Search CVE reports
71 – 80 of 166 results
CVE-2015-2305
Medium prioritySome fixes available 30 of 84
Integer overflow in the regcomp implementation in the Henry Spencer BSD regex library (aka rxspencer) alpha3.8.g5 on 32-bit platforms, as used in NetBSD through 6.1.5 and other products, might allow context-dependent attackers to...
23 affected packages
alpine, clamav, cups, efl, haskell-regex-posix...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| alpine | Not affected | Not affected | Not affected | Not affected | Not affected |
| clamav | Fixed | Fixed | Fixed | Fixed | Fixed |
| cups | Not affected | Not affected | Not affected | Not affected | Not affected |
| efl | Not affected | Not affected | Not affected | Not affected | Not affected |
| haskell-regex-posix | Not affected | Not affected | Not affected | Not affected | Not affected |
| knews | Not affected | Not affected | Not affected | Not affected | Not affected |
| librcsb-core-wrapper | Not affected | Not affected | Not affected | Not affected | Not affected |
| llvm-toolchain-3.4 | Not in release | Not in release | Not in release | Not in release | Not in release |
| llvm-toolchain-3.5 | Not in release | Not in release | Not in release | Not in release | Not affected |
| llvm-toolchain-3.6 | Not in release | Not in release | Not in release | Not in release | Not affected |
| llvm-toolchain-snapshot | Not in release | Not in release | Not in release | Not in release | Not in release |
| newlib | Not affected | Not affected | Not affected | Not affected | Not affected |
| nvi | Not affected | Not affected | Not affected | Not affected | Vulnerable |
| olsrd | Not in release | Not in release | Not in release | Not affected | Not affected |
| openrpt | Not in release | Not in release | Not in release | Vulnerable | Vulnerable |
| php5 | Not in release | Not in release | Not in release | Not in release | Not in release |
| ptlib | Not in release | Not in release | Not in release | Not affected | Not affected |
| radare2 | Not affected | Not in release | Not affected | Not affected | Vulnerable |
| sma | Not affected | Not affected | Not affected | Not affected | Not affected |
| vigor | Not affected | Not affected | Not affected | Not affected | Not affected |
| vnc4 | Not in release | Not in release | Not in release | Not affected | Not affected |
| yap | Not in release | Not in release | Not in release | Not affected | Not affected |
| z88dk | Not in release | Not in release | Not in release | Not in release | Not affected |
CVE-2015-1463
Medium prioritySome fixes available 3 of 4
ClamAV before 0.98.6 allows remote attackers to cause a denial of service (crash) via a crafted petite packer file, related to an "incorrect compiler optimization."
1 affected package
clamav
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| clamav | — | — | — | — | — |
CVE-2015-1462
Medium prioritySome fixes available 3 of 4
ClamAV before 0.98.6 allows remote attackers to have unspecified impact via a crafted upx packer file, related to a "heap out of bounds condition."
1 affected package
clamav
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| clamav | — | — | — | — | — |
CVE-2015-1461
Medium prioritySome fixes available 3 of 4
ClamAV before 0.98.6 allows remote attackers to have unspecified impact via a crafted (1) Yoda's crypter or (2) mew packer file, related to a "heap out of bounds condition."
1 affected package
clamav
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| clamav | — | — | — | — | — |
CVE-2014-9328
Medium prioritySome fixes available 3 of 4
ClamAV before 0.98.6 allows remote attackers to have unspecified impact via a crafted upack packer file, related to a "heap out of bounds condition."
1 affected package
clamav
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| clamav | — | — | — | — | — |
CVE-2014-9050
Medium prioritySome fixes available 3 of 4
Heap-based buffer overflow in the cli_scanpe function in libclamav/pe.c in ClamAV before 0.98.5 allows remote attackers to cause a denial of service (crash) via a crafted y0da Crypter PE file.
1 affected package
clamav
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| clamav | — | — | — | — | — |
CVE-2013-6497
Medium prioritySome fixes available 3 of 4
clamscan in ClamAV before 0.98.5, when using -a option, allows remote attackers to cause a denial of service (crash) as demonstrated by the jwplayer.js file.
1 affected package
clamav
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| clamav | — | — | — | — | — |
CVE-2013-2021
Medium prioritypdf.c in ClamAV 0.97.1 through 0.97.7 allows remote attackers to cause a denial of service (out-of-bounds-read) via a crafted length value in an encrypted PDF file.
1 affected package
clamav
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| clamav | — | — | — | — | — |
CVE-2013-2020
Medium priorityInteger underflow in the cli_scanpe function in pe.c in ClamAV before 0.97.8 allows remote attackers to cause a denial of service (crash) via a skewed offset larger than the size of the PE section in a UPX packed executable, which...
1 affected package
clamav
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| clamav | — | — | — | — | — |
CVE-2012-4667
Medium priorityMultiple cross-site scripting (XSS) vulnerabilities in SquidClamav 5.x before 5.8 allow remote attackers to inject arbitrary web script or HTML via the (1) url, (2) virus, (3) source, or (4) user parameter to (a) clwarn.cgi, (b)...
1 affected package
squidclamav
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| squidclamav | — | — | — | — | Not in release |