5
CVE-2008-3913
- EPSS 3.06%
- Veröffentlicht 11.09.2008 01:13:41
- Zuletzt bearbeitet 16.06.2026 22:56:47
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Multiple memory leaks in freshclam/manager.c in ClamAV before 0.94 might allow attackers to cause a denial of service (memory consumption) via unspecified vectors related to "error handling logic".
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Debian ≫ Debian Linux Version4.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 3.06% | 0.859 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:N/A:P
|
CWE-401 Missing Release of Memory after Effective Lifetime
The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.
http://svn.clamav.net/svn/clamav-devel/trunk/ChangeLog
http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html
http://secunia.com/advisories/32222
http://support.apple.com/kb/HT3216
http://www.securityfocus.com/bid/31681
http://www.vupen.com/english/advisories/2008/2780
http://lists.opensuse.org/opensuse-security-announce/2008-09/msg00004.html
http://secunia.com/advisories/31982
http://kolab.org/security/kolab-vendor-notice-22.txt
http://secunia.com/advisories/31906
http://secunia.com/advisories/32030
http://secunia.com/advisories/32699
http://security.gentoo.org/glsa/glsa-200809-18.xml
http://sourceforge.net/project/shownotes.php?group_id=86638&release_id=623661
http://www.mandriva.com/security/advisories?name=MDVSA-2008:189
http://www.vupen.com/english/advisories/2008/2564
https://www.redhat.com/archives/fedora-package-announce/2008-November/msg00332.html
https://www.redhat.com/archives/fedora-package-announce/2008-November/msg00348.html
http://secunia.com/advisories/32424
http://www.debian.org/security/2008/dsa-1660
http://www.openwall.com/lists/oss-security/2008/09/03/2
http://www.openwall.com/lists/oss-security/2008/09/04/13
http://www.securityfocus.com/bid/31051
http://www.securitytracker.com/id?1020828
https://wwws.clamav.net/bugzilla/show_bug.cgi?id=1141
https://exchange.xforce.ibmcloud.com/vulnerabilities/45057