clamav: heap buffer overflow (CVE-2014-9328)
ClamAV 0.98.6 is a bug fix release correcting a heap out of bounds condition with crafted upack packer files.
Class: Boundary Condition Error
Remote: Yes
Local: No
Published: Jan 29 2015 12:00AM
Updated: Feb 04 2015 12:04AM
Credit: Sebastian Andrzej Siewior
References:
http://seclists.org/oss-sec/2015/q1/344
http://blog.clamav.net/2015/01/clamav-0986-has-been-released.html
http://www.securityfocus.com/bid/72372
(from redmine: issue id 3895, created on 2015-02-04, closed on 2015-03-16)
- Relations:
- child #3896 (closed)
- child #3897 (closed)
- child #3898 (closed)
- child #3899 (closed)