Bugzilla – Bug 132305
VUL-0: CVE-2005-3501: clamav: endless loop and buffer overflow
Last modified: 2019-05-01 14:42:27 UTC
Hi, a new release from upstream closes some security bugs. http://sourceforge.net/project/shownotes.php?release_id=368319
CVE-2005-3239 - The OLE2 unpacker in clamd in ClamAV 0.87-1 allows remote attackers to cause a denial of service (segmentation fault) via a DOC file with an invalid property tree, which triggers an infinite recursion in the ole2_walk_property_tree function. CVE-2005-3303 refers to the fsg.c overflow
Reinhard only works part time only. We need someone to fix this issue quickly. Customers are also already asking for updates.
mmj asked me to do the update this time as there is no backup maintainer. 0.87.1 contains the bugfixes described in the changelog. Only the generated docu makes the diff so huge. Since clamav usually complain at customers about an outdated version I upgrade to 0.87.1. Maintenance-Tracker-2759
According to Mandriva: The tnef_attachment() function allows remote attackers to cause a DoS (infinite loop and memory exhaustion) via a crafted value in a CAB file that causes ClamAV to repeatedly scan the same block (CVE-2005-3500) Remote attackers could cause a DoS (infinite loop) via a crafted CAB file (CVE-2005-3501)
updates released
Thanks, Ludwig for jumping in.
CVE-2005-3501: CVSS v2 Base Score: 4.3 (AV:N/AC:M/Au:N/C:N/I:N/A:P)