CVE-2014-9050

Heap-based buffer overflow in the cli_scanpe function in libclamav/pe.c in ClamAV before 0.98.5 allows remote attackers to cause a denial of service (crash) via a crafted y0da Crypter PE file.

Date published : 2014-12-01

http://www.securityfocus.com/bid/71242

http://blog.clamav.net/2014/11/clamav-0985-has-been-released.html