[gentoo-commits] gentoo commit in xml/htdocs/security/en/glsa: glsa-200909-04.xml - gentoo-commits

From:	"Alex Legler (a3li)" <a3li@g.o>
To:	gentoo-commits@l.g.o
Subject:	[gentoo-commits] gentoo commit in xml/htdocs/security/en/glsa: glsa-200909-04.xml
Date:	Wed, 09 Sep 2009 13:13:58
Message-Id:	`E1MlMzl-0000ma-06@stork.gentoo.org`

1

a3li        09/09/09 13:13:56

2

3

  Added:                glsa-200909-04.xml

4

  Log:

5

  GLSA 200909-04

6

7

Revision  Changes    Path

8

1.1                  xml/htdocs/security/en/glsa/glsa-200909-04.xml

9

10

file : http://sources.gentoo.org/viewcvs.py/gentoo/xml/htdocs/security/en/glsa/glsa-200909-04.xml?rev=1.1&view=markup

11

plain: http://sources.gentoo.org/viewcvs.py/gentoo/xml/htdocs/security/en/glsa/glsa-200909-04.xml?rev=1.1&content-type=text/plain

12

13

Index: glsa-200909-04.xml

14

===================================================================

15

<?xml version="1.0" encoding="utf-8"?>

16

<?xml-stylesheet href="/xsl/glsa.xsl" type="text/xsl"?>

17

<?xml-stylesheet href="/xsl/guide.xsl" type="text/xsl"?>

18

<!DOCTYPE glsa SYSTEM "http://www.gentoo.org/dtd/glsa.dtd">

19

20

<glsa id="200909-04">

21

  <title>Clam AntiVirus: Multiple vulnerabilities</title>

22

  <synopsis>

23

    Multiple vulnerabilities in ClamAV allow for the remote execution of

24

    arbitrary code or Denial of Service.

25

  </synopsis>

26

  <product type="ebuild">clamav</product>

27

  <announced>September 09, 2009</announced>

28

  <revised>September 09, 2009: 01</revised>

29

  <bug>264834</bug>

30

  <bug>265545</bug>

31

  <access>remote</access>

32

  <affected>

33

    <package name="app-antivirus/clamav" auto="yes" arch="*">

34

      <unaffected range="ge">0.95.2</unaffected>

35

      <vulnerable range="lt">0.95.2</vulnerable>

36

    </package>

37

  </affected>

38

  <background>

39

<p>

40

    Clam AntiVirus (short: ClamAV) is an anti-virus toolkit for UNIX,

41

    designed especially for e-mail scanning on mail gateways.

42

    </p>

43

  </background>

44

  <description>

45

<p>

46

    Multiple vulnerabilities have been found in ClamAV:

47

    </p>

48

    <ul>

49

    <li>The

50

    vendor reported a Divide-by-zero error in the PE ("Portable

51

    Executable"; Windows .exe) file handling of ClamAV

52

    (CVE-2008-6680).</li>

53

    <li>Jeffrey Thomas Peckham found a flaw in

54

    libclamav/untar.c, possibly resulting in an infinite loop when

55

    processing TAR archives in clamd and clamscan (CVE-2009-1270).</li>

56

    <li>Martin Olsen reported a vulnerability in the CLI_ISCONTAINED macro

57

    in libclamav/others.h, when processing UPack archives

58

    (CVE-2009-1371).</li>

59

    <li>Nigel disclosed a stack-based buffer overflow

60

    in the "cli_url_canon()" function in libclamav/phishcheck.c when

61

    processing URLs (CVE-2009-1372).</li>

62

    </ul>

63

  </description>

64

  <impact type="normal">

65

<p>

66

    A remote attacker could entice a user or automated system to process a

67

    specially crafted UPack archive or a file containing a specially

68

    crafted URL, possibly resulting in the remote execution of arbitrary

69

    code with the privileges of the user running the application, or a

70

    Denial of Service. Furthermore, a remote attacker could cause a Denial

71

    of Service by supplying a specially crafted TAR archive or PE

72

    executable to a Clam AntiVirus instance.

73

    </p>

74

  </impact>

75

  <workaround>

76

<p>

77

    There is no known workaround at this time.

78

    </p>

79

  </workaround>

80

  <resolution>

81

<p>

82

    All Clam AntiVirus users should upgrade to the latest version:

83

    </p>

84

    <code>

85

    # emerge --sync

86

    # emerge --ask --oneshot --verbose =app-antivirus/clamav-0.95.2</code>

87

  </resolution>

88

  <references>

89

    <uri link="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-6680">CVE-2008-6680</uri>

90

    <uri link="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1270">CVE-2009-1270</uri>

91

    <uri link="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1371">CVE-2009-1371</uri>

92

    <uri link="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1372">CVE-2009-1372</uri>

93

  </references>

94

  <metadata tag="requester" timestamp="Mon, 01 Jun 2009 22:30:28 +0000">

95

    keytoaster

96

  </metadata>

97

  <metadata tag="submitter" timestamp="Fri, 28 Aug 2009 09:13:38 +0000">

98

    a3li

99

  </metadata>

100

  <metadata tag="bugReady" timestamp="Mon, 31 Aug 2009 03:38:38 +0000">

101

    a3li

102

  </metadata>

103

</glsa>

1	a3li 09/09/09 13:13:56
2
3	Added: glsa-200909-04.xml
4	Log:
5	GLSA 200909-04
6
7	Revision Changes Path
8	1.1 xml/htdocs/security/en/glsa/glsa-200909-04.xml
9
10	file : http://sources.gentoo.org/viewcvs.py/gentoo/xml/htdocs/security/en/glsa/glsa-200909-04.xml?rev=1.1&view=markup
11	plain: http://sources.gentoo.org/viewcvs.py/gentoo/xml/htdocs/security/en/glsa/glsa-200909-04.xml?rev=1.1&content-type=text/plain
12
13	Index: glsa-200909-04.xml
14	===================================================================
15	<?xml version="1.0" encoding="utf-8"?>
16	<?xml-stylesheet href="/xsl/glsa.xsl" type="text/xsl"?>
17	<?xml-stylesheet href="/xsl/guide.xsl" type="text/xsl"?>
18	<!DOCTYPE glsa SYSTEM "http://www.gentoo.org/dtd/glsa.dtd">
19
20	<glsa id="200909-04">
21	<title>Clam AntiVirus: Multiple vulnerabilities</title>
22	<synopsis>
23	Multiple vulnerabilities in ClamAV allow for the remote execution of
24	arbitrary code or Denial of Service.
25	</synopsis>
26	<product type="ebuild">clamav</product>
27	<announced>September 09, 2009</announced>
28	<revised>September 09, 2009: 01</revised>
29	<bug>264834</bug>
30	<bug>265545</bug>
31	<access>remote</access>
32	<affected>
33	<package name="app-antivirus/clamav" auto="yes" arch="*">
34	<unaffected range="ge">0.95.2</unaffected>
35	<vulnerable range="lt">0.95.2</vulnerable>
36	</package>
37	</affected>
38	<background>
39	<p>
40	Clam AntiVirus (short: ClamAV) is an anti-virus toolkit for UNIX,
41	designed especially for e-mail scanning on mail gateways.
42	</p>
43	</background>
44	<description>
45	<p>
46	Multiple vulnerabilities have been found in ClamAV:
47	</p>
48	<ul>
49	<li>The
50	vendor reported a Divide-by-zero error in the PE ("Portable
51	Executable"; Windows .exe) file handling of ClamAV
52	(CVE-2008-6680).</li>
53	<li>Jeffrey Thomas Peckham found a flaw in
54	libclamav/untar.c, possibly resulting in an infinite loop when
55	processing TAR archives in clamd and clamscan (CVE-2009-1270).</li>
56	<li>Martin Olsen reported a vulnerability in the CLI_ISCONTAINED macro
57	in libclamav/others.h, when processing UPack archives
58	(CVE-2009-1371).</li>
59	<li>Nigel disclosed a stack-based buffer overflow
60	in the "cli_url_canon()" function in libclamav/phishcheck.c when
61	processing URLs (CVE-2009-1372).</li>
62	</ul>
63	</description>
64	<impact type="normal">
65	<p>
66	A remote attacker could entice a user or automated system to process a
67	specially crafted UPack archive or a file containing a specially
68	crafted URL, possibly resulting in the remote execution of arbitrary
69	code with the privileges of the user running the application, or a
70	Denial of Service. Furthermore, a remote attacker could cause a Denial
71	of Service by supplying a specially crafted TAR archive or PE
72	executable to a Clam AntiVirus instance.
73	</p>
74	</impact>
75	<workaround>
76	<p>
77	There is no known workaround at this time.
78	</p>
79	</workaround>
80	<resolution>
81	<p>
82	All Clam AntiVirus users should upgrade to the latest version:
83	</p>
84	<code>
85	# emerge --sync
86	# emerge --ask --oneshot --verbose =app-antivirus/clamav-0.95.2</code>
87	</resolution>
88	<references>
89	<uri link="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-6680">CVE-2008-6680</uri>
90	<uri link="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1270">CVE-2009-1270</uri>
91	<uri link="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1371">CVE-2009-1371</uri>
92	<uri link="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1372">CVE-2009-1372</uri>
93	</references>
94	<metadata tag="requester" timestamp="Mon, 01 Jun 2009 22:30:28 +0000">
95	keytoaster
96	</metadata>
97	<metadata tag="submitter" timestamp="Fri, 28 Aug 2009 09:13:38 +0000">
98	a3li
99	</metadata>
100	<metadata tag="bugReady" timestamp="Mon, 31 Aug 2009 03:38:38 +0000">
101	a3li
102	</metadata>
103	</glsa>

Gentoo Archives: gentoo-commits