Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.OPENSUSE-2019-1210.NASL
HistoryApr 17, 2019 - 12:00 a.m.

openSUSE Security Update : clamav (openSUSE-2019-1210)

2019-04-1700:00:00
This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
12
JSON

This update for clamav to version 0.100.3 fixes the following issues :

Security issues fixed (bsc#1130721):

  • CVE-2019-1787: Fixed an out-of-bounds heap read condition which may occur when scanning PDF documents.

  • CVE-2019-1789: Fixed an out-of-bounds heap read condition which may occur when scanning PE files (i.e.
    Windows EXE and DLL files).

  • CVE-2019-1788: Fixed an out-of-bounds heap write condition which may occur when scanning OLE2 files such as Microsoft Office 97-2003 documents.

This update was imported from the SUSE:SLE-15:Update update project.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update openSUSE-2019-1210.
#
# The text description of this plugin is (C) SUSE LLC.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(124103);
  script_version("1.5");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");

  script_cve_id("CVE-2019-1787", "CVE-2019-1788", "CVE-2019-1789");

  script_name(english:"openSUSE Security Update : clamav (openSUSE-2019-1210)");
  script_summary(english:"Check for the openSUSE-2019-1210 patch");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote openSUSE host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"This update for clamav to version 0.100.3 fixes the following issues :

Security issues fixed (bsc#1130721): 	 

  - CVE-2019-1787: Fixed an out-of-bounds heap read
    condition which may occur when scanning PDF documents. 

  - CVE-2019-1789: Fixed an out-of-bounds heap read
    condition which may occur when scanning PE files (i.e.
    Windows EXE and DLL files).

  - CVE-2019-1788: Fixed an out-of-bounds heap write
    condition which may occur when scanning OLE2 files such
    as Microsoft Office 97-2003 documents. 

This update was imported from the SUSE:SLE-15:Update update project."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1130721"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected clamav packages."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:clamav");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:clamav-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:clamav-debugsource");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:clamav-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libclamav7");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libclamav7-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libclammspack0");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libclammspack0-debuginfo");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:15.0");

  script_set_attribute(attribute:"vuln_publication_date", value:"2019/04/08");
  script_set_attribute(attribute:"patch_publication_date", value:"2019/04/16");
  script_set_attribute(attribute:"plugin_publication_date", value:"2019/04/17");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE15\.0)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "15.0", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(x86_64)$") audit(AUDIT_ARCH_NOT, "x86_64", ourarch);

flag = 0;

if ( rpm_check(release:"SUSE15.0", reference:"clamav-0.100.3-lp150.2.10.1") ) flag++;
if ( rpm_check(release:"SUSE15.0", reference:"clamav-debuginfo-0.100.3-lp150.2.10.1") ) flag++;
if ( rpm_check(release:"SUSE15.0", reference:"clamav-debugsource-0.100.3-lp150.2.10.1") ) flag++;
if ( rpm_check(release:"SUSE15.0", reference:"clamav-devel-0.100.3-lp150.2.10.1") ) flag++;
if ( rpm_check(release:"SUSE15.0", reference:"libclamav7-0.100.3-lp150.2.10.1") ) flag++;
if ( rpm_check(release:"SUSE15.0", reference:"libclamav7-debuginfo-0.100.3-lp150.2.10.1") ) flag++;
if ( rpm_check(release:"SUSE15.0", reference:"libclammspack0-0.100.3-lp150.2.10.1") ) flag++;
if ( rpm_check(release:"SUSE15.0", reference:"libclammspack0-debuginfo-0.100.3-lp150.2.10.1") ) flag++;

if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "clamav / clamav-debuginfo / clamav-debugsource / clamav-devel / etc");
}
VendorProductVersionCPE
novellopensuseclamavp-cpe:/a:novell:opensuse:clamav
novellopensuseclamav-debuginfop-cpe:/a:novell:opensuse:clamav-debuginfo
novellopensuseclamav-debugsourcep-cpe:/a:novell:opensuse:clamav-debugsource
novellopensuseclamav-develp-cpe:/a:novell:opensuse:clamav-devel
novellopensuselibclamav7p-cpe:/a:novell:opensuse:libclamav7
novellopensuselibclamav7-debuginfop-cpe:/a:novell:opensuse:libclamav7-debuginfo
novellopensuselibclammspack0p-cpe:/a:novell:opensuse:libclammspack0
novellopensuselibclammspack0-debuginfop-cpe:/a:novell:opensuse:libclammspack0-debuginfo
novellopensuse15.0cpe:/o:novell:opensuse:15.0

Related

debian 1
nessus 12
suse 4
openvas 10
mageia 1
osv 4
amazon 1
ubuntu 2
altlinux 3
freebsd 1
prion 3
cve 3
alpinelinux 3
debiancve 3
ubuntucve 3
cvelist 3
gentoo 1
checkpoint_advisories 1
debian
debian
[SECURITY] [DLA 1759-1] clamav security update
2019-04-22 12:11:08
nessus
nessus
Debian DLA-1759-1 : clamav security update
2019-04-23 00:00:00
SUSE SLED12 / SLES12 Security Update : clamav (SUSE-SU-2019:0897-1)
2019-04-09 00:00:00
openSUSE Security Update : clamav (openSUSE-2019-1208)
2019-04-17 00:00:00
suse
suse
Security update for clamav (important)
2019-04-16 00:00:00
Security update for clamav (important)
2019-04-16 00:00:00
Security update for clamav (moderate)
2020-12-18 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2019:14015-1)
2021-06-09 00:00:00
Debian: Security Advisory (DLA-1759-1)
2019-04-23 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:0897-1)
2021-04-19 00:00:00
mageia
mageia
Updated clamav packages fix security vulnerabilities
2019-05-12 12:35:33
osv
osv
clamav - security update
2019-04-22 00:00:00
CVE-2019-1787
2019-04-08 19:29:05
CVE-2019-1788
2019-04-08 20:29:11
amazon
amazon
Important: clamav
2019-05-16 23:16:00
ubuntu
ubuntu
ClamAV vulnerabilities
2019-04-08 00:00:00
ClamAV vulnerabilities
2019-04-08 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package clamav version 0.101.2-alt1
2019-03-28 00:00:00
Security fix for the ALT Linux 10 package clamav version 0.101.2-alt1
2019-03-28 00:00:00
Security fix for the ALT Linux 8 package clamav version 0.101.2-alt1
2019-03-28 00:00:00
freebsd
freebsd
clamav -- multiple vulnerabilities
2019-03-29 00:00:00
prion
prion
Heap overflow
2019-04-08 19:29:00
Design/Logic Flaw
2019-11-05 19:15:00
Design/Logic Flaw
2019-04-08 20:29:00
cve
cve
CVE-2019-1787
2019-04-08 19:29:00
CVE-2019-1788
2019-04-08 20:29:00
CVE-2019-1789
2019-11-05 19:15:00
alpinelinux
alpinelinux
CVE-2019-1787
2019-04-08 19:29:00
CVE-2019-1788
2019-04-08 20:29:00
CVE-2019-1789
2019-11-05 19:15:00
debiancve
debiancve
CVE-2019-1787
2019-04-08 19:29:00
CVE-2019-1789
2019-11-05 19:15:00
CVE-2019-1788
2019-04-08 20:29:00
ubuntucve
ubuntucve
CVE-2019-1787
2019-04-03 00:00:00
CVE-2019-1788
2019-04-03 00:00:00
CVE-2019-1789
2019-04-03 00:00:00
cvelist
cvelist
CVE-2019-1787 Clam AntiVirus PDF Denial of Service Vulnerability
2019-04-08 19:10:16
CVE-2019-1788 ClamAV OLE2 File Out-Of-Bounds Write Vulnerability
2019-04-08 19:15:18
CVE-2019-1789 ClamAV Denial of Service Vulnerability
2019-11-05 18:25:34
gentoo
gentoo
ClamAV: Multiple vulnerabilities
2019-04-08 00:00:00
checkpoint_advisories
checkpoint_advisories
ClamAV OLE2 Out-of-Bounds Write (CVE-2019-1788)
2019-11-26 00:00:00
JSON
Related for OPENSUSE-2019-1210.NASL
debian1nessus12suse4openvas10mageia1osv4amazon1ubuntu2altlinux3freebsd1prion3cve3alpinelinux3debiancve3ubuntucve3cvelist3gentoo1checkpoint_advisories1