[gentoo-announce] [ GLSA 200909-04 ] Clam AntiVirus: Multiple vulnerabilities - gentoo-announce

From:	Alex Legler <a3li@g.o>
To:	gentoo-announce@l.g.o
Cc:	bugtraq@×××××××××××××.com, full-disclosure@××××××××××××××.uk, security-alerts@×××××××××××××.com
Subject:	[gentoo-announce] [ GLSA 200909-04 ] Clam AntiVirus: Multiple vulnerabilities
Date:	Wed, 09 Sep 2009 13:31:59
Message-Id:	`20090909151918.31df128a@neon`

1

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

2

Gentoo Linux Security Advisory                           GLSA 200909-04

3

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

4

                                            http://security.gentoo.org/

5

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

6

7

  Severity: Normal

8

     Title: Clam AntiVirus: Multiple vulnerabilities

9

      Date: September 09, 2009

10

      Bugs: #264834, #265545

11

        ID: 200909-04

12

13

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

14

15

Synopsis

16

========

17

18

Multiple vulnerabilities in ClamAV allow for the remote execution of

19

arbitrary code or Denial of Service.

20

21

Background

22

==========

23

24

Clam AntiVirus (short: ClamAV) is an anti-virus toolkit for UNIX,

25

designed especially for e-mail scanning on mail gateways.

26

27

Affected packages

28

=================

29

30

    -------------------------------------------------------------------

31

     Package               /  Vulnerable  /                 Unaffected

32

    -------------------------------------------------------------------

33

  1  app-antivirus/clamav      < 0.95.2                      >= 0.95.2

34

35

Description

36

===========

37

38

Multiple vulnerabilities have been found in ClamAV:

39

40

* The vendor reported a Divide-by-zero error in the PE ("Portable

41

  Executable"; Windows .exe) file handling of ClamAV (CVE-2008-6680).

42

43

* Jeffrey Thomas Peckham found a flaw in libclamav/untar.c, possibly

44

  resulting in an infinite loop when processing TAR archives in clamd

45

  and clamscan (CVE-2009-1270).

46

47

* Martin Olsen reported a vulnerability in the CLI_ISCONTAINED macro

48

  in libclamav/others.h, when processing UPack archives

49

  (CVE-2009-1371).

50

51

* Nigel disclosed a stack-based buffer overflow in the

52

  "cli_url_canon()" function in libclamav/phishcheck.c when processing

53

  URLs (CVE-2009-1372).

54

55

Impact

56

======

57

58

A remote attacker could entice a user or automated system to process a

59

specially crafted UPack archive or a file containing a specially

60

crafted URL, possibly resulting in the remote execution of arbitrary

61

code with the privileges of the user running the application, or a

62

Denial of Service. Furthermore, a remote attacker could cause a Denial

63

of Service by supplying a specially crafted TAR archive or PE

64

executable to a Clam AntiVirus instance.

65

66

Workaround

67

==========

68

69

There is no known workaround at this time.

70

71

Resolution

72

==========

73

74

All Clam AntiVirus users should upgrade to the latest version:

75

76

    # emerge --sync

77

    # emerge --ask --oneshot --verbose =app-antivirus/clamav-0.95.2

78

79

References

80

==========

81

82

  [ 1 ] CVE-2008-6680

83

        http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-6680

84

  [ 2 ] CVE-2009-1270

85

        http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1270

86

  [ 3 ] CVE-2009-1371

87

        http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1371

88

  [ 4 ] CVE-2009-1372

89

        http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1372

90

91

Availability

92

============

93

94

This GLSA and any updates to it are available for viewing at

95

the Gentoo Security Website:

96

97

  http://security.gentoo.org/glsa/glsa-200909-04.xml

98

99

Concerns?

100

=========

101

102

Security is a primary focus of Gentoo Linux and ensuring the

103

confidentiality and security of our users machines is of utmost

104

importance to us. Any security concerns should be addressed to

105

security@g.o or alternatively, you may file a bug at

106

https://bugs.gentoo.org.

107

108

License

109

=======

110

111

Copyright 2009 Gentoo Foundation, Inc; referenced text

112

belongs to its owner(s).

113

114

The contents of this document are licensed under the

115

Creative Commons - Attribution / Share Alike license.

116

117

http://creativecommons.org/licenses/by-sa/2.5

Gentoo Archives: gentoo-announce

Attachments

1	- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
2	Gentoo Linux Security Advisory GLSA 200909-04
3	- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
4	http://security.gentoo.org/
5	- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
6
7	Severity: Normal
8	Title: Clam AntiVirus: Multiple vulnerabilities
9	Date: September 09, 2009
10	Bugs: #264834, #265545
11	ID: 200909-04
12
13	- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
14
15	Synopsis
16	========
17
18	Multiple vulnerabilities in ClamAV allow for the remote execution of
19	arbitrary code or Denial of Service.
20
21	Background
22	==========
23
24	Clam AntiVirus (short: ClamAV) is an anti-virus toolkit for UNIX,
25	designed especially for e-mail scanning on mail gateways.
26
27	Affected packages
28	=================
29
30	-------------------------------------------------------------------
31	Package / Vulnerable / Unaffected
32	-------------------------------------------------------------------
33	1 app-antivirus/clamav < 0.95.2 >= 0.95.2
34
35	Description
36	===========
37
38	Multiple vulnerabilities have been found in ClamAV:
39
40	* The vendor reported a Divide-by-zero error in the PE ("Portable
41	Executable"; Windows .exe) file handling of ClamAV (CVE-2008-6680).
42
43	* Jeffrey Thomas Peckham found a flaw in libclamav/untar.c, possibly
44	resulting in an infinite loop when processing TAR archives in clamd
45	and clamscan (CVE-2009-1270).
46
47	* Martin Olsen reported a vulnerability in the CLI_ISCONTAINED macro
48	in libclamav/others.h, when processing UPack archives
49	(CVE-2009-1371).
50
51	* Nigel disclosed a stack-based buffer overflow in the
52	"cli_url_canon()" function in libclamav/phishcheck.c when processing
53	URLs (CVE-2009-1372).
54
55	Impact
56	======
57
58	A remote attacker could entice a user or automated system to process a
59	specially crafted UPack archive or a file containing a specially
60	crafted URL, possibly resulting in the remote execution of arbitrary
61	code with the privileges of the user running the application, or a
62	Denial of Service. Furthermore, a remote attacker could cause a Denial
63	of Service by supplying a specially crafted TAR archive or PE
64	executable to a Clam AntiVirus instance.
65
66	Workaround
67	==========
68
69	There is no known workaround at this time.
70
71	Resolution
72	==========
73
74	All Clam AntiVirus users should upgrade to the latest version:
75
76	# emerge --sync
77	# emerge --ask --oneshot --verbose =app-antivirus/clamav-0.95.2
78
79	References
80	==========
81
82	[ 1 ] CVE-2008-6680
83	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-6680
84	[ 2 ] CVE-2009-1270
85	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1270
86	[ 3 ] CVE-2009-1371
87	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1371
88	[ 4 ] CVE-2009-1372
89	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1372
90
91	Availability
92	============
93
94	This GLSA and any updates to it are available for viewing at
95	the Gentoo Security Website:
96
97	http://security.gentoo.org/glsa/glsa-200909-04.xml
98
99	Concerns?
100	=========
101
102	Security is a primary focus of Gentoo Linux and ensuring the
103	confidentiality and security of our users machines is of utmost
104	importance to us. Any security concerns should be addressed to
105	security@g.o or alternatively, you may file a bug at
106	https://bugs.gentoo.org.
107
108	License
109	=======
110
111	Copyright 2009 Gentoo Foundation, Inc; referenced text
112	belongs to its owner(s).
113
114	The contents of this document are licensed under the
115	Creative Commons - Attribution / Share Alike license.
116
117	http://creativecommons.org/licenses/by-sa/2.5