{"id":"CVE-2015-2668","details":"ClamAV before 0.98.7 allows remote attackers to cause a denial of service (infinite loop) via a crafted xz archive file.","modified":"2026-01-27T04:13:54.408496Z","published":"2015-05-12T19:59:15Z","withdrawn":"2026-01-27T04:13:54.408496Z","related":["MGASA-2015-0190","SUSE-SU-2015:0298-1","SUSE-SU-2015:0871-1","SUSE-SU-2015:0882-1","SUSE-SU-2015:0882-2","openSUSE-SU-2024:10571-1"],"references":[{"type":"FIX","url":"http://blog.clamav.net/2015/04/clamav-0987-has-been-released.html"},{"type":"ADVISORY","url":"https://security.gentoo.org/glsa/201512-08"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-updates/2015-05/msg00024.html"},{"type":"WEB","url":"http://ubuntu.com/usn/usn-2594-1"},{"type":"WEB","url":"http://www.securityfocus.com/bid/74472"}],"schema_version":"1.7.3"}