FEDORA-EPEL-2020-cf34e230c7 created by orion a year ago for Fedora EPEL 8
stable

ClamAV 0.102.4 is a bug patch release to address the following issues:

CVE-2020-3350 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3350 Fixed a vulnerability a malicious user could exploit to replace a scan target's directory with a symlink to another path to trick clamscan, clamdscan, or clamonacc into removing or moving a different file (such as a critical system file). The issue would affect users that use the --move or --remove options for clamscan, clamdscan and clamonacc.

For more information about AV quarantine attacks using links, see RACK911 Lab's report https://www.rack911labs.com/research/exploiting-almost-every-antivirus-software.

CVE-2020-3327 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3327 Fixed a vulnerability in the ARJ archive-parsing module in ClamAV 0.102.3 that could cause a denial-of-service (DoS) condition. Improper bounds checking resulted in an out-of-bounds read that could cause a crash. The previous fix for this CVE in version 0.102.3 was incomplete. This fix correctly resolves the issue.

CVE-2020-3481 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3481 Fixed a vulnerability in the EGG archive module in ClamAV 0.102.0 - 0.102.3 that could cause a denial-of-service (DoS) condition. Improper error handling could cause a crash due to a NULL pointer dereference. This vulnerability is mitigated for those using the official ClamAV signature databases because the file type signatures in daily.cvd will not enable the EGG archive parser in affected versions.

This update has been submitted for testing by orion.

a year ago

This update's test gating status has been changed to 'ignored'.

a year ago

This update's test gating status has been changed to 'waiting'.

a year ago

This update's test gating status has been changed to 'ignored'.

a year ago

This update has been pushed to testing.

a year ago

This update can be pushed to stable now if the maintainer wishes

a year ago

This update has been submitted for stable by bodhi.

a year ago

This update has been pushed to stable.

a year ago

Please login to add feedback.

Metadata
Type
security
Severity
high
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
14 days
Dates
submitted
a year ago
in testing
a year ago
in stable
a year ago
BZ#1858261 CVE-2020-3350 clamav: malicious user exploit to replace scan target's directory with symlink
0
0
BZ#1858263 CVE-2020-3350 clamav: malicious user exploit to replace scan target's directory with symlink [epel-all]
0
0
BZ#1858264 CVE-2020-3481 clamav: improper error handling causing crash due to NULL pointer dereference
0
0
BZ#1858266 CVE-2020-3481 clamav: improper error handling causing crash due to NULL pointer dereference [epel-all]
0
0

Automated Test Results

Test Cases

0 0 Test Case ClamAV