Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 467710 (CVE-2013-2020) - <app-antivirus/clamav-0.98: Multiple vulnerabilities (CVE-2013-{2020,2021})
Summary: <app-antivirus/clamav-0.98: Multiple vulnerabilities (CVE-2013-{2020,2021})
Alias: CVE-2013-2020
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Gentoo Security
Whiteboard: B2 [glsa]
Depends on: 470090 487414
  Show dependency tree
Reported: 2013-04-28 09:24 UTC by Agostino Sarubbo
Modified: 2014-05-16 12:53 UTC (History)
2 users (show)

See Also:
Package list:
Runtime testing required: ---


Note You need to log in before you can comment on or make changes to this bug.
Description Agostino Sarubbo gentoo-dev 2013-04-28 09:24:54 UTC
From ${URL} :

The bugs should be public now:
heap corruption, potentially exploitable.
overflow due to PDF key length computation. Potentially exploitable.
NULL pointer dereference in sis parsing.

When building clamav I recommend disabling legacy or unneeded features
(e.g. sis). I guess that's common sense though.

@maintainer(s): after the bump, in case we need to stabilize the package, please say explicitly if it is ready for the stabilization or not
Comment 1 Chris Reffett (RETIRED) gentoo-dev Security 2013-07-03 22:19:21 UTC
The first two are fixed in 0.97.8. Last one is still locked, no CVE assigned yet. Shall we wait for it to be unlocked and confirm that it's fixed in 0.97.8, or go ahead and stable?
Comment 2 GLSAMaker/CVETool Bot gentoo-dev 2013-08-29 19:01:07 UTC
CVE-2013-2021 (
  pdf.c in ClamAV 0.97.1 through 0.97.7 allows remote attackers to cause a
  denial of service (out-of-bounds-read) via a crafted length value in an
  encrypted PDF file.

CVE-2013-2020 (
  Integer underflow in the cli_scanpe function in pe.c in ClamAV before 0.97.8
  allows remote attackers to cause a denial of service (crash) via a skewed
  offset larger than the size of the PE section in a UPX packed executable,
  which triggers an out-of-bounds read.
Comment 3 Sergey Popov gentoo-dev 2013-11-29 09:09:15 UTC
app-antivirus/clamav-0.98 was stabilized. Adding this to existing GLSA draft
Comment 4 GLSAMaker/CVETool Bot gentoo-dev 2014-05-16 12:53:25 UTC
This issue was resolved and addressed in
 GLSA 201405-08 at
by GLSA coordinator Sergey Popov (pinkbyte).