Debian Local Security Checks : Debian LTS: Security Advisory for clamav (DLA-1461-1)

Búsqueda de Vulnerabilidad		Buscar 219043 Descripciones CVE y 99761 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.891461

Categoría: Debian Local Security Checks

Título: Debian LTS: Security Advisory for clamav (DLA-1461-1)

Resumen: ClamAV, an anti-virus utility for Unix, has released the version 0.100.1.;Installing this new version is required to make use of all current virus;signatures and to avoid warnings.;;This version also fixes two security issues discovered after version 0.100.0:;;CVE-2018-0360;;Integer overflow with a resultant infinite loop via a crafted Hangul Word;Processor file. Reported by Secunia Research at Flexera.;;CVE-2018-0361;;PDF object length check, unreasonably long time to parse a relatively small;file. Reported by aCaB.

Descripción: Summary:
ClamAV, an anti-virus utility for Unix, has released the version 0.100.1.
Installing this new version is required to make use of all current virus
signatures and to avoid warnings.

This version also fixes two security issues discovered after version 0.100.0:

CVE-2018-0360

Integer overflow with a resultant infinite loop via a crafted Hangul Word
Processor file. Reported by Secunia Research at Flexera.

CVE-2018-0361

PDF object length check, unreasonably long time to parse a relatively small
file. Reported by aCaB.

Affected Software/OS:
clamav on Debian Linux

Solution:
For Debian 8 'Jessie', these problems have been fixed in version
0.100.1+dfsg-0+deb8u1.

We recommend that you upgrade your clamav packages.

CVSS Score:
4.3

CVSS Vector:
AV:N/AC:M/Au:N/C:N/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2018-0360
https://security.gentoo.org/glsa/201904-12
https://secuniaresearch.flexerasoftware.com/secunia_research/2018-12/
https://lists.debian.org/debian-lts-announce/2018/08/msg00020.html
http://www.securitytracker.com/id/1041367
https://usn.ubuntu.com/3722-1/
https://usn.ubuntu.com/3722-2/
Common Vulnerability Exposure (CVE) ID: CVE-2018-0361

Copyright Copyright (C) 2018 Greenbone Networks GmbH http://greenbone.net

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.891461
Categoría:	Debian Local Security Checks
Título:	Debian LTS: Security Advisory for clamav (DLA-1461-1)
Resumen:	ClamAV, an anti-virus utility for Unix, has released the version 0.100.1.;Installing this new version is required to make use of all current virus;signatures and to avoid warnings.;;This version also fixes two security issues discovered after version 0.100.0:;;CVE-2018-0360;;Integer overflow with a resultant infinite loop via a crafted Hangul Word;Processor file. Reported by Secunia Research at Flexera.;;CVE-2018-0361;;PDF object length check, unreasonably long time to parse a relatively small;file. Reported by aCaB.
Descripción:	Summary: ClamAV, an anti-virus utility for Unix, has released the version 0.100.1. Installing this new version is required to make use of all current virus signatures and to avoid warnings. This version also fixes two security issues discovered after version 0.100.0: CVE-2018-0360 Integer overflow with a resultant infinite loop via a crafted Hangul Word Processor file. Reported by Secunia Research at Flexera. CVE-2018-0361 PDF object length check, unreasonably long time to parse a relatively small file. Reported by aCaB. Affected Software/OS: clamav on Debian Linux Solution: For Debian 8 'Jessie', these problems have been fixed in version 0.100.1+dfsg-0+deb8u1. We recommend that you upgrade your clamav packages. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2018-0360 https://security.gentoo.org/glsa/201904-12 https://secuniaresearch.flexerasoftware.com/secunia_research/2018-12/ https://lists.debian.org/debian-lts-announce/2018/08/msg00020.html http://www.securitytracker.com/id/1041367 https://usn.ubuntu.com/3722-1/ https://usn.ubuntu.com/3722-2/ Common Vulnerability Exposure (CVE) ID: CVE-2018-0361
Copyright	Copyright (C) 2018 Greenbone Networks GmbH http://greenbone.net