Marcin Owsiany

**Name of the Vulnerable Software and Affected Versions** Clam AntiVirus (ClamAV) versions prior to 0.87.1 **Description** The issue is related to improper boundary checks in the petite.c file, which could allow attackers to perform unknown attacks. **Recommendations** For versions prior to 0.87.1, update to version 0.87.1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Clam AntiVirus (ClamAV) version 0.87-1 **Description** The issue allows remote attackers to cause a denial of service, resulting in a segmentation fault. This occurs when a DOC file with an invalid property tree is processed, triggering an infinite recursion in the `ole2 walk property tree` function. **Recommendations** For Clam AntiVirus (ClamAV) version 0.87-1, consider updating to a newer version that addresses this issue, as the current version may cause a denial of service due to infinite recursion in the `ole2 walk property tree` function. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ekg Gadu Gadu client versions 1.5 and earlier **Description** The issue is related to certain contributed scripts in the ekg Gadu Gadu client that create temporary files insecurely. The impact and attack vectors of this issue are unknown. **Recommendations** For versions 1.5 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ekg Gadu Gadu client versions 1.5 and earlier **Description** A certain contributed script for the ekg Gadu Gadu client allows attackers to execute shell commands via unknown attack vectors. **Recommendations** For versions 1.5 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.