rpm package
suse/clamav&distro=SUSE Linux Enterprise Server 15 SP1-LTSS
pkg:rpm/suse/clamav&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSS
Vulnerabilities (8)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-40477 | — | < 0.103.11-150000.3.50.1 | 0.103.11-150000.3.50.1 | May 3, 2024 | RARLAB WinRAR Recovery Volume Improper Validation of Array Index Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of RARLAB WinRAR. User interaction is required to exploit this vulnerability in tha | ||
| CVE-2023-20197 | — | < 0.103.9-150000.3.47.1 | 0.103.9-150000.3.47.1 | Aug 16, 2023 | A vulnerability in the filesystem image parser for Hierarchical File System Plus (HFS+) of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to an incorrect check for completion | ||
| CVE-2023-20052 | — | < 0.103.8-150000.3.44.1 | 0.103.8-150000.3.44.1 | Feb 16, 2023 | On Feb 15, 2023, the following vulnerability in the ClamAV scanning library was disclosed: A vulnerability in the DMG file parser of ClamAV versions 1.0.0 and earlier, 0.105.1 and earlier, and 0.103.7 and earlier could allow an unauthenticated, remote attacker to access sens | ||
| CVE-2023-20032 | — | < 0.103.8-150000.3.44.1 | 0.103.8-150000.3.44.1 | Feb 16, 2023 | On Feb 15, 2023, the following vulnerability in the ClamAV scanning library was disclosed: A vulnerability in the HFS+ partition file parser of ClamAV versions 1.0.0 and earlier, 0.105.1 and earlier, and 0.103.7 and earlier could allow an unauthenticated, remote attacker to | ||
| CVE-2022-20698 | — | < 0.103.5-3.35.1 | 0.103.5-3.35.1 | Jan 14, 2022 | A vulnerability in the OOXML parsing module in Clam AntiVirus (ClamAV) Software version 0.104.1 and LTS version 0.103.4 and prior versions could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to imp | ||
| CVE-2021-1404 | — | < 0.103.2-3.26.1 | 0.103.2-3.26.1 | Apr 8, 2021 | A vulnerability in the PDF parsing module in Clam AntiVirus (ClamAV) Software versions 0.103.0 and 0.103.1 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to improper buffer size tracking that | ||
| CVE-2021-1405 | — | < 0.103.2-3.26.1 | 0.103.2-3.26.1 | Apr 8, 2021 | A vulnerability in the email parsing module in Clam AntiVirus (ClamAV) Software version 0.103.1 and all prior versions could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to improper variable initi | ||
| CVE-2021-1252 | — | < 0.103.2-3.26.1 | 0.103.2-3.26.1 | Apr 8, 2021 | A vulnerability in the Excel XLM macro parsing module in Clam AntiVirus (ClamAV) Software versions 0.103.0 and 0.103.1 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to improper error handling |
- CVE-2023-40477May 3, 2024affected < 0.103.11-150000.3.50.1fixed 0.103.11-150000.3.50.1
RARLAB WinRAR Recovery Volume Improper Validation of Array Index Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of RARLAB WinRAR. User interaction is required to exploit this vulnerability in tha
- CVE-2023-20197Aug 16, 2023affected < 0.103.9-150000.3.47.1fixed 0.103.9-150000.3.47.1
A vulnerability in the filesystem image parser for Hierarchical File System Plus (HFS+) of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to an incorrect check for completion
- CVE-2023-20052Feb 16, 2023affected < 0.103.8-150000.3.44.1fixed 0.103.8-150000.3.44.1
On Feb 15, 2023, the following vulnerability in the ClamAV scanning library was disclosed: A vulnerability in the DMG file parser of ClamAV versions 1.0.0 and earlier, 0.105.1 and earlier, and 0.103.7 and earlier could allow an unauthenticated, remote attacker to access sens
- CVE-2023-20032Feb 16, 2023affected < 0.103.8-150000.3.44.1fixed 0.103.8-150000.3.44.1
On Feb 15, 2023, the following vulnerability in the ClamAV scanning library was disclosed: A vulnerability in the HFS+ partition file parser of ClamAV versions 1.0.0 and earlier, 0.105.1 and earlier, and 0.103.7 and earlier could allow an unauthenticated, remote attacker to
- CVE-2022-20698Jan 14, 2022affected < 0.103.5-3.35.1fixed 0.103.5-3.35.1
A vulnerability in the OOXML parsing module in Clam AntiVirus (ClamAV) Software version 0.104.1 and LTS version 0.103.4 and prior versions could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to imp
- CVE-2021-1404Apr 8, 2021affected < 0.103.2-3.26.1fixed 0.103.2-3.26.1
A vulnerability in the PDF parsing module in Clam AntiVirus (ClamAV) Software versions 0.103.0 and 0.103.1 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to improper buffer size tracking that
- CVE-2021-1405Apr 8, 2021affected < 0.103.2-3.26.1fixed 0.103.2-3.26.1
A vulnerability in the email parsing module in Clam AntiVirus (ClamAV) Software version 0.103.1 and all prior versions could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to improper variable initi
- CVE-2021-1252Apr 8, 2021affected < 0.103.2-3.26.1fixed 0.103.2-3.26.1
A vulnerability in the Excel XLM macro parsing module in Clam AntiVirus (ClamAV) Software versions 0.103.0 and 0.103.1 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to improper error handling