[arch-security] [Arch Linux Security Advisory ASA-201411-21] clamav: denial of service
anthraxx at archlinux.org
Thu Nov 20 14:40:37 UTC 2014
Arch Linux Security Advisory ASA-201411-21
Date : 2014-11-20
CVE-ID : CVE-2013-6497
Package : clamav
Type : denial of service
Remote : No
Link : https://wiki.archlinux.org/index.php/CVE-2014
The package clamav before version 0.98.5-1 is vulnerable to denial of
Upgrade to 0.98.5-1.
# pacman -Syu "clamav>=0.98.5-1"
The problem has been fixed upstream in version 0.98.5.
It was discovered that clamav crashes on certain files when using
'clamscan -a' or while scanning maliciously crafted files.
may lead to a segmentation fault resulting in denial of service.
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 819 bytes
Desc: OpenPGP digital signature
More information about the arch-security