First Last Prev Next    No search results available      Search page      Enter new bug
Bug#: 78656
Alias:
Product:
Component:
Status: RESOLVED
Resolution: FIXED
Assigned To: Gentoo Security <security@gentoo.org>
Hardware:
OS:
Version:
Priority:
Severity:
Reporter: Luke Macken (RETIRED) <lewk@gentoo.org>
Add CC:
CC:
Remove selected CCs
URL:
Summary:
Status Whiteboard:
Keywords:
Flags: Requestee:
 
 
  ()

Filename Description Type Creator Created Size Actions
Create a New Attachment (proposed patch, testcase, etc.) View All

Bug 78656 depends on: Show dependency tree
Bug 78656 blocks:

Additional Comments: (this is where you put emerge --info)


Not eligible to see or edit group visibility for this bug.






View Bug Activity   |   Format For Printing   |   XML   |   Clone This Bug

Description:   Opened: 2005-01-19 05:14 0000 
TITLE:
Clam AntiVirus RFC2397 Bypass Weakness

SECUNIA ADVISORY ID:
SA13900

VERIFY ADVISORY:
http://secunia.com/advisories/13900/

CRITICAL:
Not critical

IMPACT:
Security Bypass

WHERE:
>From remote

SOFTWARE:
Clam AntiVirus (clamav) 0.x
http://secunia.com/product/2538/

DESCRIPTION:
The vendor has acknowledged a weakness in Clam AntiVirus, which
allows malware to bypass detection.

For more information:
SA13792

This has been reported to affect Clam AntiVirus. Other versions may
also be affected.

SOLUTION:
This has been fixed in CVS.

Do not rely solely on gateway / perimeter security.

Apply patches to fix vulnerabilities in client software and apply
other defence in depth measures.

PROVIDED AND/OR DISCOVERED BY:
Reported by vendor.

OTHER REFERENCES:
SA13792:
http://secunia.com/advisories/13792/

------- Comment #1 From Sune Kloppenborg Jeppesen 2005-01-19 10:43:43 0000 ------- 
net-mail, antivirus please advise.

------- Comment #2 From Thierry Carrez (RETIRED) 2005-01-23 04:37:24 0000 ------- 
A new clamav version should be released with the fix, so better wait.

------- Comment #3 From Sune Kloppenborg Jeppesen 2005-01-27 00:05:10 0000 ------- 
0.81 released

------- Comment #4 From Andrej Kacian (RETIRED) 2005-01-27 00:40:20 0000 ------- 
Ebuild for 0.81 in CVS.

------- Comment #5 From Sune Kloppenborg Jeppesen 2005-01-27 01:03:54 0000 ------- 
Arches please test and mark stable.

------- Comment #6 From Andrej Kacian (RETIRED) 2005-01-27 02:21:46 0000 ------- 
Stable on x86. Added dependency on fixed zlib version (bug #61749), as
suggested by jaervosz.

------- Comment #7 From Gustavo Zacarias (RETIRED) 2005-01-27 05:15:07 0000 ------- 
Ticho: you lack a DEPEND for USE="milter", so if sendmail isn't around it won't
compile because libmilter is missing (dunno if there's another provider for
it).
Anyway, sparc stable, since it's just a minor compile fix.

------- Comment #8 From Andrej Kacian (RETIRED) 2005-01-27 08:35:05 0000 ------- 
Yes, I noticed it earlier today when I tried to compile with +milter. I decided
to leave it be for now, because I couldn't think of a way to check for sendmail
installed with milter flag. This will probably be best solved by issuing an
einfo/ewarn message in pkg_setup().

------- Comment #9 From Jan Brinkmann (RETIRED) 2005-01-28 13:11:40 0000 ------- 
stable on amd64

------- Comment #10 From Michael Hanselmann (hansmi) (RETIRED) 2005-01-28 13:22:32 0000 ------- 
Stable on ppc.

------- Comment #11 From Bryan Østergaard (RETIRED) 2005-01-30 12:01:51 0000 ------- 
Stable on alpha.

------- Comment #12 From Thierry Carrez (RETIRED) 2005-01-31 01:07:20 0000 ------- 
ia64 should test and mark stable too.

------- Comment #13 From Sune Kloppenborg Jeppesen 2005-01-31 11:55:24 0000 ------- 
GLSA 200501-46

hppa and ia64 please remember to mark stable to benifit from the GLSA.

------- Comment #14 From René Nussbaumer 2005-06-26 05:44:47 0000 ------- 
ebuild no longer in portage.
First Last Prev Next    No search results available      Search page      Enter new bug