==========================================================Ubuntu Security Notice USN-986-2         September 20, 2010
clamav vulnerability
CVE-2010-0405
==========================================================
A security issue affects the following Ubuntu releases:

Ubuntu 9.04
Ubuntu 9.10
Ubuntu 10.04 LTS

This advisory also applies to the corresponding versions of
Kubuntu, Edubuntu, and Xubuntu.

The problem can be corrected by upgrading your system to the
following package versions:

Ubuntu 9.04:
  libclamav6                      0.95.3+dfsg-1ubuntu0.09.04.3

Ubuntu 9.10:
  libclamav6                      0.95.3+dfsg-1ubuntu0.09.10.3

Ubuntu 10.04 LTS:
  libclamav6                      0.96.1+dfsg-0ubuntu0.10.04.2

In general, a standard system update will make all the necessary changes.

Details follow:

USN-986-1 fixed a vulnerability in bzip2. This update provides the
corresponding update for ClamAV.

Original advisory details:

 An integer overflow was discovered in bzip2. If a user or automated system
 were tricked into decompressing a crafted bz2 file, an attacker could cause
 bzip2 or any application linked against libbz2 to crash or possibly execute
 code as the user running the program.


Updated packages for Ubuntu 9.04:

  Source archives:

          Size/MD5:   265951 0d4818c1ac323be5ed7def53f34dedd0
          Size/MD5:     1560 8923297a08becfe44040e7ac2513fea4
          Size/MD5: 26892533 dfe1348c52223ab48f049123021aea4a

  Architecture independent packages:

          Size/MD5: 24053478 6c6e79af22b7df0dc9af20296aa20f80
          Size/MD5:  1123664 7b0e95de57bf3eb3ae05434e8ccd1577
          Size/MD5:   232326 f81dab62344c584d35d9772d2b638df5

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):

          Size/MD5:   382170 3d4167707d6e962fcc3392ffb7b34fdd
          Size/MD5:  1168166 ee81e508a7fc66f7ef0018f4c44e65a9
          Size/MD5:   288136 b6b6c2513e75099b755b4549ee4b1062
          Size/MD5:   280504 7a8e098017f9a8b804857e8e5ee4e987
          Size/MD5:   614532 9a7d44cd2a50afaaa498da0c7dfa1439
          Size/MD5:   579202 150dd9788c4e91f74c8f86e3cbbfb07a
          Size/MD5:   308724 e2a420d7e2dea7e425d84475d9d4f277

  i386 architecture (x86 compatible Intel/AMD):

          Size/MD5:   369954 aeb4cf7bb1389d06a2a96d52ee113b8b
          Size/MD5:  1082126 f4436a6f7945a5759d734516598468ed
          Size/MD5:   285486 1370009db8a7f6a7dcd4e0200b9cf59d
          Size/MD5:   275264 a83d731280cbb9863423113b28dd2b69
          Size/MD5:   582486 da3af717f6d92402e992892999e32e98
          Size/MD5:   566926 282040686c4a0465eae5d4d3fa54d290
          Size/MD5:   305048 0099ee2b28fa8fde3124d0c48b71753f

  lpia architecture (Low Power Intel Architecture):

          Size/MD5:   370414 051671c2343558f8d7f2e577e5979d88
          Size/MD5:  1101394 d761543a9c84748942dcc4a7acc6c525
          Size/MD5:   285070 934fd758107edbed97a6111da3e60bc2
          Size/MD5:   275198 007d148c12fad4dfc44ac3e1335f14cc
          Size/MD5:   584198 15d0b4f111cd806698e93cffa8f44a63
          Size/MD5:   568328 baf44e8702a0496f049e21a89a7fd90e
          Size/MD5:   304982 c4adb5567b11f5f2e53c16cc0af21a8b

  powerpc architecture (Apple Macintosh G3/G4/G5):

          Size/MD5:   389440 821ad9aa068bee032c3e51173a8a91c8
          Size/MD5:  1145144 04feaa2c11d412a8805a909095371ea3
          Size/MD5:   290640 6d0be9b441bf865047b4dd3856357967
          Size/MD5:   283750 7714dc6c7202946842a81c43312dd98b
          Size/MD5:   655518 d766cd93a82e01062c9cbf2a734e49f4
          Size/MD5:   596186 3c57d76aabc31fca6e71f312c4c0e37e
          Size/MD5:   312006 25dd45965092f87bc1fd02279f088acb

  sparc architecture (Sun SPARC/UltraSPARC):

          Size/MD5:   372236 834232848b59414bbdc236b8f8c196e9
          Size/MD5:  1056498 1fe04946327b2f7ec5948bd6fca89256
          Size/MD5:   284238 1393e95604b0f421f3e43714422b773a
          Size/MD5:   275444 7017180e04ab8c45749f4dfeb64bf4ed
          Size/MD5:   617302 486a47a907233aa6580852160ea1641b
          Size/MD5:   583998 4f666cb3175a25b1812ae569fbb3aaaf
          Size/MD5:   305582 6fa31bf5da4985bbb3da8984edcf4ecc

Updated packages for Ubuntu 9.10:

  Source archives:

          Size/MD5:   265945 9f24a0114a8570949e417f5cfb7aa941
          Size/MD5:     1560 9ee86b121b58afb8d572f5ba756b1c98
          Size/MD5: 26892533 dfe1348c52223ab48f049123021aea4a

  Architecture independent packages:

          Size/MD5: 24053472 b677ba25af4db7645ccc680a212cf1eb
          Size/MD5:  1123662 3a268ff5b91487e2cfe255563955a23b
          Size/MD5:   232316 c3d75801f6cf5b6c28c2001955371f59

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):

          Size/MD5:   383226 90e466f0d23d06351fb7c90a2cf0d745
          Size/MD5:  1101312 11048286ab51b96cbdb6c8f24c2de9ce
          Size/MD5:   288746 1ce08befb5acc5c380a347cec4af5c23
          Size/MD5:   281244 fb6660f2db912c55c9db4ab0c46ba596
          Size/MD5:   623112 cbafa81c522d2332055a0828e5a59149
          Size/MD5:   584230 220ebebb7570688f41d79ec43e492718
          Size/MD5:   309236 c6ff2adc089c64b85f2df8b3d4be7cdc

  i386 architecture (x86 compatible Intel/AMD):

          Size/MD5:   370390 7502bb8939bc28da9b9b8a092e6b80f5
          Size/MD5:  1058578 944e760f1489175f9b1ce3781d9ac550
          Size/MD5:   285720 7760f5c4286bc49363920454e6099de4
          Size/MD5:   275494 a5d05215512e0e2c167a3d6d1e6992f0
          Size/MD5:   584236 cc707aee16025d25886edb49c9f6efe0
          Size/MD5:   567924 08369e387fc0a6a1124721b2f95d504b
          Size/MD5:   305140 fe12a73c40db9d16d162ebfd8957c714

  lpia architecture (Low Power Intel Architecture):

          Size/MD5:   370538 dcf70ca21938fece175c7fcb36badd1a
          Size/MD5:  1073210 98e7999b4152f17779d64ded76f8fb07
          Size/MD5:   286064 90e070afa42a1700cc14656eaa31db20
          Size/MD5:   276006 ffa4cf411cf22ea38c26ae92989fcef6
          Size/MD5:   585330 e9a7b4a95b0506fcfb7fea590d51c1fd
          Size/MD5:   568592 932aaf198c1f23ffb592ecf94efae84e
          Size/MD5:   304968 6498a0aec71eeac9a501f4b9df4650b3

  powerpc architecture (Apple Macintosh G3/G4/G5):

          Size/MD5:   383112 a7a98cccdb267233521dd2fa5c614e22
          Size/MD5:  1135520 6ca3cf8c3fcddfb96401bbe751ccb6a8
          Size/MD5:   288098 8c5308715f4080ca90fe11cddb773e4b
          Size/MD5:   279702 cce5f6adc8b9c685609faf18702659af
          Size/MD5:   661660 3fdcd0ba5506f3b36efdcb2c1ce8852a
          Size/MD5:   601726 1e9a8c978ceee2cedf64ef50ebebc8d2
          Size/MD5:   310206 2fa4e3db793cd81d80a7ec46b520b370

  sparc architecture (Sun SPARC/UltraSPARC):

          Size/MD5:   373668 16d4fdb1a3932eac07dbbf3cb5c141f2
          Size/MD5:  1055594 4122f464426e5f434fc469ace381b5fc
          Size/MD5:   284318 3b82a3ce23c62e5692ecfa394c866374
          Size/MD5:   275386 cd0ccb759245231f7fe69690bd59e9da
          Size/MD5:   628676 236fe02a1292c69de999fbb4c7ec8506
          Size/MD5:   595394 b926658174e00ee529f3e028b38e1a22
          Size/MD5:   306110 fe60fa4e3c098cc243697c1ebc6ec0ff

Updated packages for Ubuntu 10.04:

  Source archives:

          Size/MD5:   274317 8385c815d49da15da6ceaf335e58f8c6
          Size/MD5:     1553 6807284f3c49f19ec98f470e9de7a764
          Size/MD5: 39209011 143a92cd065620f922fb00da6ea8f101

  Architecture independent packages:

          Size/MD5:   291618 d4d2bca704c2a5ce1bcac9eaf5f2a216
          Size/MD5:  1290626 9f6fa9f7e399c7fb3764cf3ad533f20c
          Size/MD5:  5251796 e4aac9cee553eaf0d513f2a733fa8f6a

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):

          Size/MD5:   415542 54f2a94dce568205f0d3b550c81eafa9
          Size/MD5: 22354832 c28415384ee01c19888fa9997b8ef4c6
          Size/MD5:   303204 fc530e2541b78abab0af5462dc02bd23
          Size/MD5:   328382 a078ab3038514d189715b2af94c7bb10
          Size/MD5:   212080 6f7328a9dcc31135ae38f78340f81acf
          Size/MD5:  3897162 4cc8959e32b768fccacd1a1861b3f9d3
          Size/MD5:   327260 6de704946007d49ae37f57b81efac98a

  i386 architecture (x86 compatible Intel/AMD):

          Size/MD5:   402666 17224227af88b31697cf90da3dd05ba9
          Size/MD5: 21891134 105b8778ddd54ce721b11d02d52883b0
          Size/MD5:   301790 0af9adc1c3ee21e4595338813883991a
          Size/MD5:   320998 4af27efa3a7c7076052abaaefb642094
          Size/MD5:   211776 56571b1cb5d22f8502c8601f2d17344e
          Size/MD5:  3704904 cd8c9d3de9286ac3ccb889d28680a7da
          Size/MD5:   324512 aba48e8032a3502f87e63b991d1d7132

  powerpc architecture (Apple Macintosh G3/G4/G5):

          Size/MD5:   416204 818f5432140caae74bf9b382eabe6628
          Size/MD5: 21878570 5478fefc8fee4a4363ff5c82fefbde4f
          Size/MD5:   303912 8b0b760f824c80b0cb665dd17da49b3c
          Size/MD5:   326182 e9f1a6752a469e0e725fef386abb60a0
          Size/MD5:   211780 daeac3f910e7d2eeefb34ea255b2e5ed
          Size/MD5:  3670302 b3e0e1cd0bcf606fc7b51e363abf305e
          Size/MD5:   329656 478aa602b210d58d880e0b7e0b0a1f60

  sparc architecture (Sun SPARC/UltraSPARC):

          Size/MD5:   408584 ae8b94d48ec7562a363a388709052e07
          Size/MD5:  1460842 48db1378d5d143b40e34bf8ef324f15a
          Size/MD5:   301296 94dacea634f93a9f5525ff5aad189472
          Size/MD5:   323524 cec3b218e8b53b7e9560625424f32414
          Size/MD5:   211794 d4ccad97865e97173856f07407877b21
          Size/MD5:   748968 631e49a63adcb9836c4421dd9fcbf1f3
          Size/MD5:   326700 34a2d735aa83bc1ce94e69fe4427fa59

Ubuntu 986-2: ClamAV vulnerability

September 20, 2010
USN-986-1 fixed a vulnerability in bzip2

Summary

Update Instructions

References

Severity
clamav vulnerability

Package Information

Related News

24.Key Code Esm H320
2 - 3 min read
The Akira ransomware group has extorted approximately $42 million from over 250 victims since January 1, 2024. The group initially focused on
5.ShakingHands Esm H320
2 - 3 min read
At The Linux Foundation's Open Source Summit North America , Linus Torvalds, the creator of Linux, discussed various topics related to Linux
30.Lock Globe Motherboard Esm H320
1 - 2 min read
The SPDX 3.0 release marks a significant milestone in software management, particularly for Linux admins, infosec professionals, internet security
11.Locks IsometricPattern Esm H320
2 - 3 min read
Open Source maintainers and developers have been warned about the continued wave of attacks aimed at project maintainers similar to those recently
28.Lock Globe Esm H320
1 - 2 min read
A resurgence of cyberattacks targeting Linux systems in Asian campaigns through the utilization of the Pupy Remote Access Trojan (RAT) has been
27.Tablet Connections Blocks Lock Esm H320
2 - 4 min read
Canonical has recently announced the Beta release of Ubuntu Linux 24.04 LTS , codenamed "Noble Numbat." This release aims to continue Ubuntu's
21.Globe RadiatingCode Esm H320
2 - 3 min read
The open-source movement has come a long way, from its origins in the 1960s and 1970s to becoming an integral part of organizations worldwide.
13.Lock StylizedMotherboard Esm H320
2 - 3 min read
The Rust-based Edera project demonstrates a unique approach to container security that addresses cloud-native computing challenges. Let's examine
Sign Up

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved