CVE-2017-6420 log

Source
Severity Medium
Remote Yes
Type Denial of service
Description
The wwunpack function in libclamav/wwunpack.c in ClamAV before 0.99.3 allows remote attackers to cause a denial of service (use-after-free) via a crafted PE file with WWPack compression.
Group Package Affected Fixed Severity Status Ticket
AVG-601 clamav 0.99.2-1 0.99.3-1 Critical Fixed FS#57233
Date Advisory Group Package Severity Type
09 Feb 2018 ASA-201802-1 AVG-601 clamav Critical multiple issues
References
https://bugzilla.clamav.net/show_bug.cgi?id=11798
https://github.com/vrtadmin/clamav-devel/commit/dfc00cd3301a42b571454b51a6102eecf58407bc
https://github.com/varsleak/varsleak-vul/blob/master/clamav-vul/use-after-free/clamav-use-after-free-pe.md