CVE-2014-9050
Published: 24 November 2014
Heap-based buffer overflow in the cli_scanpe function in libclamav/pe.c in ClamAV before 0.98.5 allows remote attackers to cause a denial of service (crash) via a crafted y0da Crypter PE file.
Priority
Status
Package | Release | Status |
---|---|---|
clamav Launchpad, Ubuntu, Debian |
lucid |
Ignored
(end of life)
|
precise |
Released
(0.98.5+addedllvm-0ubuntu0.12.04.1)
|
|
trusty |
Released
(0.98.5+addedllvm-0ubuntu0.14.04.1)
|
|
upstream |
Released
(0.98.5)
|
|
utopic |
Released
(0.98.5+dfsg-0ubuntu0.14.10.1)
|
|
Patches: upstream: https://github.com/vrtadmin/clamav-devel/commit/fc3794a54d2affe5770c1f876484a871c783e91e |