OVAL Reference oval:org.mitre.oval:def:28489

CVE-2013-6497)Damien Millescamp discovered that ClamAV incorrectly handled certain PEfiles. An attacker could possibly use this issue to cause ClamAV to crash,resulting in a denial of service, or possibly execute arbitrary code.(CVE-2014-9050)"> OVAL Reference oval:org.mitre.oval:def:28489 - CERT Civis.Net

Oval Definition:

oval:org.mitre.oval:def:28489

Revision Date:	2015-03-09	Version:	5
Title:	USN-2423-1 -- ClamAV vulnerabilities
Description:	Kurt Seifried discovered that ClamAV incorrectly handled certain JavaScriptfiles. An attacker could possibly use this issue to cause ClamAV to crash,resulting in a denial of service, or possibly execute arbitrary code.(CVE-2013-6497)Damien Millescamp discovered that ClamAV incorrectly handled certain PEfiles. An attacker could possibly use this issue to cause ClamAV to crash,resulting in a denial of service, or possibly execute arbitrary code.(CVE-2014-9050)
Family:	unix	Class:	patch
Status:	ACCEPTED	Reference(s):	CVE-2013-6497 CVE-2014-9050 USN-2423-1
Platform(s):	Ubuntu 12.04 Ubuntu 14.04 Ubuntu 14.10	Product(s):	clamav
Definition Synopsis
Ubuntu 14.10 release section Ubuntu 14.10 is installed AND clamav is earlier than 0:0.98.5+dfsg-0ubuntu0.14.10.1 Ubuntu 14.04 release section Ubuntu 14.04 is installed AND clamav is earlier than 0:0.98.5+addedllvm-0ubuntu0.14.04.1 Ubuntu 12.04 release section Ubuntu 12.04 is installed AND clamav is earlier than 0:0.98.5+addedllvm-0ubuntu0.12.04.1

BACK