CVE-2016-1372
- Source
- https://cve.org/CVERecord?id=CVE-2016-1372
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-1372.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2016-1372
- Downstream
- Related
- Published
- 2016-10-03T18:59:03.797Z
- Modified
- 2026-02-01T11:02:39.793634Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
ClamAV (aka Clam AntiVirus) before 0.99.2 allows remote attackers to cause a denial of service (application crash) via a crafted 7z file.
- References
-
- http://blog.clamav.net/2016/05/clamav-0992-has-been-released.html
- http://www.securityfocus.com/bid/93221
- http://www.ubuntu.com/usn/USN-3093-1
- https://foxglovesecurity.com/2016/06/13/finding-pearls-fuzzing-clamav/
- https://bugzilla.clamav.net/show_bug.cgi?id=11514
- https://foxglovesecurity.com/2016/06/13/finding-pearls-fuzzing-clamav/
- https://foxglovesecurity.com/2016/06/13/finding-pearls-fuzzing-clamav/
Affected packages
Git / github.com/cisco-talos/clamav
Affected ranges
- Type
- GIT
- Repo
- https://github.com/cisco-talos/clamav
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affected
Affected versions
clamav-0.*
clamav-0.96
clamav-0.96.2
clamav-0.96.3
clamav-0.96.4
clamav-0.96.5
clamav-0.96rc1
clamav-0.96rc2
clamav-0.97
clamav-0.97rc
clamav-0.98-dmgxar
clamav-0.99-beta1
clamav-0.99.1
clamav-0.99.1-beta1
Other
merge-llvm-79908
merge-llvm-80601
merge-llvm-83242
merge-llvm-90002
merge-llvm-91214
merge-llvm-91428
merge-llvm-92222
merge-llvm-94539
merge-llvm-97877
r5076