ClamAV 0.98.7 =============
This release contains new scanning features and bug fixes.
Improvements to PDF processing: decryption, escape sequence handling, and file property collection.
Scanning/analysis of additional Microsoft Office 2003 XML format.
Fix infinite loop condition on crafted y0da cryptor file. Identified and patch suggested by Sebastian Andrzej Siewior. CVE-2015-2221.
Fix crash on crafted petite packed file. Reported and patch supplied by Sebastian Andrzej Siewior.
CVE-2015-2222.
Fix false negatives on files within iso9660 containers. This issue was reported by Minzhuan Gong.
Fix a couple crashes on crafted upack packed file.
Identified and patches supplied by Sebastian Andrzej Siewior.
Fix a crash during algorithmic detection on crafted PE file. Identified and patch supplied by Sebastian Andrzej Siewior.
Fix an infinite loop condition on a crafted ‘xz’ archive file. This was reported by Dimitri Kirchner and Goulven Guiheux. CVE-2015-2668.
Fix compilation error after ./configure
–disable-pthreads. Reported and fix suggested by John E. Krokes.
Apply upstream patch for possible heap overflow in Henry Spencer’s regex library. CVE-2015-2305.
Fix crash in upx decoder with crafted file. Discovered and patch supplied by Sebastian Andrzej Siewior.
CVE-2015-2170.
Fix segfault scanning certain HTML files. Reported with sample by Kai Risku.
Improve detections within xar/pkg files.
Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Fedora Security Advisory 2015-7334.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(83226);
script_version("2.5");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");
script_cve_id("CVE-2015-2170", "CVE-2015-2221", "CVE-2015-2222", "CVE-2015-2668");
script_xref(name:"FEDORA", value:"2015-7334");
script_name(english:"Fedora 21 : clamav-0.98.7-1.fc21 (2015-7334)");
script_summary(english:"Checks rpm output for the updated package.");
script_set_attribute(
attribute:"synopsis",
value:"The remote Fedora host is missing a security update."
);
script_set_attribute(
attribute:"description",
value:
"ClamAV 0.98.7 =============
This release contains new scanning features and bug fixes.
- Improvements to PDF processing: decryption, escape
sequence handling, and file property collection.
- Scanning/analysis of additional Microsoft Office 2003
XML format.
- Fix infinite loop condition on crafted y0da cryptor
file. Identified and patch suggested by Sebastian
Andrzej Siewior. CVE-2015-2221.
- Fix crash on crafted petite packed file. Reported and
patch supplied by Sebastian Andrzej Siewior.
CVE-2015-2222.
- Fix false negatives on files within iso9660
containers. This issue was reported by Minzhuan Gong.
- Fix a couple crashes on crafted upack packed file.
Identified and patches supplied by Sebastian Andrzej
Siewior.
- Fix a crash during algorithmic detection on crafted PE
file. Identified and patch supplied by Sebastian
Andrzej Siewior.
- Fix an infinite loop condition on a crafted 'xz'
archive file. This was reported by Dimitri Kirchner
and Goulven Guiheux. CVE-2015-2668.
- Fix compilation error after ./configure
--disable-pthreads. Reported and fix suggested by John
E. Krokes.
- Apply upstream patch for possible heap overflow in
Henry Spencer's regex library. CVE-2015-2305.
- Fix crash in upx decoder with crafted file. Discovered
and patch supplied by Sebastian Andrzej Siewior.
CVE-2015-2170.
- Fix segfault scanning certain HTML files. Reported
with sample by Kai Risku.
- Improve detections within xar/pkg files.
Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.redhat.com/show_bug.cgi?id=1217206"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.redhat.com/show_bug.cgi?id=1217207"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.redhat.com/show_bug.cgi?id=1217208"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.redhat.com/show_bug.cgi?id=1217209"
);
# https://lists.fedoraproject.org/pipermail/package-announce/2015-May/157019.html
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?ef266bd4"
);
script_set_attribute(
attribute:"solution",
value:"Update the affected clamav package."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:clamav");
script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora:21");
script_set_attribute(attribute:"patch_publication_date", value:"2015/05/01");
script_set_attribute(attribute:"plugin_publication_date", value:"2015/05/04");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2015-2021 Tenable Network Security, Inc.");
script_family(english:"Fedora Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Fedora" >!< release) audit(AUDIT_OS_NOT, "Fedora");
os_ver = eregmatch(pattern: "Fedora.*release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Fedora");
os_ver = os_ver[1];
if (! ereg(pattern:"^21([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Fedora 21.x", "Fedora " + os_ver);
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Fedora", cpu);
flag = 0;
if (rpm_check(release:"FC21", reference:"clamav-0.98.7-1.fc21")) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
else security_warning(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "clamav");
}
Vendor | Product | Version | CPE |
---|---|---|---|
fedoraproject | fedora | clamav | p-cpe:/a:fedoraproject:fedora:clamav |
fedoraproject | fedora | 21 | cpe:/o:fedoraproject:fedora:21 |
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2170
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2221
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2222
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2668
www.nessus.org/u?ef266bd4
bugzilla.redhat.com/show_bug.cgi?id=1217206
bugzilla.redhat.com/show_bug.cgi?id=1217207
bugzilla.redhat.com/show_bug.cgi?id=1217208
bugzilla.redhat.com/show_bug.cgi?id=1217209