CVE-2010-1640

Related Files

Gentoo Linux Security Advisory 201009-6

Posted Sep 8, 2010

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201009-6 - Multiple vulnerabilities have been reported in Clam AntiVirus. Versions less than 0.96.1 are affected.

tags | advisory, vulnerability

systems | linux, gentoo

advisories | CVE-2010-0098, CVE-2010-1311, CVE-2010-1639, CVE-2010-1640

SHA-256 | 29bc3e802eed31e1ea30d7fbff434641cd4cd7678f94999a5dbf9a4ba1bef742

Download | Favorite | View

Mandriva Linux Security Advisory 2010-110

Posted May 28, 2010

Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2010-110 - The cli_pdf function in libclamav/pdf.c in ClamAV before 0.96.1 allows remote attackers to cause a denial of service (crash) via a malformed PDF file, related to an inconsistency in the calculated stream length and the real stream length. Off-by-one error in the parseicon function in libclamav/pe_icons.c in ClamAV 0.96 allows remote attackers to cause a denial of service (crash) via a crafted PE icon that triggers an out-of-bounds read, related to improper rounding during scaling. This update provides clamav 0.96.1 which is not vulnerable to these issues.

tags | advisory, remote, denial of service

systems | linux, mandriva

advisories | CVE-2010-1639, CVE-2010-1640

SHA-256 | 8265db2be8f314e34b496a700d50e5bbb34294ef05e4b5aa3d2947737ecefc69

Download | Favorite | View