clamav vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the clamav package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Vulnerability	Vulnerable Version
C Heap-based Buffer Overflow	<1.0.9+dfsg-1~deb11u1
H Heap-based Buffer Overflow	<1.0.9+dfsg-1~deb11u1
H Out-of-bounds Read	<1.0.7+dfsg-1~deb11u1
M Improper Check for Unusual or Exceptional Conditions	<1.0.7+dfsg-1~deb11u1
H Loop with Unreachable Exit Condition ('Infinite Loop')	<0.103.9+dfsg-0+deb11u1
C Out-of-bounds Write	<0.103.8+dfsg-0+deb11u1
M Improper Restriction of Recursive Entity References in DTDs ('XML Entity Expansion')	<0.103.8+dfsg-0+deb11u1
H CVE-2022-20771	<0.103.6+dfsg-0+deb11u1
H Memory Leak	<0.103.6+dfsg-0+deb11u1
M NULL Pointer Dereference	<0.103.6+dfsg-0+deb11u1
H CVE-2022-20770	<0.103.6+dfsg-0+deb11u1
H Out-of-bounds Write	<0.103.6+dfsg-0+deb11u1
H Out-of-bounds Read	<0.103.5+dfsg-0+deb11u1
H Buffer Overflow	<0.103.2+dfsg-1
H Improper Input Validation	<0.103.2+dfsg-1
H Improper Input Validation	<0.103.2+dfsg-1
M Race Condition	<0.102.4+dfsg-1
H NULL Pointer Dereference	<0.102.4+dfsg-1
H Improper Input Validation	<0.102.3+dfsg-1
H Improper Input Validation	<0.102.4+dfsg-1
H Out-of-bounds Read	<0.102.2+dfsg-1
M Resource Exhaustion	<0.102.1+dfsg-1
H Improper Resource Shutdown or Release	<0.101.4+dfsg-1
C Out-of-bounds Write	<0.101.4+dfsg-1
H Out-of-bounds Read	<0.101.2+dfsg-1
M Out-of-bounds Read	<0.101.2+dfsg-1
M Out-of-bounds Read	<0.101.2+dfsg-1
H Directory Traversal	<0.101.2+dfsg-1
M Out-of-bounds Read	<0.101.2+dfsg-1
M Out-of-bounds Write	<0.101.2+dfsg-1
M Out-of-bounds Read	<0.100.2+dfsg-1
L Improper Input Validation	<0.100.1+dfsg-1
M Integer Overflow or Wraparound	<0.100.1+dfsg-1
C Out-of-bounds Write	<0.90-1
C Out-of-Bounds	<0.97.7+dfsg-1
H Information Exposure	<0.97.7+dfsg-1
C Buffer Overflow	<0.97.7+dfsg-1
C CVE-2007-6745	<0.91.2-1~volatile1
M Out-of-bounds Read	<0.100.0~beta+dfsg-2
M Out-of-bounds Read	<0.99.3~beta1+dfsg-1
M Out-of-bounds Read	<0.99.3~beta2+dfsg-1
C Out-of-Bounds	<0.99.3~beta2+dfsg-1
C Out-of-bounds Read	<0.99.3~beta2+dfsg-1
H Out-of-Bounds	<0.99.3~beta2+dfsg-1
H NULL Pointer Dereference	<0.99.3~beta2+dfsg-1
H Use After Free	<0.99.3~beta2+dfsg-1
H Out-of-Bounds	<0.99.3~beta2+dfsg-1
L Out-of-Bounds	<0.99.3~beta1+dfsg-1
M Out-of-bounds Read	<0.99.3~beta1+dfsg-1
M Use After Free	<0.99.3~beta1+dfsg-1
L Out-of-bounds Read	<0.99.3~beta1+dfsg-1
M Improper Access Control	<0.99.2+dfsg-1
M Improper Access Control	<0.99.2+dfsg-1
H Out-of-Bounds	<0.99+dfsg-1
M Resource Management Errors	<0.98.7+dfsg-1
M Resource Management Errors	<0.98.7+dfsg-1
M Resource Management Errors	<0.98.7+dfsg-1
M Resource Management Errors	<0.98.7+dfsg-1
L Numeric Errors	<0.98.7+dfsg-1
H Out-of-Bounds	<0.98.6+dfsg-1
M Code	<0.98.6+dfsg-1
H Out-of-Bounds	<0.98.6+dfsg-1
H Out-of-Bounds	<0.98.6+dfsg-1
M Code	<0.98.5+dfsg-1
M Out-of-Bounds	<0.98.5+dfsg-1
M Out-of-Bounds	<0.97.8+dfsg-1
M Numeric Errors	<0.97.8+dfsg-1
L Access Restriction Bypass	<0.97.5+dfsg-1
L Access Restriction Bypass	<0.97.5+dfsg-1
L Access Restriction Bypass	<0.97.5+dfsg-1
L Access Restriction Bypass	<0.97.5+dfsg-1
L Numeric Errors	<0.97.3+dfsg-1
M Numeric Errors	<0.97.2+dfsg-1
L Resource Management Errors	<0.97+dfsg-1
H Numeric Errors	<0.96.5+dfsg-1
M CVE-2010-4260	<0.96.5+dfsg-1
H CVE-2010-4479	<0.96.5+dfsg-1
H Out-of-Bounds	<0.96.3+dfsg-1
M Numeric Errors	<0.96.3+dfsg-1
M CVE-2010-1639	<0.96.1+dfsg-1
M Numeric Errors	<0.96.1+dfsg-1
L Improper Input Validation	<0.96+dfsg-2
C CVE-2010-0098	<0.96+dfsg-1
L CVE-2009-3736	<0.95+dfsg-1
M CVE-2008-6845	<0.94.dfsg-1
C Out-of-Bounds	<0.95.1+dfsg-1
M Improper Input Validation	<0.95.1+dfsg-1
M Numeric Errors	<0.95.1+dfsg-1
M Arbitrary Code Injection	<0.95.1+dfsg-1
M CVE-2009-1241	<0.95+dfsg-1
M Resource Management Errors	<0.94.dfsg.2-1
H Out-of-Bounds	<0.94.dfsg.1-1
M Memory Leak	<0.94.dfsg-1
M Resource Management Errors	<0.94.dfsg-1
C Information Exposure	<0.94.dfsg-1
M Resource Management Errors	<0.94.dfsg-1
M Resource Management Errors	<0.93.1.dfsg-1.1
L Resource Management Errors	<0.93.1.dfsg-1.1
M CVE-2008-1387	<0.92.1~dfsg2-1
M Out-of-Bounds	<0.92.1~dfsg2-1
M Out-of-Bounds	<0.92.1~dfsg2-1.1
C Out-of-Bounds	<0.92.1~dfsg2-1
C Resource Management Errors	<0.92.1~dfsg-1
M Numeric Errors	<0.92.1~dfsg-1
L Link Following	<0.92.1~dfsg-1
L Improper Input Validation	<0.92.1~dfsg-1
C CVE-2007-6337	<0.92~dfsg-1~volatile2
H Numeric Errors	<0.92~dfsg-1~volatile2
M Out-of-Bounds	<0.92~dfsg-1~volatile2
H OS Command Injection	<0.91.2-1~volatile1
M CVE-2007-4510	<0.91.2-1~volatile1
M CVE-2007-3725	<0.91-1
M CVE-2007-3024	<0.90.3-1
M CVE-2007-3123	<0.90.3-1
C CVE-2007-3023	<0.90.3-1
M CVE-2007-3122	<0.90.3-1
M Resource Exhaustion	<0.90.2-1
L Resource Management Errors	<0.90.2-1
H CVE-2007-1997	<0.90.2-1
H CVE-2007-1745	<0.90.2-1
H CVE-2007-0897	<0.90-1
M Directory Traversal	<0.90-1
L CVE-2006-6481	<0.88.7-1
M CVE-2006-5874	<0.86-1
M CVE-2006-6406	<0.88.7-1
H CVE-2006-4182	<0.88.5-1
H CVE-2006-5295	<0.88.5-1
H Out-of-Bounds	<0.88.4-1
M CVE-2006-1989	<0.88.2
M CVE-2006-1614	<0.88.1-1
M CVE-2006-1630	<0.88.1-1
C Use of Externally-Controlled Format String	<0.88.1-1
H CVE-2006-0162	<0.88-1
M CVE-2005-3587	<0.87.1-1
M Resource Management Errors	<0.87.1-1
M CVE-2005-3500	<0.87.1-1
H CVE-2005-3303	<0.87.1-1
M CVE-2005-3239	<0.87.1-1
M Resource Management Errors	<0.87-1
M CVE-2005-2920	<0.87-1
M CVE-2005-2450	<0.86.2-1
M CVE-2005-1923	<0.86.1
L CVE-2005-1922	<0.86.1-1
M CVE-2005-2056	<0.86.1-1
M CVE-2005-2070	<0.86.1
M CVE-2005-0133	<0.80-0.81rc1-1
M CVE-2005-0218	<0.81
L CVE-2004-1909	<0.68.1
M CVE-2004-0270	<0.80
M CVE-2004-1876	<0.70-1
H CVE-2003-0946	<0.65