Alerts This Week
Warning Icon 1 562
Alerts This Week
Warning Icon 1 562

Ubuntu 12.04 ESM USN-3789-2 Moderate: ClamAV DoS Crash Risk

Calendar Oct 16, 2018 User Avatar LinuxSecurity Advisories
1 min read
Ubuntu Large Esm H500
Topics%20covered

Topics Covered

security advisory denial of service software update ubuntu clamav
ClamAV could be made to crash if it opened a specially crafted file. 
=========================================================================Ubuntu Security Notice USN-3789-2
October 16, 2018

clamav vulnerabilities
=========================================================================
A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 12.04 ESM

Summary:

ClamAV could be made to crash if it opened a specially crafted file.

Software Description:
- clamav: Anti-virus utility for Unix

Details:

USN-3789-1 fixed a vulnerability in ClamAV. This update provides
the corresponding update for Ubuntu 12.04 ESM.

Original advisory details:

 It was discovered that ClamAV incorrectly handled unpacking MEW
 executables. A remote attacker could possibly use this issue to cause
 ClamAV to crash, resulting in a denial of service.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 12.04 ESM:
  clamav                          0.100.2+dfsg-1ubuntu0.12.04.1

This update uses a new upstream release, which includes additional bug
fixes. In general, a standard system update will make all the necessary
changes.

References:
  https://ubuntu.com/security/notices/USN-3789-2
  
  CVE-2018-14679, CVE-2018-14680, CVE-2018-14681, CVE-2018-14682,
  CVE-2018-15378

Ubuntu 12.04 ESM USN-3789-2 Moderate: ClamAV DoS Crash Risk

ubuntu
Calendar Grey October 16, 2018
Dist Ubuntu Esm H88
Ubuntu Security Notice USN-3790-1 covers vulnerabilities in OpenSSL, which may result in application failures and mandates immediate patches.
ClamAV could be made to crash if it opened a specially crafted file.

Summary

Topics%20covered

Topics Covered

security advisory denial of service software update ubuntu clamav

Update Instructions

The problem can be corrected by updating your system to the following package versions: Ubuntu 12.04 ESM:   clamav                          0.100.2+dfsg-1ubuntu0.12.04.1 This update uses a new upstream release, which includes additional bug fixes. In general, a standard system update will make all the necessary changes.

References

  https://ubuntu.com/security/notices/USN-3789-2

 

  CVE-2018-14679, CVE-2018-14680, CVE-2018-14681, CVE-2018-14682,

  CVE-2018-15378

Severity
important
Lowest
Low
Medium
High
Critical

October 16, 2018

Topics%20covered

Topics Covered

security advisory denial of service software update ubuntu clamav

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here