[v3.1] clamav: heap buffer overflow (CVE-2014-9328)
ClamAV 0.98.6 is a bug fix release correcting a heap out of bounds condition with crafted upack packer files.
Class: Boundary Condition Error
Remote: Yes
Local: No
Published: Jan 29 2015 12:00AM
Updated: Feb 04 2015 12:04AM
Credit: Sebastian Andrzej Siewior
References:
http://seclists.org/oss-sec/2015/q1/344
http://blog.clamav.net/2015/01/clamav-0986-has-been-released.html
http://www.securityfocus.com/bid/72372
(from redmine: issue id 3899, created on 2015-02-04, closed on 2015-03-16)
- Relations:
- parent #3895 (closed)
- Changesets:
- Revision a1313c7a by Natanael Copa on 2015-03-12T16:36:30Z:
main/clamav: security upgrade to 0.98.6 (CVE-2014-9328)
fixes #3899