14 DAY TRIAL // Canonical revealed details about a ClamAV vulnerability that has been found and fixed in Ubuntu 15.04, Ubuntu 14.10, Ubuntu 14.04 LTS and Ubuntu 12.04.
Ubuntu maintainers have upgraded the Clamav packages in order to fix an exploit and users have been advised to upgrade as soon as possible. Apparently, ClamAV could have been made to crash or to run programs if it processed a specially crafted file.
"It was discovered that ClamAV incorrectly handled certain malformed files. A remote attacker could use this issue to cause ClamAV to crash, resulting in a denial of service, or possibly execute arbitrary code. In the default installation, attackers would be isolated by the ClamAV AppArmor profile," reads the security notice.
This is just one of the vulnerabilities found and fixed. For a more detailed description of the problems, you can see Canonical's security notification. Users have been advised to upgrade their systems as soon as possible.
The flaws can be fixed if you upgrade your system to the latest clamav package specific to each distribution. To apply the patch, users will have to run the Update Manager application. In general, a standard system update will make all the necessary changes, and there is no need for a restart.