ClamAV versions prior to 0.101.2 are susceptible to a denial of service (DoS) vulnerability. An out-of-bounds heap read condition may occur when scanning PE files. An example is Windows EXE and DLL files that have been packed using Aspack as a result of inadequate bound-checking.
References
Link | Resource |
---|---|
https://blog.clamav.net/2019/03/clamav-01012-and-01003-patches-have.html | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: cisco
Published: 2019-11-05T18:25:34
Updated: 2019-11-05T18:25:34
Reserved: 2018-12-06T00:00:00
Link: CVE-2019-1789
JSON object: View
NVD Information
Status : Analyzed
Published: 2019-11-05T19:15:11.323
Modified: 2019-11-07T15:55:00.960
Link: CVE-2019-1789
JSON object: View
Redhat Information
No data.