SUSE-SU-2018:0863-1 -- SLES clamavID: oval:org.secpod.oval:def:89002466 | Date: (C)2021-02-26 (M)2022-10-10 |
Class: PATCH | Family: unix |
This update for clamav fixes the following issues: Security issues fixed: - CVE-2012-6706: VMSF_DELTA filter inside the unrar implementation allows an arbitrary memory write . - CVE-2017-6419: A heap-based buffer overflow that can lead to a denial of service in libmspack via a crafted CHM file . - CVE-2017-11423: A stack-based buffer over-read that can lead to a denial of service in mspack via a crafted CAB file . - CVE-2018-1000085: An out-of-bounds heap read vulnerability was found in XAR parser that can lead to a denial of service . - CVE-2018-0202: Fixed two vulnerabilities in the PDF parsing code .
Platform: |
SUSE Linux Enterprise Server 11 SP4 |