|
|
Subscribe / Log in / New account

clamav: multiple vulnerabilities

Package(s):clamav CVE #(s):CVE-2010-4260 CVE-2010-4479 CVE-2010-4261
Created:December 7, 2010 Updated:December 24, 2010
Description: From the Mandriva advisory:

Multiple unspecified vulnerabilities in pdf.c in libclamav in ClamAV before 0.96.5 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document (CVE-2010-4260, (CVE-2010-4479).

Off-by-one error in the icon_cb function in pe_icons.c in libclamav in ClamAV before 0.96.5 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unspecified vectors. NOTE: some of these details are obtained from third party information (CVE-2010-4261).

Alerts:
Gentoo 201110-20 clamav 2011-10-23
SUSE SUSE-SR:2010:024 clamav, subversion, python, krb5, otrs, moonlight, OpenOffice_org, kdenetwork4, zope, xpdf, gnutls, and opera 2010-12-23
Fedora FEDORA-2010-18564 clamav 2010-12-05
Ubuntu USN-1031-1 clamav 2010-12-10
openSUSE openSUSE-SU-2010:1041-1 clamav 2010-12-10
Fedora FEDORA-2010-18568 clamav 2010-12-05
Mandriva MDVSA-2010:249 clamav 2010-12-07
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds