CVE-2017-6419

Related Files

Gentoo Linux Security Advisory 201804-16

Posted Apr 23, 2018

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201804-16 - Multiple vulnerabilities have been found in ClamAV, the worst of which may allow remote attackers to execute arbitrary code. Versions less than 0.99.4 are affected.

tags | advisory, remote, arbitrary, vulnerability

systems | linux, gentoo

advisories | CVE-2012-6706, CVE-2017-11423, CVE-2017-6418, CVE-2017-6419, CVE-2017-6420, CVE-2018-0202, CVE-2018-1000085

SHA-256 | 226978b0f937cb909624ee469a0860710a9405d8025f924fe1f98de9f9477c57

Download | Favorite | View

Debian Security Advisory 3946-1

Posted Aug 18, 2017

Authored by Debian | Site debian.org

Debian Linux Security Advisory 3946-1 - It was discovered that libsmpack, a library used to handle Microsoft compression formats, did not properly validate its input. A remote attacker could craft malicious CAB or CHM files and use this flaw to cause a denial of service via application crash, or potentially execute arbitrary code.

tags | advisory, remote, denial of service, arbitrary

systems | linux, debian

advisories | CVE-2017-11423, CVE-2017-6419

SHA-256 | f47f97c1d334842dbab2f91a059aa75ba333f05e615f47600a55aeb3d96c72b0

Download | Favorite | View

Ubuntu Security Notice USN-3393-2

Posted Aug 18, 2017

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3393-2 - USN-3393-1 fixed several vulnerabilities in ClamAV. This update provides the corresponding update for Ubuntu 12.04 ESM. It was discovered that ClamAV incorrectly handled parsing certain e- mail messages. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service. Various other issues were also addressed.

tags | advisory, remote, denial of service, vulnerability

systems | linux, ubuntu

advisories | CVE-2017-6418, CVE-2017-6419, CVE-2017-6420

SHA-256 | 8fd58062c30085905cc01c1098152f994df7c716aecd3d0a398017949e523fc2

Download | Favorite | View

Ubuntu Security Notice USN-3394-1

Posted Aug 17, 2017

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3394-1 - It was discovered that libmspack incorrectly handled certain malformed CHM files. A remote attacker could use this issue to cause libmspack to crash, resulting in a denial of service, or possibly execute arbitrary code. It was discovered that libmspack incorrectly handled certain malformed CAB files. A remote attacker could use this issue to cause libmspack to crash, resulting in a denial of service. Various other issues were also addressed.

tags | advisory, remote, denial of service, arbitrary

systems | linux, ubuntu

advisories | CVE-2017-11423, CVE-2017-6419

SHA-256 | a0b46445e4ab459c8be9a3fd485694f68d4bf328d55a6fb5e5126ac7307c6fb0

Download | Favorite | View

Ubuntu Security Notice USN-3393-1

Posted Aug 17, 2017

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3393-1 - It was discovered that ClamAV incorrectly handled parsing certain e-mail messages. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service. It was discovered that ClamAV incorrectly handled certain malformed CHM files. A remote attacker could use this issue to cause ClamAV to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 14.04 LTS. In the default installation, attackers would be isolated by the ClamAV AppArmor profile. Various other issues were also addressed.

tags | advisory, remote, denial of service, arbitrary

systems | linux, ubuntu

advisories | CVE-2017-6418, CVE-2017-6419, CVE-2017-6420

SHA-256 | 5a8a590d5c4661efe2ab9a585a3bdb49af512e3663523c10454e99d28c3b6218

Download | Favorite | View