Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -3 articles for you...
203
security advisoryupdateDoSMageia 9 MGASA-2024-0307 Moderate: Clamav DoS and Symlink Protection
Fixed a possible out-of-bounds read bug in the PDF file parser that could cause a denial-of-service (DoS) condition. (CVE-2024-20505) Changed the logging module to disable following symlinks on Linux and Unix systems so as to prevent an attacker with existing access to the 'clamd' or 'freshclam' services from using a symlink to corrupt system . MGASA-2024-0307 - Updated clamav packages fix security vulnerabilities Publication date: 17 Sep 2024 URL: https://advisories.mageia.org/MGASA-2024-0307.html Type: security Affected Mageia releases: 9 CVE: CVE-2024-20505, CVE-2024-20506 Fixed a possible out-of-bounds read bug in the PDF file parser that could cause a denial-of-service (DoS) condition. (CVE-2024-20505) Changed the logging module to disable following symlinks on Linux and Unix systems so as to prevent an attacker with existing access to the 'clamd' or 'freshclam' services from using a symlink to corrupt system files. (CVE-2024-20506) References: - https://bugs.mageia.org/show_bug.cgi?id=33561 - https://blog.clamav.net/2024/09/clamav-141-132-107-and-010312-security.html - https://www.cve.org/CVERecord?id=CVE-2024-20505 - https://www.cve.org/CVERecord?id=CVE-2024-20506 SRPMS: - 9/core/clamav-1.0.7-1.mga9 . Recent security enhancements for ClamAV target critical flaws and denial-of-service threats in Mageia, bolstering overall system security.. clamav updates, mageia security, DoS fixes, system protection, Linux security. . LinuxSecurity.com Team
Sep 17, 2024
Mageia
89
security advisoryfedorasoftware updateFedora 40: FEDORA-2024-e8f7a74693 Critical: Clamav DoS Risk Mitigated
Update to 1.0.7 CVE-2024-20506: Changed the logging module to disable following symlinks on Linux and Unix systems so as to prevent an attacker with existing access to the 'clamd' or 'freshclam' services from using a symlink to corrupt system files. CVE-2024-20505: Fixed a possible out-of-bounds read bug in the PDF file parser. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-e8f7a74693 2024-09-14 01:57:36.689511 -------------------------------------------------------------------------------- Name : clamav Product : Fedora 40 Version : 1.0.7 Release : 1.fc40 URL : https://www.clamav.net/ Summary : End-user tools for the Clam Antivirus scanner Description : Clam AntiVirus is an anti-virus toolkit for UNIX. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a command line scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use with your own software. The virus database is based on the virus database from OpenAntiVirus, but contains additional signatures (including signatures for popular polymorphic viruses, too) and is KEPT UP TO DATE. -------------------------------------------------------------------------------- Update Information: Update to 1.0.7 CVE-2024-20506: Changed the logging module to disable following symlinks on Linux and Unix systems so as to prevent an attacker with existing access to the 'clamd' or 'freshclam' services from using a symlink to corrupt system files. CVE-2024-20505: Fixed a possible out-of-bounds read bug in the PDF file parser that could cause a denial-of-service (DoS) condition. -------------------------------------------------------------------------------- ChangeLog: * Thu Sep 5 2024 Yaakov Selkowitz - 1.0.7-1 - Update to1.0.7 * Wed Jul 17 2024 Fedora Release Engineering - 1.0.6-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2310067 - CVE-2024-20506 clamav: ClamD process writes to log file while privileged without checking if its been replaced with a symlink [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2310067 [ 2 ] Bug #2310073 - CVE-2024-20505 clamav: out-of-bounds read bug in the PDF file parser [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2310073 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-e8f7a74693' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Sep 14, 2024
•Critical
Fedora
89
security advisoryFedoraDoSFedora 41 Clamav 1.0.7 Moderate: Symlink Protection and DoS Fixes
Update to 1.0.7 CVE-2024-20506: Changed the logging module to disable following symlinks on Linux and Unix systems so as to prevent an attacker with existing access to the 'clamd' or 'freshclam' services from using a symlink to corrupt system files. CVE-2024-20505: Fixed a possible out-of-bounds read bug in the PDF file parser. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-0d7eb64d90 2024-09-13 20:43:08.472713 -------------------------------------------------------------------------------- Name : clamav Product : Fedora 41 Version : 1.0.7 Release : 1.fc41 URL : https://www.clamav.net/ Summary : End-user tools for the Clam Antivirus scanner Description : Clam AntiVirus is an anti-virus toolkit for UNIX. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a command line scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use with your own software. The virus database is based on the virus database from OpenAntiVirus, but contains additional signatures (including signatures for popular polymorphic viruses, too) and is KEPT UP TO DATE. -------------------------------------------------------------------------------- Update Information: Update to 1.0.7 CVE-2024-20506: Changed the logging module to disable following symlinks on Linux and Unix systems so as to prevent an attacker with existing access to the 'clamd' or 'freshclam' services from using a symlink to corrupt system files. CVE-2024-20505: Fixed a possible out-of-bounds read bug in the PDF file parser that could cause a denial-of-service (DoS) condition. -------------------------------------------------------------------------------- ChangeLog: * Thu Sep 5 2024 Yaakov Selkowitz - 1.0.7-1 - Update to1.0.7 * Wed Jul 17 2024 Fedora Release Engineering - 1.0.6-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2300593 - clamav: FTBFS in Fedora rawhide/f41 https://bugzilla.redhat.com/show_bug.cgi?id=2300593 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-0d7eb64d90' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Sep 13, 2024
Fedora
100
security advisoryimportantclamavSUSE: 2024:3228-1 Important: Clamav Security Advisory Fixes DoS Issues
* bsc#1230161 * bsc#1230162 Cross-References: * CVE-2024-20505 . # Security update for clamav Announcement ID: SUSE-SU-2024:3228-1 Rating: important References: * bsc#1230161 * bsc#1230162 Cross-References: * CVE-2024-20505 * CVE-2024-20506 CVSS scores: * CVE-2024-20505 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-20505 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-20506 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2024-20506 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves two vulnerabilities can now be installed. ## Description: This update for clamav fixes the following issues: * Update to version 0.103.12 * CVE-2024-20506: Disable symlinks following to prevent an attacker to corrupt system files. (bsc#1230162) * CVE-2024-20505: Fixed possible out-of-bounds read bug in the PDF file parser. (bsc#1230161) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-3228=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-3228=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-3228=1 ## Package List: * SUSE Linux Enterprise High Performance Computing 12 SP5 (aarch64 x86_64) * clamav-0.103.12-3.33.1 * clamav-debugsource-0.103.12-3.33.1 * clamav-debuginfo-0.103.12-3.33.1 * SUSE Linux Enterprise Server 12 SP5 (aarch64 ppc64le s390x x86_64) *clamav-0.103.12-3.33.1 * clamav-debugsource-0.103.12-3.33.1 * clamav-debuginfo-0.103.12-3.33.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (ppc64le x86_64) * clamav-0.103.12-3.33.1 * clamav-debugsource-0.103.12-3.33.1 * clamav-debuginfo-0.103.12-3.33.1 ## References: * https://www.suse.com/security/cve/CVE-2024-20505.html * https://www.suse.com/security/cve/CVE-2024-20506.html * https://bugzilla.suse.com/show_bug.cgi?id=1230161 * https://bugzilla.suse.com/show_bug.cgi?id=1230162 . SUSE's important clamav patch addresses significant weaknesses, boosting overall security and system reliability.. clamav Security Update, SUSE Security Advisory, SUSE Linux Enterprise, Important Security Fixes, Symlink Vulnerability. . Severity: Important. LinuxSecurity.com Team
Sep 12, 2024
•Important
SuSE
89
security advisorysecurity issuefedoraFedora 40: FEDORA-2024-3da8ed5be3 moderate: perl-Data-UUID Symlink Issue
This update fixes CVE-2013-4184 (possible symlink attack due to use of predictable temporary file names). The module no longer saves state in temporary files at all.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-3da8ed5be3 2024-03-28 00:15:36.328340 -------------------------------------------------------------------------------- Name : perl-Data-UUID Product : Fedora 40 Version : 1.227 Release : 1.fc40 URL : https://metacpan.org/dist/Data-UUID Summary : Globally/Universally Unique Identifiers (GUIDs/UUIDs) Description : This module provides a framework for generating v3 UUIDs (Universally Unique Identifiers, also known as GUIDs (Globally Unique Identifiers). A UUID is 128 bits long, and is guaranteed to be different from all other UUIDs/GUIDs generated until 3400 CE. UUIDs were originally used in the Network Computing System (NCS) and later in the Open Software Foundation's (OSF) Distributed Computing Environment. Currently many different technologies rely on UUIDs to provide unique identity for various software components. Microsoft COM/DCOM for instance, uses GUIDs very extensively to uniquely identify classes, applications and components across network-connected systems. The algorithm for UUID generation, used by this extension, is described in the Internet Draft "UUIDs and GUIDs" by Paul J. Leach and Rich Salz (see RFC 4122). It provides a reasonably efficient and reliable framework for generating UUIDs and supports fairly high allocation rates - 10 million per second per machine - and therefore is suitable for identifying both extremely short-lived and very persistent objects on a given system as well as across the network. This module provides several methods to create a UUID. In all methods, is a UUID and is a free form string. -------------------------------------------------------------------------------- Update Information: This update fixesCVE-2013-4184 (possible symlink attack due to use of predictable temporary file names). The module no longer saves state in temporary files at all. -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 19 2024 Paul Howarth - 1.227-1 - Update to 1.227 - New maintainer, GTERMARS - Add basic GitHub Actions setup for testing - Typo corrections in POD - Eliminated use of state/node files in temp directory (CVE-2013-4184) -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-3da8ed5be3' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Mar 28, 2024
•Important
Fedora
89
security advisoryupdateFedoraFedora 26: Update For Perltidy Moderate Symlink Attack Risk
Cumulative bug-fix, enhancement and security update, including fix for CVE-2016-10374: perltidy relies on the current working directory for certain output files and did not have a symlink-attack protection mechanism, which allowed local users to overwrite arbitrary files by creating a symlink, as demonstrated by creating a perltidy.ERR symlink that the victim could not. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-c76259ddea 2017-06-09 18:48:36.539041 --------------------------------------------------------------------------------Name : perltidy Product : Fedora 26 Version : 20170521 Release : 1.fc26 URL : Summary : Tool for indenting and re-formatting Perl scripts Description : Perltidy is a Perl script that indents and re-formats Perl scripts to make them easier to read. If you write Perl scripts, or spend much time reading them, you will probably find it useful. The formatting can be controlled with command line parameters. The default parameter settings approximately follow the suggestions in the Perl Style Guide. Perltidy can also output HTML of both POD and source code. Besides re-formatting scripts, Perltidy can be a great help in tracking down errors with missing or extra braces, parentheses, and square brackets because it is very good at localizing errors. --------------------------------------------------------------------------------Update Information: Cumulative bug-fix, enhancement and security update, including fix for CVE-2016-10374: perltidy relies on the current working directory for certain output files and did not have a symlink-attack protection mechanism, which allowed local users to overwrite arbitrary files by creating a symlink, as demonstrated by creating a perltidy.ERR symlink that the victim could not delete. --------------------------------------------------------------------------------References: [ 1 ] Bug #1452050 - CVE-2016-10374 perltidy:Uses current working directory without symlink-attack protection https://bugzilla.redhat.com/show_bug.cgi?id=1452050 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade perltidy' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list --
Jun 09, 2017
•Important
Fedora
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!