|Category:||Debian Local Security Checks|
|Title:||Debian LTS: Security Advisory for clamav (DLA-1759-1)|
|Summary:||The remote host is missing an update for the 'clamav'; package(s) announced via the DLA-1759-1 advisory.|
The remote host is missing an update for the 'clamav'
package(s) announced via the DLA-1759-1 advisory.
Out-of-bounds read and write conditions have been fixed in clamav.
An out-of-bounds heap read condition may occur when scanning PDF
documents. The defect is a failure to correctly keep track of the number
of bytes remaining in a buffer when indexing file data.
An out-of-bounds heap write condition may occur when scanning OLE2 files
such as Microsoft Office 97-2003 documents. The invalid write happens when
an invalid pointer is mistakenly used to initialize a 32bit integer to
zero. This is likely to crash the application.
An out-of-bounds heap read condition may occur when scanning PE files
(i.e. Windows EXE and DLL files) that have been packed using Aspack as a
result of inadequate bound-checking.
'clamav' package(s) on Debian Linux.
For Debian 8 'Jessie', these problems have been fixed in version
We recommend that you upgrade your clamav packages.
Common Vulnerability Exposure (CVE) ID: CVE-2019-1787|
SuSE Security Announcement: openSUSE-SU-2019:1208 (Google Search)
SuSE Security Announcement: openSUSE-SU-2019:1210 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2019-1788
Common Vulnerability Exposure (CVE) ID: CVE-2019-1789
|Copyright||Copyright (C) 2019 Greenbone Networks GmbH|
|This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.