Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusUbuntu Security Notice (C) 2021-2023 Canonical, Inc. / NASL script (C) 2021-2023 and is owned by Tenable, Inc. or an Affiliate thereof.UBUNTU_USN-4918-1.NASL
HistoryApr 20, 2021 - 12:00 a.m.

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : ClamAV vulnerabilities (USN-4918-1)

2021-04-2000:00:00
Ubuntu Security Notice (C) 2021-2023 Canonical, Inc. / NASL script (C) 2021-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
15
JSON

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 20.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4918-1 advisory.

  • A vulnerability in the Excel XLM macro parsing module in Clam AntiVirus (ClamAV) Software versions 0.103.0 and 0.103.1 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to improper error handling that may result in an infinite loop.
    An attacker could exploit this vulnerability by sending a crafted Excel file to an affected device. An exploit could allow the attacker to cause the ClamAV scanning process hang, resulting in a denial of service condition. (CVE-2021-1252)

  • A vulnerability in the PDF parsing module in Clam AntiVirus (ClamAV) Software versions 0.103.0 and 0.103.1 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to improper buffer size tracking that may result in a heap buffer over- read. An attacker could exploit this vulnerability by sending a crafted PDF file to an affected device. An exploit could allow the attacker to cause the ClamAV scanning process to crash, resulting in a denial of service condition. (CVE-2021-1404)

  • A vulnerability in the email parsing module in Clam AntiVirus (ClamAV) Software version 0.103.1 and all prior versions could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to improper variable initialization that may result in an NULL pointer read. An attacker could exploit this vulnerability by sending a crafted email to an affected device. An exploit could allow the attacker to cause the ClamAV scanning process crash, resulting in a denial of service condition. (CVE-2021-1405)

Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.

##
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-4918-1. The text
# itself is copyright (C) Canonical, Inc. See
# <https://ubuntu.com/security/notices>. Ubuntu(R) is a registered
# trademark of Canonical, Inc.
##

include('compat.inc');

if (description)
{
  script_id(148819);
  script_version("1.5");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/10/21");

  script_cve_id("CVE-2021-1252", "CVE-2021-1404", "CVE-2021-1405");
  script_xref(name:"USN", value:"4918-1");

  script_name(english:"Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : ClamAV vulnerabilities (USN-4918-1)");

  script_set_attribute(attribute:"synopsis", value:
"The remote Ubuntu host is missing one or more security updates.");
  script_set_attribute(attribute:"description", value:
"The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 20.10 host has packages installed that are affected by multiple
vulnerabilities as referenced in the USN-4918-1 advisory.

  - A vulnerability in the Excel XLM macro parsing module in Clam AntiVirus (ClamAV) Software versions 0.103.0
    and 0.103.1 could allow an unauthenticated, remote attacker to cause a denial of service condition on an
    affected device. The vulnerability is due to improper error handling that may result in an infinite loop.
    An attacker could exploit this vulnerability by sending a crafted Excel file to an affected device. An
    exploit could allow the attacker to cause the ClamAV scanning process hang, resulting in a denial of
    service condition. (CVE-2021-1252)

  - A vulnerability in the PDF parsing module in Clam AntiVirus (ClamAV) Software versions 0.103.0 and 0.103.1
    could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected
    device. The vulnerability is due to improper buffer size tracking that may result in a heap buffer over-
    read. An attacker could exploit this vulnerability by sending a crafted PDF file to an affected device. An
    exploit could allow the attacker to cause the ClamAV scanning process to crash, resulting in a denial of
    service condition. (CVE-2021-1404)

  - A vulnerability in the email parsing module in Clam AntiVirus (ClamAV) Software version 0.103.1 and all
    prior versions could allow an unauthenticated, remote attacker to cause a denial of service condition on
    an affected device. The vulnerability is due to improper variable initialization that may result in an
    NULL pointer read. An attacker could exploit this vulnerability by sending a crafted email to an affected
    device. An exploit could allow the attacker to cause the ClamAV scanning process crash, resulting in a
    denial of service condition. (CVE-2021-1405)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://ubuntu.com/security/notices/USN-4918-1");
  script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2021-1252");
  script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2021-1405");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2021/04/08");
  script_set_attribute(attribute:"patch_publication_date", value:"2021/04/19");
  script_set_attribute(attribute:"plugin_publication_date", value:"2021/04/20");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:16.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:18.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:20.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:clamav");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:clamav-base");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:clamav-daemon");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:clamav-freshclam");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:clamav-milter");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:clamav-testfiles");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:clamdscan");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libclamav-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libclamav9");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Ubuntu Local Security Checks");

  script_copyright(english:"Ubuntu Security Notice (C) 2021-2023 Canonical, Inc. / NASL script (C) 2021-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");

  exit(0);
}

include('debian_package.inc');

if ( ! get_kb_item('Host/local_checks_enabled') ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item('Host/Ubuntu/release');
if ( isnull(os_release) ) audit(AUDIT_OS_NOT, 'Ubuntu');
os_release = chomp(os_release);
if (! ('16.04' >< os_release || '18.04' >< os_release || '20.04' >< os_release)) audit(AUDIT_OS_NOT, 'Ubuntu 16.04 / 18.04 / 20.04', 'Ubuntu ' + os_release);
if ( ! get_kb_item('Host/Debian/dpkg-l') ) audit(AUDIT_PACKAGE_LIST_MISSING);

var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Ubuntu', cpu);

var pkgs = [
    {'osver': '16.04', 'pkgname': 'clamav', 'pkgver': '0.103.2+dfsg-0ubuntu0.16.04.1'},
    {'osver': '16.04', 'pkgname': 'clamav-base', 'pkgver': '0.103.2+dfsg-0ubuntu0.16.04.1'},
    {'osver': '16.04', 'pkgname': 'clamav-daemon', 'pkgver': '0.103.2+dfsg-0ubuntu0.16.04.1'},
    {'osver': '16.04', 'pkgname': 'clamav-freshclam', 'pkgver': '0.103.2+dfsg-0ubuntu0.16.04.1'},
    {'osver': '16.04', 'pkgname': 'clamav-milter', 'pkgver': '0.103.2+dfsg-0ubuntu0.16.04.1'},
    {'osver': '16.04', 'pkgname': 'clamav-testfiles', 'pkgver': '0.103.2+dfsg-0ubuntu0.16.04.1'},
    {'osver': '16.04', 'pkgname': 'clamdscan', 'pkgver': '0.103.2+dfsg-0ubuntu0.16.04.1'},
    {'osver': '16.04', 'pkgname': 'libclamav-dev', 'pkgver': '0.103.2+dfsg-0ubuntu0.16.04.1'},
    {'osver': '16.04', 'pkgname': 'libclamav9', 'pkgver': '0.103.2+dfsg-0ubuntu0.16.04.1'},
    {'osver': '18.04', 'pkgname': 'clamav', 'pkgver': '0.103.2+dfsg-0ubuntu0.18.04.1'},
    {'osver': '18.04', 'pkgname': 'clamav-base', 'pkgver': '0.103.2+dfsg-0ubuntu0.18.04.1'},
    {'osver': '18.04', 'pkgname': 'clamav-daemon', 'pkgver': '0.103.2+dfsg-0ubuntu0.18.04.1'},
    {'osver': '18.04', 'pkgname': 'clamav-freshclam', 'pkgver': '0.103.2+dfsg-0ubuntu0.18.04.1'},
    {'osver': '18.04', 'pkgname': 'clamav-milter', 'pkgver': '0.103.2+dfsg-0ubuntu0.18.04.1'},
    {'osver': '18.04', 'pkgname': 'clamav-testfiles', 'pkgver': '0.103.2+dfsg-0ubuntu0.18.04.1'},
    {'osver': '18.04', 'pkgname': 'clamdscan', 'pkgver': '0.103.2+dfsg-0ubuntu0.18.04.1'},
    {'osver': '18.04', 'pkgname': 'libclamav-dev', 'pkgver': '0.103.2+dfsg-0ubuntu0.18.04.1'},
    {'osver': '18.04', 'pkgname': 'libclamav9', 'pkgver': '0.103.2+dfsg-0ubuntu0.18.04.1'},
    {'osver': '20.04', 'pkgname': 'clamav', 'pkgver': '0.103.2+dfsg-0ubuntu0.20.04.1'},
    {'osver': '20.04', 'pkgname': 'clamav-base', 'pkgver': '0.103.2+dfsg-0ubuntu0.20.04.1'},
    {'osver': '20.04', 'pkgname': 'clamav-daemon', 'pkgver': '0.103.2+dfsg-0ubuntu0.20.04.1'},
    {'osver': '20.04', 'pkgname': 'clamav-freshclam', 'pkgver': '0.103.2+dfsg-0ubuntu0.20.04.1'},
    {'osver': '20.04', 'pkgname': 'clamav-milter', 'pkgver': '0.103.2+dfsg-0ubuntu0.20.04.1'},
    {'osver': '20.04', 'pkgname': 'clamav-testfiles', 'pkgver': '0.103.2+dfsg-0ubuntu0.20.04.1'},
    {'osver': '20.04', 'pkgname': 'clamdscan', 'pkgver': '0.103.2+dfsg-0ubuntu0.20.04.1'},
    {'osver': '20.04', 'pkgname': 'libclamav-dev', 'pkgver': '0.103.2+dfsg-0ubuntu0.20.04.1'},
    {'osver': '20.04', 'pkgname': 'libclamav9', 'pkgver': '0.103.2+dfsg-0ubuntu0.20.04.1'}
];

var flag = 0;
foreach package_array ( pkgs ) {
  var osver = NULL;
  var pkgname = NULL;
  var pkgver = NULL;
  if (!empty_or_null(package_array['osver'])) osver = package_array['osver'];
  if (!empty_or_null(package_array['pkgname'])) pkgname = package_array['pkgname'];
  if (!empty_or_null(package_array['pkgver'])) pkgver = package_array['pkgver'];
  if (osver && pkgname && pkgver) {
    if (ubuntu_check(osver:osver, pkgname:pkgname, pkgver:pkgver)) flag++;
  }
}

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_HOLE,
    extra      : ubuntu_report_get()
  );
  exit(0);
}
else
{
  var tested = ubuntu_pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'clamav / clamav-base / clamav-daemon / clamav-freshclam / etc');
}
VendorProductVersionCPE
canonicalubuntu_linux16.04cpe:/o:canonical:ubuntu_linux:16.04:-:lts
canonicalubuntu_linux18.04cpe:/o:canonical:ubuntu_linux:18.04:-:lts
canonicalubuntu_linux20.04cpe:/o:canonical:ubuntu_linux:20.04:-:lts
canonicalubuntu_linuxclamavp-cpe:/a:canonical:ubuntu_linux:clamav
canonicalubuntu_linuxclamav-basep-cpe:/a:canonical:ubuntu_linux:clamav-base
canonicalubuntu_linuxclamav-daemonp-cpe:/a:canonical:ubuntu_linux:clamav-daemon
canonicalubuntu_linuxclamav-freshclamp-cpe:/a:canonical:ubuntu_linux:clamav-freshclam
canonicalubuntu_linuxclamav-milterp-cpe:/a:canonical:ubuntu_linux:clamav-milter
canonicalubuntu_linuxclamav-testfilesp-cpe:/a:canonical:ubuntu_linux:clamav-testfiles
canonicalubuntu_linuxclamdscanp-cpe:/a:canonical:ubuntu_linux:clamdscan
Rows per page:
1-10 of 121

Related

ubuntu 3
openvas 10
nessus 8
altlinux 3
redos 5
suse 1
osv 7
freebsd 1
ubuntucve 3
cve 3
cbl_mariner 3
veracode 3
debiancve 3
prion 3
alpinelinux 3
debian 1
mageia 1
gentoo 1
redhatcve 1
rosalinux 1
ubuntu
ubuntu
ClamAV vulnerabilities
2021-04-19 00:00:00
ClamAV regression
2021-05-03 00:00:00
ClamAV vulnerabilities
2021-04-20 00:00:00
openvas
openvas
openSUSE: Security Advisory for clamav (openSUSE-SU-2021:0555-1)
2021-04-16 00:00:00
SUSE: Security Advisory (SUSE-SU-2021:1189-1)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2021:1190-1)
2021-04-19 00:00:00
nessus
nessus
SUSE SLES12 Security Update : clamav (SUSE-SU-2021:1174-1)
2021-04-14 00:00:00
SUSE SLES12 Security Update : clamav (SUSE-SU-2021:1189-1)
2021-04-15 00:00:00
openSUSE Security Update : clamav (openSUSE-2021-555)
2021-04-16 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 8 package clamav version 0.103.2-alt1
2021-04-14 00:00:00
Security fix for the ALT Linux 9 package clamav version 0.103.2-alt1
2021-04-12 00:00:00
Security fix for the ALT Linux 10 package clamav version 0.103.2-alt1
2021-04-10 00:00:00
redos
redos
ROS-2-650
2021-12-24 00:00:00
ROS-2-547
2021-09-08 00:00:00
ROS-2-457
2021-09-08 00:00:00
suse
suse
Security update for clamav (important)
2021-04-15 00:00:00
osv
osv
clamav vulnerabilities
2021-04-20 14:23:24
clamav regression
2021-05-03 22:20:06
clamav vulnerabilities
2021-04-19 17:52:28
freebsd
freebsd
clamav -- Multiple vulnerabilites
2021-04-07 00:00:00
ubuntucve
ubuntucve
CVE-2021-1404
2021-04-08 00:00:00
CVE-2021-1405
2021-04-08 00:00:00
CVE-2021-1252
2021-04-08 00:00:00
cve
cve
CVE-2021-1404
2021-04-08 05:15:00
CVE-2021-1405
2021-04-08 05:15:00
CVE-2021-1252
2021-04-08 05:15:00
cbl_mariner
cbl_mariner
CVE-2021-1404 affecting package clamav 0.103.0-1
2021-05-06 23:56:51
CVE-2021-1405 affecting package clamav 0.103.0-1
2021-05-06 23:56:51
CVE-2021-1252 affecting package clamav 0.103.0-1
2021-05-06 23:56:51
veracode
veracode
Denial Of Service (DoS)
2021-04-11 04:44:53
Denial Of Service (DoS)
2021-04-11 04:44:52
Denial Of Service (DoS)
2021-04-11 05:18:07
debiancve
debiancve
CVE-2021-1404
2021-04-08 05:15:00
CVE-2021-1405
2021-04-08 05:15:00
CVE-2021-1252
2021-04-08 05:15:00
prion
prion
Heap overflow
2021-04-08 05:15:00
Null pointer dereference
2021-04-08 05:15:00
Race condition
2021-04-08 05:15:00
alpinelinux
alpinelinux
CVE-2021-1404
2021-04-08 05:15:00
CVE-2021-1405
2021-04-08 05:15:00
CVE-2021-1252
2021-04-08 05:15:00
debian
debian
[SECURITY] [DLA 2626-1] clamav security update
2021-04-14 09:01:57
mageia
mageia
Updated clamav packages fix security vulnerability
2021-04-18 21:34:40
gentoo
gentoo
ClamAV: Denial of service
2021-04-30 00:00:00
redhatcve
redhatcve
CVE-2021-1405
2022-05-21 00:18:26
rosalinux
rosalinux
Advisory ROSA-SA-2021-1813
2021-07-02 16:34:56
JSON
Related for UBUNTU_USN-4918-1.NASL
ubuntu3openvas10nessus8altlinux3redos5suse1osv7freebsd1ubuntucve3cve3cbl_mariner3veracode3debiancve3prion3alpinelinux3debian1mageia1gentoo1redhatcve1rosalinux1