Denial of Service Vulnerability in ClamAV Product by Cisco
CVE-2015-1463

Currently unrated

Key Information:

Vendor: Clamav
Status: Clamav
Vendor: CVE Published:; 3 February 2015

What is CVE-2015-1463?

ClamAV versions prior to 0.98.6 contain a vulnerability that allows remote attackers to initiate a denial of service scenario by sending a specially crafted petite packer file. This flaw results from incorrect compiler optimizations and can lead to system crashes, compromising the availability of the software.

References

https://security.gentoo.org/glsa/201512-08

vendor-advisoryx_refsource_GENTOO

http://lists.opensuse.org/opensuse-security-announce/2015...

vendor-advisoryx_refsource_SUSE

http://lists.fedoraproject.org/pipermail/package-announce...

vendor-advisoryx_refsource_FEDORA

Timeline

Vulnerability published
Feb 3, 2015
Vulnerability Reserved
Feb 3, 2015

Clamav

What is CVE-2015-1463?

References

Timeline