SUSE-SU-2015:0291-1

Advisory lineage Upstream: 4 Downstream: 0

Upstream

CVE-2014-9328 CVE-2015-1461 CVE-2015-1462 CVE-2015-1463

Published: 06 Feb 2015, 10:49

Last modified:04 Feb 2026, 04:24

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

06 Feb 2015, 10:49

Published

Vulnerability first disclosed

04 Feb 2026, 04:24

Last Modified

Vulnerability information updated

Description

Security update for clamav clamav was updated to version 0.98.6 to fix four security issues. These security issues were fixed: - CVE-2015-1462: ClamAV allowed remote attackers to have unspecified impact via a crafted upx packer file, related to a heap out of bounds condition (bnc#916214). - CVE-2015-1463: ClamAV allowed remote attackers to cause a denial of service (crash) via a crafted petite packer file, related to an incorrect compiler optimization (bnc#916215). - CVE-2014-9328: ClamAV allowed remote attackers to have unspecified impact via a crafted upack packer file, related to a heap out of bounds condition (bnc#915512). - CVE-2015-1461: ClamAV allowed remote attackers to have unspecified impact via a crafted (1) Yoda's crypter or (2) mew packer file, related to a heap out of bounds condition (bnc#916217).

Affected Systems

suse•clamav&distro=SUSE Linux Enterprise Desktop 12
< 0.98.6-10.1
suse•clamav&distro=SUSE Linux Enterprise Server 12
< 0.98.6-10.1
suse•clamav&distro=SUSE Linux Enterprise Server for SAP Applications 12
< 0.98.6-10.1

SUSE-SU-2015:0291-1

Vulnerability Summary

Timeline

Description

Affected Systems

References (9)