CNNVD-202506-2353 Information

CNNVD ID

CNNVD-202506-2353

Related CVE

CVE-2025-20260

• CNNVD Published: 2025-06-18

Description (Chinese)

ClamAV（Clam AntiVirus）是ClamAV团队的一套免费且开源的杀毒软件。该软件用于检测木马、病毒、恶意软件和其他恶意威胁。 ClamAV存在安全漏洞，该漏洞源于PDF文件处理期间内存缓冲区分配不当，可能导致缓冲区溢出。

Description (English)

ClamAV (Clam AntiVirus) is a free and open-source poison-killer for the ClamAV team. The software is used to detect horse, virus, malicious software and other malicious threats. There is a security loophole in ClamAV, which stems from the improper distribution of the buffer zone during the processing of PDF documents, which could lead to spills.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

ClamAV

Published

2025-06-18

Last Modified

2026-02-24

References

https://blog.clamav.net/2025/06/clamav-143-and-109-security-patch.html https://access.redhat.com/security/cve/cve-2025-20260

Patch

https://blog.clamav.net/2025/06/clamav-143-and-109-security-patch.html