|
Bugzilla – Full Text Bug Listing |
| Summary: | VUL-0: CVE-2005-3501: clamav: endless loop and buffer overflow | ||
|---|---|---|---|
| Product: | [openSUSE] SUSE Linux 10.1 | Reporter: | Thomas Biege <thomas> |
| Component: | Security | Assignee: | Ludwig Nussel <lnussel> |
| Status: | RESOLVED FIXED | QA Contact: | E-mail List <qa-bugs> |
| Severity: | Normal | ||
| Priority: | P5 - None | CC: | max, patch-request, security-team |
| Version: | unspecified | ||
| Target Milestone: | --- | ||
| Hardware: | Other | ||
| OS: | Other | ||
| Whiteboard: | CVE-2005-3501: CVSS v2 Base Score: 4.3 (AV:N/AC:M/Au:N/C:N/I:N/A:P) CVSSv2:NVD:CVE-2005-3239:7.8:(AV:N/AC:L/Au:N/C:N/I:N/A:C) | ||
| Found By: | Other | Services Priority: | |
| Business Priority: | Blocker: | --- | |
| Marketing QA Status: | --- | IT Deployment: | --- |
|
Description
Thomas Biege
2005-11-04 12:44:47 UTC
CVE-2005-3239 - The OLE2 unpacker in clamd in ClamAV 0.87-1 allows remote attackers to cause a denial of service (segmentation fault) via a DOC file with an invalid property tree, which triggers an infinite recursion in the ole2_walk_property_tree function. CVE-2005-3303 refers to the fsg.c overflow Reinhard only works part time only. We need someone to fix this issue quickly. Customers are also already asking for updates. mmj asked me to do the update this time as there is no backup maintainer. 0.87.1 contains the bugfixes described in the changelog. Only the generated docu makes the diff so huge. Since clamav usually complain at customers about an outdated version I upgrade to 0.87.1. Maintenance-Tracker-2759 According to Mandriva: The tnef_attachment() function allows remote attackers to cause a DoS (infinite loop and memory exhaustion) via a crafted value in a CAB file that causes ClamAV to repeatedly scan the same block (CVE-2005-3500) Remote attackers could cause a DoS (infinite loop) via a crafted CAB file (CVE-2005-3501) updates released Thanks, Ludwig for jumping in. CVE-2005-3501: CVSS v2 Base Score: 4.3 (AV:N/AC:M/Au:N/C:N/I:N/A:P) |