rpm package
opensuse/clamav&distro=openSUSE Leap 15.4
pkg:rpm/opensuse/clamav&distro=openSUSE%20Leap%2015.4
Vulnerabilities (9)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-40477 | — | < 0.103.11-150000.3.50.1 | 0.103.11-150000.3.50.1 | May 3, 2024 | RARLAB WinRAR Recovery Volume Improper Validation of Array Index Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of RARLAB WinRAR. User interaction is required to exploit this vulnerability in tha | ||
| CVE-2023-20197 | — | < 0.103.9-150000.3.47.1 | 0.103.9-150000.3.47.1 | Aug 16, 2023 | A vulnerability in the filesystem image parser for Hierarchical File System Plus (HFS+) of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to an incorrect check for completion | ||
| CVE-2023-20052 | — | < 0.103.8-150000.3.44.1 | 0.103.8-150000.3.44.1 | Feb 16, 2023 | On Feb 15, 2023, the following vulnerability in the ClamAV scanning library was disclosed: A vulnerability in the DMG file parser of ClamAV versions 1.0.0 and earlier, 0.105.1 and earlier, and 0.103.7 and earlier could allow an unauthenticated, remote attacker to access sens | ||
| CVE-2023-20032 | — | < 0.103.8-150000.3.44.1 | 0.103.8-150000.3.44.1 | Feb 16, 2023 | On Feb 15, 2023, the following vulnerability in the ClamAV scanning library was disclosed: A vulnerability in the HFS+ partition file parser of ClamAV versions 1.0.0 and earlier, 0.105.1 and earlier, and 0.103.7 and earlier could allow an unauthenticated, remote attacker to | ||
| CVE-2022-20792 | — | < 0.103.6-150000.3.38.1 | 0.103.6-150000.3.38.1 | Aug 10, 2022 | A vulnerability in the regex module used by the signature database load module of Clam AntiVirus (ClamAV) versions 0.104.0 through 0.104.2 and LTS version 0.103.5 and prior versions could allow an authenticated, local attacker to crash ClamAV at database load time, and possibly g | ||
| CVE-2022-20796 | — | < 0.103.6-150000.3.38.1 | 0.103.6-150000.3.38.1 | May 4, 2022 | On May 4, 2022, the following vulnerability in the ClamAV scanning library versions 0.103.5 and earlier and 0.104.2 and earlier was disclosed: A vulnerability in Clam AntiVirus (ClamAV) versions 0.103.4, 0.103.5, 0.104.1, and 0.104.2 could allow an authenticated, local attacker t | ||
| CVE-2022-20785 | — | < 0.103.6-150000.3.38.1 | 0.103.6-150000.3.38.1 | May 4, 2022 | On April 20, 2022, the following vulnerability in the ClamAV scanning library versions 0.103.5 and earlier and 0.104.2 and earlier was disclosed: A vulnerability in HTML file parser of Clam AntiVirus (ClamAV) versions 0.104.0 through 0.104.2 and LTS version 0.103.5 and prior vers | ||
| CVE-2022-20771 | — | < 0.103.6-150000.3.38.1 | 0.103.6-150000.3.38.1 | May 4, 2022 | On April 20, 2022, the following vulnerability in the ClamAV scanning library versions 0.103.5 and earlier and 0.104.2 and earlier was disclosed: A vulnerability in the TIFF file parser of Clam AntiVirus (ClamAV) versions 0.104.0 through 0.104.2 and LTS version 0.103.5 and prior | ||
| CVE-2022-20770 | — | < 0.103.6-150000.3.38.1 | 0.103.6-150000.3.38.1 | May 4, 2022 | On April 20, 2022, the following vulnerability in the ClamAV scanning library versions 0.103.5 and earlier and 0.104.2 and earlier was disclosed: A vulnerability in CHM file parser of Clam AntiVirus (ClamAV) versions 0.104.0 through 0.104.2 and LTS version 0.103.5 and prior versi |
- CVE-2023-40477May 3, 2024affected < 0.103.11-150000.3.50.1fixed 0.103.11-150000.3.50.1
RARLAB WinRAR Recovery Volume Improper Validation of Array Index Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of RARLAB WinRAR. User interaction is required to exploit this vulnerability in tha
- CVE-2023-20197Aug 16, 2023affected < 0.103.9-150000.3.47.1fixed 0.103.9-150000.3.47.1
A vulnerability in the filesystem image parser for Hierarchical File System Plus (HFS+) of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to an incorrect check for completion
- CVE-2023-20052Feb 16, 2023affected < 0.103.8-150000.3.44.1fixed 0.103.8-150000.3.44.1
On Feb 15, 2023, the following vulnerability in the ClamAV scanning library was disclosed: A vulnerability in the DMG file parser of ClamAV versions 1.0.0 and earlier, 0.105.1 and earlier, and 0.103.7 and earlier could allow an unauthenticated, remote attacker to access sens
- CVE-2023-20032Feb 16, 2023affected < 0.103.8-150000.3.44.1fixed 0.103.8-150000.3.44.1
On Feb 15, 2023, the following vulnerability in the ClamAV scanning library was disclosed: A vulnerability in the HFS+ partition file parser of ClamAV versions 1.0.0 and earlier, 0.105.1 and earlier, and 0.103.7 and earlier could allow an unauthenticated, remote attacker to
- CVE-2022-20792Aug 10, 2022affected < 0.103.6-150000.3.38.1fixed 0.103.6-150000.3.38.1
A vulnerability in the regex module used by the signature database load module of Clam AntiVirus (ClamAV) versions 0.104.0 through 0.104.2 and LTS version 0.103.5 and prior versions could allow an authenticated, local attacker to crash ClamAV at database load time, and possibly g
- CVE-2022-20796May 4, 2022affected < 0.103.6-150000.3.38.1fixed 0.103.6-150000.3.38.1
On May 4, 2022, the following vulnerability in the ClamAV scanning library versions 0.103.5 and earlier and 0.104.2 and earlier was disclosed: A vulnerability in Clam AntiVirus (ClamAV) versions 0.103.4, 0.103.5, 0.104.1, and 0.104.2 could allow an authenticated, local attacker t
- CVE-2022-20785May 4, 2022affected < 0.103.6-150000.3.38.1fixed 0.103.6-150000.3.38.1
On April 20, 2022, the following vulnerability in the ClamAV scanning library versions 0.103.5 and earlier and 0.104.2 and earlier was disclosed: A vulnerability in HTML file parser of Clam AntiVirus (ClamAV) versions 0.104.0 through 0.104.2 and LTS version 0.103.5 and prior vers
- CVE-2022-20771May 4, 2022affected < 0.103.6-150000.3.38.1fixed 0.103.6-150000.3.38.1
On April 20, 2022, the following vulnerability in the ClamAV scanning library versions 0.103.5 and earlier and 0.104.2 and earlier was disclosed: A vulnerability in the TIFF file parser of Clam AntiVirus (ClamAV) versions 0.104.0 through 0.104.2 and LTS version 0.103.5 and prior
- CVE-2022-20770May 4, 2022affected < 0.103.6-150000.3.38.1fixed 0.103.6-150000.3.38.1
On April 20, 2022, the following vulnerability in the ClamAV scanning library versions 0.103.5 and earlier and 0.104.2 and earlier was disclosed: A vulnerability in CHM file parser of Clam AntiVirus (ClamAV) versions 0.104.0 through 0.104.2 and LTS version 0.103.5 and prior versi