VulnerableCode Package Details - pkg:deb/debian/clamav@1.4.3%2Bdfsg-1~deb12u2

Search for packages

Vulnerability	Summary	Fixed by
VCID-5kba-63mx-hya7 Aliases: CVE-2026-20031	A vulnerability in the HTML Cascading Style Sheets (CSS) module of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper error handling when splitting UTF-8 strings. An attacker could exploit this vulnerability by submitting a crafted HTML file to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to terminate the scanning process.	1.4.4+dfsg-1 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-5kba-63mx-hya7
Aliases:
CVE-2026-20031

A vulnerability in the HTML Cascading Style Sheets (CSS) module of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper error handling when splitting UTF-8 strings. An attacker could exploit this vulnerability by submitting a crafted HTML file to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to terminate the scanning process.

1.4.4+dfsg-1
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
VCID-63vt-1nc8-6kfc	A vulnerability in the PDF scanning processes of ClamAV could allow an unauthenticated, remote attacker to cause a buffer overflow condition, cause a denial of service (DoS) condition, or execute arbitrary code on an affected device. This vulnerability exists because memory buffers are allocated incorrectly when PDF files are processed. An attacker could exploit this vulnerability by submitting a crafted PDF file to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to trigger a buffer overflow, likely resulting in the termination of the ClamAV scanning process and a DoS condition on the affected software. Although unproven, there is also a possibility that an attacker could leverage the buffer overflow to execute arbitrary code with the privileges of the ClamAV process.	CVE-2025-20260
VCID-ggz7-h35v-p7ep	Multiple vulnerabilities have been discovered in ClamAV, the worst of which could lead to arbitrary code execution.	CVE-2024-20505
VCID-vdhk-r67a-s3fr	A vulnerability in the Object Linking and Embedding 2 (OLE2) decryption routine of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to an integer underflow in a bounds check that allows for a heap buffer overflow read. An attacker could exploit this vulnerability by submitting a crafted file containing OLE2 content to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to terminate the ClamAV scanning process, resulting in a DoS condition on the affected software. For a description of this vulnerability, see the . Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.	CVE-2025-20128
VCID-wjvc-p75d-p3a9	Multiple vulnerabilities have been discovered in ClamAV, the worst of which could lead to arbitrary code execution.	CVE-2024-20506

Vulnerability

Summary

Aliases

VCID-63vt-1nc8-6kfc

A vulnerability in the PDF scanning processes of ClamAV could allow an unauthenticated, remote attacker to cause a buffer overflow condition, cause a denial of service (DoS) condition, or execute arbitrary code on an affected device. This vulnerability exists because memory buffers are allocated incorrectly when PDF files are processed. An attacker could exploit this vulnerability by submitting a crafted PDF file to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to trigger a buffer overflow, likely resulting in the termination of the ClamAV scanning process and a DoS condition on the affected software. Although unproven, there is also a possibility that an attacker could leverage the buffer overflow to execute arbitrary code with the privileges of the ClamAV process.

CVE-2025-20260

VCID-ggz7-h35v-p7ep

Multiple vulnerabilities have been discovered in ClamAV, the worst of which could lead to arbitrary code execution.

CVE-2024-20505

VCID-vdhk-r67a-s3fr

A vulnerability in the Object Linking and Embedding 2 (OLE2) decryption routine of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to an integer underflow in a bounds check that allows for a heap buffer overflow read. An attacker could exploit this vulnerability by submitting a crafted file containing OLE2 content to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to terminate the ClamAV scanning process, resulting in a DoS condition on the affected software. For a description of this vulnerability, see the . Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.

CVE-2025-20128

VCID-wjvc-p75d-p3a9

Multiple vulnerabilities have been discovered in ClamAV, the worst of which could lead to arbitrary code execution.

CVE-2024-20506

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T12:53:15.127337+00:00	Debian Importer	Affected by	VCID-5kba-63mx-hya7	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-15T20:52:54.680800+00:00	Debian Oval Importer	Fixing	VCID-ggz7-h35v-p7ep	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:44:21.047155+00:00	Debian Oval Importer	Fixing	VCID-wjvc-p75d-p3a9	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:46:03.582219+00:00	Debian Oval Importer	Fixing	VCID-63vt-1nc8-6kfc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T15:59:31.484683+00:00	Debian Oval Importer	Fixing	VCID-vdhk-r67a-s3fr	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-14T03:28:11.359246+00:00	Debian Importer	Affected by	VCID-5kba-63mx-hya7	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T20:33:30.176637+00:00	Debian Oval Importer	Fixing	VCID-ggz7-h35v-p7ep	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T18:29:11.791298+00:00	Debian Oval Importer	Fixing	VCID-wjvc-p75d-p3a9	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:32:02.545093+00:00	Debian Oval Importer	Fixing	VCID-63vt-1nc8-6kfc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T15:47:06.590552+00:00	Debian Oval Importer	Fixing	VCID-vdhk-r67a-s3fr	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-08T20:13:40.357035+00:00	Debian Oval Importer	Fixing	VCID-ggz7-h35v-p7ep	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T18:14:26.564973+00:00	Debian Oval Importer	Fixing	VCID-wjvc-p75d-p3a9	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:19:54.673441+00:00	Debian Oval Importer	Fixing	VCID-63vt-1nc8-6kfc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T15:40:44.101212+00:00	Debian Oval Importer	Fixing	VCID-vdhk-r67a-s3fr	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0