CVE-2019-1789

Name
CVE-2019-1789
Description
ClamAV versions prior to 0.101.2 are susceptible to a denial of service (DoS) vulnerability. An out-of-bounds heap read condition may occur when scanning PE files. An example is Windows EXE and DLL files that have been packed using Aspack as a result of inadequate bound-checking.
NVD Severity
medium
Other trackers
Mailing lists
Exploits
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
Vendor Advisory https://blog.clamav.net/2019/03/clamav-01012-and-01003-patches-have.html

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:clamav:clamav:*:*:*:*:*:*:*:* clamav >= None < 0.101.2

Vulnerable and fixed packages

Source package Branch Version Maintainer Status