FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

clamav -- Denial-of-Service (DoS) vulnerability

Affected packages
clamav < 0.102.1,1

Details

VuXML ID 6ade62d9-0f62-11ea-9673-4c72b94353b5
Discovery 2019-09-06
Entry 2019-11-25

Micah Snyder reports:

A Denial-of-Service (DoS) vulnerability may occur when scanning a specially crafted email file as a result of excessively long scan times. The issue is resolved by implementing several maximums in parsing MIME messages and by optimizing use of memory allocation.

[source]

References

CVE Name CVE-2019-15961
URL https://blog.clamav.net/2019/11/clamav-01021-and-01015-patches-have.html

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.