Bug 1199274 - (CVE-2022-20792) VUL-0: CVE-2022-20792: clamav: multi-byte heap buffer overflow in signature database load module
(CVE-2022-20792)
VUL-0: CVE-2022-20792: clamav: multi-byte heap buffer overflow in signature d...
Status: IN_PROGRESS
Classification: Novell Products
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents
unspecified
Other Other
: P3 - Medium : Normal
: ---
Assigned To: Security Team bot
Security Team bot
CVSSv3.1:SUSE:CVE-2022-20792:7.8:(AV:...
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2022-05-06 09:38 UTC by Robert Frohl
Modified: 2022-05-12 19:19 UTC (History)
1 user (show)

See Also:
Found By: ---
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Robert Frohl 2022-05-06 09:38:27 UTC
CVE-2022-20792: 

Fixed a possible multi-byte heap buffer overflow write vulnerability in the signature database load module. The fix was to update the vendored regex library to the latest version. Issue affects versions 0.104.0 through 0.104.2 and LTS version 0.103.5 and prior versions. Thank you to Michał Dardas for reporting this issue.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-20792
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-20792
Comment 1 Robert Frohl 2022-05-06 09:41:23 UTC
no real reference anywhere, found via sr in opensuse. But listed on https://blog.clamav.net/2022/05/clamav-01050-01043-01036-released.html
Comment 3 Swamp Workflow Management 2022-05-12 10:18:38 UTC
SUSE-SU-2022:1644-1: An update that fixes 5 vulnerabilities is now available.

Category: security (important)
Bug References: 1199242,1199244,1199245,1199246,1199274
CVE References: CVE-2022-20770,CVE-2022-20771,CVE-2022-20785,CVE-2022-20792,CVE-2022-20796
JIRA References: 
Sources used:
openSUSE Leap 15.4 (src):    clamav-0.103.6-150000.3.38.1
openSUSE Leap 15.3 (src):    clamav-0.103.6-150000.3.38.1
SUSE Linux Enterprise Module for Basesystem 15-SP4 (src):    clamav-0.103.6-150000.3.38.1
SUSE Linux Enterprise Module for Basesystem 15-SP3 (src):    clamav-0.103.6-150000.3.38.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 4 Swamp Workflow Management 2022-05-12 19:19:51 UTC
SUSE-SU-2022:1647-1: An update that fixes 5 vulnerabilities is now available.

Category: security (important)
Bug References: 1199242,1199244,1199245,1199246,1199274
CVE References: CVE-2022-20770,CVE-2022-20771,CVE-2022-20785,CVE-2022-20792,CVE-2022-20796
JIRA References: 
Sources used:
SUSE Linux Enterprise Server 12-SP5 (src):    clamav-0.103.6-3.18.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.