CVE-2007-0899

Publication date 6 November 2019

Last updated 17 July 2025

Ubuntu priority

Medium

Why this priority?

Cvss 3 Severity Score

9.8 · Critical

Score breakdown

Description

There is a possible heap overflow in libclamav/fsg.c before 0.100.0.

Status

Package Ubuntu Release Status
clamav 8.04 LTS hardy
Fixed 0.91.2-3ubuntu1
7.10 gutsy
Fixed 0.91.2-3ubuntu1
7.04 feisty
Fixed 0.90.2-0ubuntu1.3
6.10 edgy Ignored end of life, was needed
6.06 LTS dapper
Fixed 0.92.1~dfsg2-1.1~dapper2

Severity score breakdown

Parameter Value
Base score 9.8 · Critical
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Scope Unchanged
Confidentiality High
Integrity impact High
Availability impact High
Vector CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References

Other references