FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

clamav -- Possbile denial-of-service vulnerability

Affected packages
1.0.0,1	<=	clamav	<	1.4.2,1
1.0.0,1	<=	clamav-lts	<	1.0.8,1

Details

VuXML ID	1e109b60-d92e-11ef-a661-08002784c58d
Discovery	2025-01-22
Entry	2025-01-23

The ClamAV project reports:

A possible buffer overflow read bug is found in the OLE2 file parser that could cause a denial-of-service (DoS) condition.

[source]

References

CVE Name	CVE-2025-20128
URL	https://blog.clamav.net/2025/01/clamav-142-and-108-security-patch.html

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.