Note:
This project will be discontinued after December 13, 2021. [more]
2019-11-05
ClamAV versions prior to 0.101.2 are susceptible to a denial of service (DoS) vulnerability. An out-of-bounds heap read condition may occur when scanning PE files. An example is Windows EXE and DLL files that have been packed using Aspack as a result of inadequate bound-checking.
| Products | Clamav |
| Type | Out-of-bounds Read (CWE-125) |
| First patch | - None (likely due to unavailable code) |
| Links | https://blog.clamav.net/2019/03/clamav-01012-and-01003-patches-have.html |