AVG-1168 log
| Package | clamav |
| Status | Fixed |
| Severity | High |
| Type | multiple issues |
| Affected | 0.102.1-1 |
| Fixed | 0.102.3-1 |
| Current | 1.2.1-1 [extra] |
| Ticket | None |
| Created | Wed May 20 22:14:07 2020 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2020-7613 | High | No | Arbitrary command execution | clamscan through 1.2.0 is vulnerable to Command Injection. It is possible to inject arbitrary commands as part of the `_is_clamav_binary` function located... |
| CVE-2020-3123 | High | Yes | Denial of service | A denial-of-service (DoS) condition may occur when using the optional credit card data-loss-prevention (DLP) feature. Improper bounds checking of an... |