Ubuntu Security Notice USN-756-1 – It was discovered that ClamAV did not properly verify buffers when processing Upack files. A remote attacker could send a crafted file and cause a denial of service via application crash.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/76598/USN-756-1.txt
Source: https://packetstormsecurity.com/files/76598/Ubuntu-Security-Notice-756-1.html