CVE-2009-1270
EPSS 3.9%
Description
libclamav/untar.c in ClamAV before 0.95 allows remote attackers to cause a denial of service (infinite loop) via a crafted TAR file that causes (1) clamd and (2) clamscan to hang.
How to fix CVE-2009-1270
To remediate CVE-2009-1270, upgrade the affected package to a fixed version below.
- Debian/clamav—upgrade to 0.95.1+dfsg-1 or later
Is CVE-2009-1270 being exploited?
Low — EPSS is 3.9%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 0.95.1+dfsg-1