Ubuntu Security Notice USN-754-1 – It was discovered that ClamAV did not properly verify its input when processing TAR archives. A remote attacker could send a specially crafted TAR file and cause a denial of service via infinite loop. It was discovered that ClamAV did not properly validate Portable Executable (PE) files. A remote attacker could send a crafted PE file and cause a denial of service (divide by zero).
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/76412/USN-754-1.txt
Source: https://packetstormsecurity.com/files/76412/Ubuntu-Security-Notice-754-1.html