote web servers to execute arbitrary code via long HTTP headers. Scope: local bookworm: resolved (fixed in 0.88.2) bullseye: resolved (fixed in 0.88.2) forky: resolved (fixed in 0.88.2) sid: resolved (fixed in 0.88.2) trixie: resolved (fixed in 0.88.2)

CVE-2006-6481 [MEDIUM] CVE-2006-6481: clamav - Clam AntiVirus (ClamAV) 0.88.6 allows remote attackers to cause a denial of serv... Clam AntiVirus (ClamAV) 0.88.6 allows remote attackers to cause a denial of service (stack overflow and application crash) by wrapping many layers of multipart/mixed content around a document, a different vulnerability than CVE-2006-5874 and CVE-2006-6406. Scope: local bookworm: resolved (fixed in 0.88.7-1) bullseye: resolved (fixed in 0.88.7-1) forky: resolved (fixe

CVE-2006-2427 [HIGH] CVE-2006-2427: clamav - freshclam in (1) Clam Antivirus (ClamAV) 0.88 and (2) ClamXav 1.0.3h and earlier... freshclam in (1) Clam Antivirus (ClamAV) 0.88 and (2) ClamXav 1.0.3h and earlier does not drop privileges before processing the config-file command line option, which allows local users to read portions of arbitrary files when an error message displays the first line of the target file. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved tr

CVE-2005-3303 [HIGH] CVE-2005-3303: clamav - The FSG unpacker (fsg.c) in Clam AntiVirus (ClamAV) 0.80 through 0.87 allows rem... The FSG unpacker (fsg.c) in Clam AntiVirus (ClamAV) 0.80 through 0.87 allows remote attackers to cause "memory corruption" and execute arbitrary code via a crafted FSG 1.33 file. Scope: local bookworm: resolved (fixed in 0.87.1-1) bullseye: resolved (fixed in 0.87.1-1) forky: resolved (fixed in 0.87.1-1) sid: resolved (fixed in 0.87.1-1) trixie: resolved (fixed in 0.87

CVE-2005-3501 [MEDIUM] CVE-2005-3501: clamav - The cabd_find function in cabd.c of the libmspack library (mspack) for Clam Anti... The cabd_find function in cabd.c of the libmspack library (mspack) for Clam AntiVirus (ClamAV) before 0.87.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted CAB file that causes cabd_find to be called with a zero length. Scope: local bookworm: resolved (fixed in 0.87.1-1) bullseye: resolved (fixed in 0.87.1-1) forky: resolved (fixed

CVE-2005-3239 [HIGH] CVE-2005-3239: clamav - The OLE2 unpacker in clamd in Clam AntiVirus (ClamAV) 0.87-1 allows remote attac... The OLE2 unpacker in clamd in Clam AntiVirus (ClamAV) 0.87-1 allows remote attackers to cause a denial of service (segmentation fault) via a DOC file with an invalid property tree, which triggers an infinite recursion in the ole2_walk_property_tree function. Scope: local bookworm: resolved (fixed in 0.87.1-1) bullseye: resolved (fixed in 0.87.1-1) forky: resolved (fixe

CVE-2005-1923 [LOW] CVE-2005-1923: clamav - The ENSURE_BITS macro in mszipd.c for Clam AntiVirus (ClamAV) 0.83, and other ve... The ENSURE_BITS macro in mszipd.c for Clam AntiVirus (ClamAV) 0.83, and other versions vefore 0.86, allows remote attackers to cause a denial of service (CPU consumption by infinite loop) via a cabinet (CAB) file with the cffile_FolderOffset field set to 0xff, which causes a zero-length read. Scope: local bookworm: resolved (fixed in 0.86.1) bullseye: resolved (fixed in

CVE-2005-2919 [MEDIUM] CVE-2005-2919: clamav - libclamav/fsg.c in Clam AntiVirus (ClamAV) before 0.87 allows remote attackers t... libclamav/fsg.c in Clam AntiVirus (ClamAV) before 0.87 allows remote attackers to cause a denial of service (infinite loop) via a crafted FSG packed executable. Scope: local bookworm: resolved (fixed in 0.87-1) bullseye: resolved (fixed in 0.87-1) forky: resolved (fixed in 0.87-1) sid: resolved (fixed in 0.87-1) trixie: resolved (fixed in 0.87-1)

CVE-2005-0133 [MEDIUM] CVE-2005-0133: clamav - ClamAV 0.80 and earlier allows remote attackers to cause a denial of service (cl... ClamAV 0.80 and earlier allows remote attackers to cause a denial of service (clamd daemon crash) via a ZIP file with malformed headers. Scope: local bookworm: resolved (fixed in 0.80-0.81rc1-1) bullseye: resolved (fixed in 0.80-0.81rc1-1) forky: resolved (fixed in 0.80-0.81rc1-1) sid: resolved (fixed in 0.80-0.81rc1-1) trixie: resolved (fixed in 0.80-0.81rc1-1)

CVE-2005-2450 [HIGH] CVE-2005-2450: clamav - Multiple integer overflows in the (1) TNEF, (2) CHM, or (3) FSG file format proc... Multiple integer overflows in the (1) TNEF, (2) CHM, or (3) FSG file format processors in libclamav for Clam AntiVirus (ClamAV) 0.86.1 and earlier allow remote attackers to gain privileges via a crafted e-mail message. Scope: local bookworm: resolved (fixed in 0.86.2-1) bullseye: resolved (fixed in 0.86.2-1) forky: resolved (fixed in 0.86.2-1) sid: resolved (fixed in 0

CVE-2005-2920 [HIGH] CVE-2005-2920: clamav - Buffer overflow in libclamav/upx.c in Clam AntiVirus (ClamAV) before 0.87 allows... Buffer overflow in libclamav/upx.c in Clam AntiVirus (ClamAV) before 0.87 allows remote attackers to execute arbitrary code via a crafted UPX packed executable. Scope: local bookworm: resolved (fixed in 0.87-1) bullseye: resolved (fixed in 0.87-1) forky: resolved (fixed in 0.87-1) sid: resolved (fixed in 0.87-1) trixie: resolved (fixed in 0.87-1)

CVE-2005-3500 [MEDIUM] CVE-2005-3500: clamav - The tnef_attachment function in tnef.c for Clam AntiVirus (ClamAV) before 0.87.1... The tnef_attachment function in tnef.c for Clam AntiVirus (ClamAV) before 0.87.1 allows remote attackers to cause a denial of service (infinite loop and memory exhaustion) via a crafted value in a CAB file that causes ClamAV to repeatedly scan the same block. Scope: local bookworm: resolved (fixed in 0.87.1-1) bullseye: resolved (fixed in 0.87.1-1) forky: resolved (f

CVE-2005-2056 [LOW] CVE-2005-2056: clamav - The Quantum archive decompressor in Clam AntiVirus (ClamAV) before 0.86.1 allows... The Quantum archive decompressor in Clam AntiVirus (ClamAV) before 0.86.1 allows remote attackers to cause a denial of service (application crash) via a crafted Quantum archive. Scope: local bookworm: resolved (fixed in 0.86.1-1) bullseye: resolved (fixed in 0.86.1-1) forky: resolved (fixed in 0.86.1-1) sid: resolved (fixed in 0.86.1-1) trixie: resolved (fixed in 0.86.1

CVE-2005-3587 [CRITICAL] CVE-2005-3587: clamav - Improper boundary checks in petite.c in Clam AntiVirus (ClamAV) before 0.87.1 al... Improper boundary checks in petite.c in Clam AntiVirus (ClamAV) before 0.87.1 allows attackers to perform unknown attacks via unknown vectors. Scope: local bookworm: resolved (fixed in 0.87.1-1) bullseye: resolved (fixed in 0.87.1-1) forky: resolved (fixed in 0.87.1-1) sid: resolved (fixed in 0.87.1-1) trixie: resolved (fixed in 0.87.1-1)

CVE-2005-0218 [MEDIUM] CVE-2005-0218: clamav - ClamAV 0.80 and earlier allows remote attackers to bypass virus scanning via a b... ClamAV 0.80 and earlier allows remote attackers to bypass virus scanning via a base64 encoded image in a data: (RFC 2397) URL. Scope: local bookworm: resolved (fixed in 0.81) bullseye: resolved (fixed in 0.81) forky: resolved (fixed in 0.81) sid: resolved (fixed in 0.81) trixie: resolved (fixed in 0.81)