File _patchinfo of Package patchinfo.379

<patchinfo incident="379">
  <issue id="915512" tracker="bnc">VUL-0: CVE-2014-9328: clamav: heap out of bounds condition with crafted upack packer files</issue>
  <issue id="916217" tracker="bnc">VUL-0: CVE-2015-1461: clamav: Remote attackers can have unspecified impact via Yoda's crypter or mew packer files</issue>
  <issue id="916215" tracker="bnc">VUL-0: CVE-2015-1463: clamav: Remote attackers can cause a denial of service via a crafted petite packer file</issue>
  <issue id="916214" tracker="bnc">VUL-0: CVE-2015-1462: clamav: Unspecified impact via acrafted upx packer file</issue>
  <issue id="CVE-2015-1462" tracker="cve" />
  <issue id="CVE-2015-1463" tracker="cve" />
  <issue id="CVE-2014-9328" tracker="cve" />
  <issue id="CVE-2015-1461" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>rmax</packager>
  <description>clamav was updated to version 0.98.6 to fix four security issues.

These security issues were fixed:
- CVE-2015-1462: ClamAV allowed remote attackers to have unspecified impact via a crafted upx packer file, related to a heap out of bounds condition (bnc#916214).
- CVE-2015-1463: ClamAV allowed remote attackers to cause a denial of service (crash) via a crafted petite packer file, related to an incorrect compiler optimization (bnc#916215).
- CVE-2014-9328: ClamAV allowed remote attackers to have unspecified impact via a crafted upack packer file, related to a heap out of bounds condition (bnc#915512).
- CVE-2015-1461: ClamAV allowed remote attackers to have unspecified impact via a crafted (1) Yoda's crypter or (2) mew packer file, related to a heap out of bounds condition (bnc#916217).
  </description>
  <summary>Security update for clamav</summary>
</patchinfo>