Test ID:	1.3.6.1.4.1.25623.1.0.70783
Category:	Gentoo Local Security Checks
Title:	Gentoo Security Advisory GLSA 201110-20 (Clam AntiVirus)
Summary:	The remote host is missing updates announced in;advisory GLSA 201110-20.
Description:	Summary: The remote host is missing updates announced in advisory GLSA 201110-20. Vulnerability Insight: Multiple vulnerabilities were found in Clam AntiVirus, the most severe of which may allow the execution of arbitrary code. Solution: All Clam AntiVirus users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=app-antivirus/clamav-0.97.3' CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2010-0405 http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html Bugtraq: 20101207 VMSA-2010-0019 VMware ESX third party updates for Service Console (Google Search) http://www.securityfocus.com/archive/1/515055/100/0/threaded http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051366.html http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051278.html http://security.gentoo.org/glsa/glsa-201301-05.xml http://marc.info/?l=oss-security&m=128506868510655&w=2 http://www.redhat.com/support/errata/RHSA-2010-0703.html http://www.redhat.com/support/errata/RHSA-2010-0858.html http://secunia.com/advisories/41452 http://secunia.com/advisories/41505 http://secunia.com/advisories/42350 http://secunia.com/advisories/42404 http://secunia.com/advisories/42405 http://secunia.com/advisories/42529 http://secunia.com/advisories/42530 http://secunia.com/advisories/48378 SuSE Security Announcement: SUSE-SR:2010:018 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00000.html http://www.ubuntu.com/usn/usn-986-1 http://www.ubuntu.com/usn/USN-986-2 http://www.ubuntu.com/usn/USN-986-3 http://www.vupen.com/english/advisories/2010/2455 http://www.vupen.com/english/advisories/2010/3043 http://www.vupen.com/english/advisories/2010/3052 http://www.vupen.com/english/advisories/2010/3073 http://www.vupen.com/english/advisories/2010/3126 http://www.vupen.com/english/advisories/2010/3127 Common Vulnerability Exposure (CVE) ID: CVE-2010-3434 http://www.openwall.com/lists/oss-security/2010/09/22/1 http://www.openwall.com/lists/oss-security/2010/09/27/6 http://www.openwall.com/lists/oss-security/2010/09/28/3 http://www.openwall.com/lists/oss-security/2010/09/28/5 SuSE Security Announcement: SUSE-SR:2010:020 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00001.html Common Vulnerability Exposure (CVE) ID: CVE-2010-4260 1024818 http://www.securitytracker.com/id?1024818 42426 http://secunia.com/advisories/42426 42523 http://secunia.com/advisories/42523 42555 http://secunia.com/advisories/42555 42720 http://secunia.com/advisories/42720 45152 http://www.securityfocus.com/bid/45152 ADV-2010-3135 http://www.vupen.com/english/advisories/2010/3135 ADV-2010-3137 http://www.vupen.com/english/advisories/2010/3137 ADV-2010-3185 http://www.vupen.com/english/advisories/2010/3185 APPLE-SA-2011-03-21-1 FEDORA-2010-18564 http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052401.html FEDORA-2010-18568 http://lists.fedoraproject.org/pipermail/package-announce/2010-December/051905.html MDVSA-2010:249 http://www.mandriva.com/security/advisories?name=MDVSA-2010:249 SUSE-SR:2010:024 http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html USN-1031-1 http://www.ubuntu.com/usn/USN-1031-1 [oss-security] 20101203 Re: clamav 0.96.5 released http://openwall.com/lists/oss-security/2010/12/03/3 http://openwall.com/lists/oss-security/2010/12/03/6 [oss-security] 20101203 clamav 0.96.5 released http://openwall.com/lists/oss-security/2010/12/03/1 http://git.clamav.net/gitweb?p=clamav-devel.git%3Ba=blob_plain%3Bf=ChangeLog%3Bhb=master http://support.apple.com/kb/HT4581 http://xorl.wordpress.com/2010/12/06/cve-2010-4260-clamav-multiple-pdf-vulnerabilities/ https://bugzilla.redhat.com/show_bug.cgi?id=659861 https://wwws.clamav.net/bugzilla/show_bug.cgi?id=2358 https://wwws.clamav.net/bugzilla/show_bug.cgi?id=2396 Common Vulnerability Exposure (CVE) ID: CVE-2010-4261 http://xorl.wordpress.com/2010/12/05/cve-2010-4261-clamav-icon_cb-off-by-one/ https://wwws.clamav.net/bugzilla/show_bug.cgi?id=2344 Common Vulnerability Exposure (CVE) ID: CVE-2010-4479 BugTraq ID: 45152 SuSE Security Announcement: SUSE-SR:2010:024 (Google Search) Common Vulnerability Exposure (CVE) ID: CVE-2011-1003 1025100 http://securitytracker.com/id?1025100 43392 http://secunia.com/advisories/43392 43498 http://secunia.com/advisories/43498 43752 http://secunia.com/advisories/43752 46470 http://www.securityfocus.com/bid/46470 70937 http://osvdb.org/70937 ADV-2011-0453 http://www.vupen.com/english/advisories/2011/0453 ADV-2011-0458 http://www.vupen.com/english/advisories/2011/0458 ADV-2011-0523 http://www.vupen.com/english/advisories/2011/0523 FEDORA-2011-2741 http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055771.html FEDORA-2011-2743 http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055777.html MDVA-2011:007 http://www.mandriva.com/en/support/security/advisories/?name=MDVA-2011:007 SUSE-SR:2011:005 http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html USN-1076-1 http://www.ubuntu.com/usn/USN-1076-1 [oss-security] 20110221 Re: clamav 0.97 http://openwall.com/lists/oss-security/2011/02/21/4 [oss-security] 20110221 clamav 0.97 http://openwall.com/lists/oss-security/2011/02/21/1 clamav-vbareadprojectstrings-dos(65544) https://exchange.xforce.ibmcloud.com/vulnerabilities/65544 http://git.clamav.net/gitweb?p=clamav-devel.git%3Ba=blob%3Bf=ChangeLog%3Bhb=clamav-0.97 http://git.clamav.net/gitweb?p=clamav-devel.git%3Ba=commit%3Bh=d21fb8d975f8c9688894a8cef4d50d977022e09f https://wwws.clamav.net/bugzilla/show_bug.cgi?id=2486 Common Vulnerability Exposure (CVE) ID: CVE-2011-2721 1025858 http://securitytracker.com/id?1025858 45382 http://secunia.com/advisories/45382 46717 http://secunia.com/advisories/46717 48891 http://www.securityfocus.com/bid/48891 74181 http://www.osvdb.org/74181 FEDORA-2011-15033 http://lists.fedoraproject.org/pipermail/package-announce/2011-November/068942.html FEDORA-2011-15076 http://lists.fedoraproject.org/pipermail/package-announce/2011-November/068940.html FEDORA-2011-15119 http://lists.fedoraproject.org/pipermail/package-announce/2011-November/068941.html MDVSA-2011:122 http://www.mandriva.com/security/advisories?name=MDVSA-2011:122 USN-1179-1 http://www.ubuntu.com/usn/USN-1179-1 [oss-security] 20110726 CVE Request -- Clam AntiVirus -- v0.97.2 -- Off-by-one error by scanning message hashes http://www.openwall.com/lists/oss-security/2011/07/26/3 [oss-security] 20110726 Re: CVE Request -- Clam AntiVirus -- v0.97.2 -- Off-by-one error by scanning message hashes http://www.openwall.com/lists/oss-security/2011/07/26/13 clamav-scan-dos(68785) https://exchange.xforce.ibmcloud.com/vulnerabilities/68785 http://git.clamav.net/gitweb?p=clamav-devel.git%3Ba=blob_plain%3Bf=ChangeLog%3Bhb=clamav-0.97.2 http://git.clamav.net/gitweb?p=clamav-devel.git%3Ba=commit%3Bh=4842733eb3f09be61caeed83778bb6679141dbc5 https://bugzilla.novell.com/show_bug.cgi?id=708263 https://bugzilla.redhat.com/show_bug.cgi?id=725694 https://wwws.clamav.net/bugzilla/show_bug.cgi?id=2818 Common Vulnerability Exposure (CVE) ID: CVE-2011-3627 46826 http://secunia.com/advisories/46826 50183 http://www.securityfocus.com/bid/50183 USN-1258-1 http://www.ubuntu.com/usn/USN-1258-1 [oss-security] 20111018 CVE request: recursion level crash in clamav before 0.97.3 http://www.openwall.com/lists/oss-security/2011/10/18/1 http://git.clamav.net/gitweb?p=clamav-devel.git%3Ba=commitdiff%3Bh=3d664817f6ef833a17414a4ecea42004c35cc42f https://bugzilla.redhat.com/show_bug.cgi?id=746984
Copyright	Copyright (C) 2012 E-Soft Inc.

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.