oss-sec mailing list archives
Re: CVE request: clamav clamd and clamscan DoS and bypass by malformated archive
From: Jamie Strandboge <jamie () canonical com>
Date: Tue, 7 Apr 2009 13:21:40 -0500
On Tue, 07 Apr 2009, Nico Golde wrote:
* Thomas Biege <thomas () suse de> [2009-04-07 15:47]:These two bugs possibly need a CVE-ID. Here we go: https://wwws.clamav.net/bugzilla/show_bug.cgi?id=1462 http://blog.zoller.lu/2009/04/clamav-094-and-below-evasion-and-bypass.htmlShould be covered by CVE-2009-1241
The details are scant, but I believe bug #1462[1] to be different from the unrar issue discussed in the blog and CVE-2009-1241. Specifically, the patch for 1462 is svn commit r4981 to libclamav/untar.c to prevent a DoS (infinite loop). Also, bug 1335[2] is fixed in commit r4980 by a patch to cli_scanpe() in libclamav/pe.c to prevent a DoS (divide by zero). AFAICT, the unrar issue (CVE-2009-1241) is covered in Debian bug #484642[3] and clamav bug #1050[4]. Could we get CVE identifiers for the two remaining issues? Jamie [1] https://wwws.clamav.net/bugzilla/show_bug.cgi?id=1462 [2] https://wwws.clamav.net/bugzilla/show_bug.cgi?id=1335 [3] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=484642 [4] https://wwws.clamav.net/bugzilla/show_bug.cgi?id=1050 -- Jamie Strandboge | http://www.canonical.com
Attachment:
signature.asc
Description: Digital signature
Current thread:
- CVE request: clamav clamd and clamscan DoS and bypass by malformated archive Thomas Biege (Apr 07)
- Re: CVE request: clamav clamd and clamscan DoS and bypass by malformated archive Nico Golde (Apr 07)
- Re: CVE request: clamav clamd and clamscan DoS and bypass by malformated archive Jamie Strandboge (Apr 07)
- Re: CVE request: clamav clamd and clamscan DoS and bypass by malformated archive Nico Golde (Apr 07)
- Re: CVE request: clamav clamd and clamscan DoS and bypass by malformated archive Jamie Strandboge (Apr 07)
- Re: CVE request: clamav clamd and clamscan DoS and bypass by malformated archive Steven M. Christey (Apr 08)
- Re: CVE request: clamav clamd and clamscan DoS and bypass by malformated archive Tomas Hoger (Apr 09)
- Re: CVE request: clamav clamd and clamscan DoS and bypass by malformated archive Hanno Böck (Apr 09)
- Re: CVE request: clamav clamd and clamscan DoS and bypass by malformated archive Marcus Meissner (Apr 09)
- Re: CVE request: clamav clamd and clamscan DoS and bypass by malformated archive Marcus Meissner (Apr 22)
- Re: CVE request: clamav clamd and clamscan DoS and bypass by malformated archive Steven M. Christey (Apr 23)
- Re: CVE request: clamav clamd and clamscan DoS and bypass by malformated archive Hanno Böck (Apr 09)
- Re: CVE request: clamav clamd and clamscan DoS and bypass by malformated archive Nico Golde (Apr 07)