Vulnerability   
Search   
    Search 211766 CVE descriptions
and 97459 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.1.4.2020.3790.1
Category:SuSE Local Security Checks
Title:SUSE: Security Advisory (SUSE-SU-2020:3790-1)
Summary:The remote host is missing an update for the 'clamav' package(s) announced via the SUSE-SU-2020:3790-1 advisory.
Description:Summary:
The remote host is missing an update for the 'clamav' package(s) announced via the SUSE-SU-2020:3790-1 advisory.

Vulnerability Insight:
This update for clamav fixes the following issues:

clamav was updated to the new major release 0.103.0.
(jsc#ECO-3010,bsc#1118459)

Note that libclamav was changed incompatible, if you have a 3rd party application that uses libclamav, it needs to be rebuilt.

Update to 0.103.0

clamd can now reload the signature database without blocking scanning.
This multi-threaded database reload improvement was made possible thanks
to a community effort.

- Non-blocking database reloads are now the default behavior. Some
systems that are more constrained on RAM may need to disable
non-blocking reloads as it will temporarily consume two times as much
memory. We added a new clamd config option ConcurrentDatabaseReload,
which may be set to no.

* Fix clamav-milter.service (requires clamd.service to run)

Update to 0.102.4

* CVE-2020-3350: Fix a vulnerability wherein a malicious user could
replace a scan target's directory with a symlink to another path to
trick clamscan, clamdscan, or clamonacc into removing or moving a
different file (eg. a critical system file). The issue would affect
users that use the --move or --remove options for clamscan, clamdscan,
and clamonacc.
* CVE-2020-3327: Fix a vulnerability in the ARJ archive parsing module
in ClamAV 0.102.3 that could cause a Denial-of-Service (DoS)
condition. Improper bounds checking results in an
out-of-bounds read which could cause a crash. The previous fix for
this CVE in 0.102.3 was incomplete. This fix correctly resolves the
issue.
* CVE-2020-3481: Fix a vulnerability in the EGG archive module in ClamAV
0.102.0 - 0.102.3 could cause a Denial-of-Service (DoS) condition.
Improper error handling may result in a crash due to a NULL pointer
dereference. This vulnerability is mitigated for those using the
official ClamAV signature databases because the file type signatures
in daily.cvd will not enable the EGG archive parser in versions
affected by the vulnerability.

Update to 0.102.3

* CVE-2020-3327: Fix a vulnerability in the ARJ archive parsing module
in ClamAV 0.102.2 that could cause a Denial-of-Service (DoS)
condition. Improper bounds checking of an unsigned variable results in
an out-of-bounds read which causes a crash.
* CVE-2020-3341: Fix a vulnerability in the PDF parsing module in ClamAV
0.101 - 0.102.2 that could cause a Denial-of-Service (DoS) condition.
Improper size checking of a buffer used to initialize AES decryption
routines results in an out-of-bounds read which may cause a crash.
* Fix 'Attempt to allocate 0 bytes' error when parsing some PDF
documents.
* Fix a couple of minor memory leaks.
* Updated libclamunrar to UnRAR 5.9.2.

Update to 0.102.2:

* CVE-2020-3123: A denial-of-service (DoS) condition may occur when
using the optional credit card data-loss-prevention (DLP) feature.
Improper bounds checking of an unsigned variable resulted in an
out-of-bounds read, which c... [Please see the references for more information on the vulnerabilities]

Affected Software/OS:
'clamav' package(s) on SUSE Linux Enterprise Module for Basesystem 15-SP2, SUSE Linux Enterprise Module for Basesystem 15-SP1

Solution:
Please install the updated package(s).

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2019-1785
https://security.gentoo.org/glsa/201904-12
https://bugzilla.clamav.net/show_bug.cgi?id=12284
Common Vulnerability Exposure (CVE) ID: CVE-2019-1786
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=12149
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=12168
Common Vulnerability Exposure (CVE) ID: CVE-2019-1787
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=12181
https://lists.debian.org/debian-lts-announce/2019/04/msg00019.html
SuSE Security Announcement: openSUSE-SU-2019:1208 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00064.html
SuSE Security Announcement: openSUSE-SU-2019:1210 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00062.html
Common Vulnerability Exposure (CVE) ID: CVE-2019-1788
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=12166
Common Vulnerability Exposure (CVE) ID: CVE-2019-1789
https://blog.clamav.net/2019/03/clamav-01012-and-01003-patches-have.html
Common Vulnerability Exposure (CVE) ID: CVE-2019-1798
https://bugzilla.clamav.net/show_bug.cgi?id=12262
Common Vulnerability Exposure (CVE) ID: CVE-2020-3123
Cisco Security Advisory: https://quickview.cloudapps.cisco.com/quickview/bug/CSCvs59062
https://quickview.cloudapps.cisco.com/quickview/bug/CSCvs59062
https://security.gentoo.org/glsa/202003-46
https://usn.ubuntu.com/4280-1/
https://usn.ubuntu.com/4280-2/
Common Vulnerability Exposure (CVE) ID: CVE-2020-3327
Cisco Security Advisory: https://blog.clamav.net/2020/05/clamav-01023-security-patch-released.html
https://blog.clamav.net/2020/05/clamav-01023-security-patch-released.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IJ67VH37NCG25PICGWFWZHSVG7PBT7MC/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3BMTC7I5LGY4FCIZLHPNC4WWC6VNLFER/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L5YWYT27SBTV4RZSGFHIQUI4LQVFASWS/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ROBJOGJOT44MVDX7RQEACYHQN4LYW5RK/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QM7EXJHDEZJLWM2NKH6TCDXOBP5NNYIN/
https://security.gentoo.org/glsa/202007-23
https://lists.debian.org/debian-lts-announce/2020/05/msg00018.html
https://lists.debian.org/debian-lts-announce/2020/08/msg00010.html
https://usn.ubuntu.com/4370-1/
https://usn.ubuntu.com/4370-2/
https://usn.ubuntu.com/4435-1/
https://usn.ubuntu.com/4435-2/
Common Vulnerability Exposure (CVE) ID: CVE-2020-3341
Common Vulnerability Exposure (CVE) ID: CVE-2020-3350
Cisco Security Advisory: 20200617 Cisco AMP for Endpoints and ClamAV Privilege Escalation Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-famp-ZEpdXy
Common Vulnerability Exposure (CVE) ID: CVE-2020-3481
Cisco Security Advisory: ClamAV 0.102.4 security patch released
https://blog.clamav.net/2020/07/clamav-01024-security-patch-released.html
CopyrightCopyright (C) 2021 Greenbone Networks GmbH

This is only one of 97459 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2021 E-Soft Inc. All rights reserved.