What is the severity of CVE-2008-5314?

CVE-2008-5314 has a severity rating that indicates it can lead to a denial of service, specifically causing a crash of the ClamAV daemon.

What versions of ClamAV are affected by CVE-2008-5314?

CVE-2008-5314 affects ClamAV versions prior to 0.94.2, including versions from 0.70 to 0.94.1.

How do I fix CVE-2008-5314?

To fix CVE-2008-5314, update ClamAV to version 0.94.2 or later.

What type of vulnerability is defined in CVE-2008-5314?

CVE-2008-5314 is a stack consumption vulnerability that can be exploited through crafted JPEG files.

What are the potential consequences of exploiting CVE-2008-5314?

Exploiting CVE-2008-5314 can result in a denial of service by crashing the ClamAV daemon.

Vulnerability/
CVE-2008-5314

medium

4.3

CWE

399

3/12/2008

7/8/2024

CVE-2008-5314

First published: Wed Dec 03 2008(Updated: )

Stack consumption vulnerability in libclamav/special.c in ClamAV before 0.94.2 allows remote attackers to cause a denial of service (daemon crash) via a crafted JPEG file, related to the cli_check_jpeg_exploit, jpeg_check_photoshop, and jpeg_check_photoshop_8bim functions.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
ClamXAV	=0.84-rc2
ClamXAV	=0.86-rc1
ClamXAV	=0.84
ClamXAV	=0.92
ClamXAV	=0.91.2
ClamXAV	=0.80
ClamXAV	=0.90.1
ClamXAV	=0.91
ClamXAV	=0.90
ClamXAV	<=0.94.1
ClamXAV	=0.75
ClamXAV	=0.80-rc
ClamXAV	=0.71
ClamXAV	=0.80-rc4
ClamXAV	=0.94
ClamXAV	=0.88.3
ClamXAV	=0.88.7
ClamXAV	=0.86.1
ClamXAV	=0.82
ClamXAV	=0.88.1
ClamXAV	=0.91.1
ClamXAV	=0.73
ClamXAV	=0.72
ClamXAV	=0.85.1
ClamXAV	=0.84-rc1
ClamXAV	=0.87
ClamXAV	=0.93.3
ClamXAV	=0.85
ClamXAV	=0.93
ClamXAV	=0.74
ClamXAV	=0.75.1
ClamXAV	=0.86.2
ClamXAV	=0.81
ClamXAV	=0.90.2
ClamXAV	=0.88.2
ClamXAV	=0.90.3
ClamXAV	=0.88.6
ClamXAV	=0.70
ClamXAV	=0.81-rc1
ClamXAV	=0.88.5
ClamXAV	=0.92.1
ClamXAV	=0.86
ClamXAV	=0.83
ClamXAV	=0.88
ClamXAV	=0.80-rc3
ClamXAV	=0.87.1
ClamXAV	=0.88.4
ClamXAV	=0.93.1
ClamXAV	=0.80-rc2
ClamAV	<=0.94.1
ClamAV	=0.70
ClamAV	=0.71
ClamAV	=0.72
ClamAV	=0.73
ClamAV	=0.74
ClamAV	=0.75
ClamAV	=0.75.1
ClamAV	=0.80
ClamAV	=0.80-rc
ClamAV	=0.80-rc2
ClamAV	=0.80-rc3
ClamAV	=0.80-rc4
ClamAV	=0.81
ClamAV	=0.81-rc1
ClamAV	=0.82
ClamAV	=0.83
ClamAV	=0.84
ClamAV	=0.84-rc1
ClamAV	=0.84-rc2
ClamAV	=0.85
ClamAV	=0.85.1
ClamAV	=0.86
ClamAV	=0.86-rc1
ClamAV	=0.86.1
ClamAV	=0.86.2
ClamAV	=0.87
ClamAV	=0.87.1
ClamAV	=0.88
ClamAV	=0.88.1
ClamAV	=0.88.2
ClamAV	=0.88.3
ClamAV	=0.88.4
ClamAV	=0.88.5
ClamAV	=0.88.6
ClamAV	=0.88.7
ClamAV	=0.90
ClamAV	=0.90.1
ClamAV	=0.90.2
ClamAV	=0.90.3
ClamAV	=0.91
ClamAV	=0.91.1
ClamAV	=0.91.2
ClamAV	=0.92
ClamAV	=0.92.1
ClamAV	=0.93
ClamAV	=0.93.1
ClamAV	=0.93.3
ClamAV	=0.94

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2008-5314?
CVE-2008-5314 has a severity rating that indicates it can lead to a denial of service, specifically causing a crash of the ClamAV daemon.
What versions of ClamAV are affected by CVE-2008-5314?
CVE-2008-5314 affects ClamAV versions prior to 0.94.2, including versions from 0.70 to 0.94.1.
How do I fix CVE-2008-5314?
To fix CVE-2008-5314, update ClamAV to version 0.94.2 or later.
What type of vulnerability is defined in CVE-2008-5314?
CVE-2008-5314 is a stack consumption vulnerability that can be exploited through crafted JPEG files.
What are the potential consequences of exploiting CVE-2008-5314?
Exploiting CVE-2008-5314 can result in a denial of service by crashing the ClamAV daemon.

agent/references
agent/type
collector/mitre-cve
source/MITRE
agent/weakness
agent/severity
agent/last-modified-date
agent/author
agent/first-publish-date
agent/description
agent/event
agent/source
collector/nvd-historical
agent/software-canonical-lookup-request
agent/softwarecombine
agent/tags
collector/nvd-index
vendor/clam anti-virus
canonical/clamxav
version/clamxav/0.84-rc2
version/clamxav/0.86-rc1
version/clamxav/0.84
version/clamxav/0.92
version/clamxav/0.91.2
version/clamxav/0.80
version/clamxav/0.90.1
version/clamxav/0.91
version/clamxav/0.90
version/clamxav/0.94.1
version/clamxav/0.75
version/clamxav/0.80-rc
version/clamxav/0.71
version/clamxav/0.80-rc4
version/clamxav/0.94
version/clamxav/0.88.3
version/clamxav/0.88.7
version/clamxav/0.86.1
version/clamxav/0.82
version/clamxav/0.88.1
version/clamxav/0.91.1
version/clamxav/0.73
version/clamxav/0.72
version/clamxav/0.85.1
version/clamxav/0.84-rc1
version/clamxav/0.87
version/clamxav/0.93.3
version/clamxav/0.85
version/clamxav/0.93
version/clamxav/0.74
version/clamxav/0.75.1
version/clamxav/0.86.2
version/clamxav/0.81
version/clamxav/0.90.2
version/clamxav/0.88.2
version/clamxav/0.90.3
version/clamxav/0.88.6
version/clamxav/0.70
version/clamxav/0.81-rc1
version/clamxav/0.88.5
version/clamxav/0.92.1
version/clamxav/0.86
version/clamxav/0.83
version/clamxav/0.88
version/clamxav/0.80-rc3
version/clamxav/0.87.1
version/clamxav/0.88.4
version/clamxav/0.93.1
version/clamxav/0.80-rc2
canonical/clamav
version/clamav/0.94.1
version/clamav/0.70
version/clamav/0.71
version/clamav/0.72
version/clamav/0.73
version/clamav/0.74
version/clamav/0.75
version/clamav/0.75.1
version/clamav/0.80
version/clamav/0.80-rc
version/clamav/0.80-rc2
version/clamav/0.80-rc3
version/clamav/0.80-rc4
version/clamav/0.81
version/clamav/0.81-rc1
version/clamav/0.82
version/clamav/0.83
version/clamav/0.84
version/clamav/0.84-rc1
version/clamav/0.84-rc2
version/clamav/0.85
version/clamav/0.85.1
version/clamav/0.86
version/clamav/0.86-rc1
version/clamav/0.86.1
version/clamav/0.86.2
version/clamav/0.87
version/clamav/0.87.1
version/clamav/0.88
version/clamav/0.88.1
version/clamav/0.88.2
version/clamav/0.88.3
version/clamav/0.88.4
version/clamav/0.88.5
version/clamav/0.88.6
version/clamav/0.88.7
version/clamav/0.90
version/clamav/0.90.1
version/clamav/0.90.2
version/clamav/0.90.3
version/clamav/0.91
version/clamav/0.91.1
version/clamav/0.91.2
version/clamav/0.92
version/clamav/0.92.1
version/clamav/0.93
version/clamav/0.93.1
version/clamav/0.93.3
version/clamav/0.94