5

CVE-2008-3913

Multiple memory leaks in freshclam/manager.c in ClamAV before 0.94 might allow attackers to cause a denial of service (memory consumption) via unspecified vectors related to "error handling logic".
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
ClamavClamav Version < 0.94
DebianDebian Linux Version4.0
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 3.06% 0.859
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:N/A:P
CWE-401 Missing Release of Memory after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.

http://svn.clamav.net/svn/clamav-devel/trunk/ChangeLog
Broken Link
http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html
Third Party Advisory
Mailing List
http://secunia.com/advisories/32222
Third Party Advisory
http://support.apple.com/kb/HT3216
Third Party Advisory
http://www.securityfocus.com/bid/31681
Third Party Advisory
VDB Entry
http://www.vupen.com/english/advisories/2008/2780
Permissions Required
http://lists.opensuse.org/opensuse-security-announce/2008-09/msg00004.html
Third Party Advisory
Mailing List
http://secunia.com/advisories/31982
Third Party Advisory
http://kolab.org/security/kolab-vendor-notice-22.txt
Broken Link
http://secunia.com/advisories/31906
Third Party Advisory
http://secunia.com/advisories/32030
Third Party Advisory
http://secunia.com/advisories/32699
Third Party Advisory
http://security.gentoo.org/glsa/glsa-200809-18.xml
Third Party Advisory
http://sourceforge.net/project/shownotes.php?group_id=86638&release_id=623661
Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDVSA-2008:189
Third Party Advisory
http://www.vupen.com/english/advisories/2008/2564
Permissions Required
https://www.redhat.com/archives/fedora-package-announce/2008-November/msg00332.html
Third Party Advisory
https://www.redhat.com/archives/fedora-package-announce/2008-November/msg00348.html
Third Party Advisory
http://secunia.com/advisories/32424
Third Party Advisory
http://www.debian.org/security/2008/dsa-1660
Third Party Advisory
http://www.openwall.com/lists/oss-security/2008/09/03/2
Third Party Advisory
Mailing List
http://www.openwall.com/lists/oss-security/2008/09/04/13
Third Party Advisory
Mailing List
http://www.securityfocus.com/bid/31051
Patch
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id?1020828
Third Party Advisory
VDB Entry
https://wwws.clamav.net/bugzilla/show_bug.cgi?id=1141
Broken Link
https://exchange.xforce.ibmcloud.com/vulnerabilities/45057
Third Party Advisory
VDB Entry