Bug 253780 (CVE-2007-4510)
Summary: | clamav-0.91.2 is available | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | FEver <fevapp> |
Component: | clamav | Assignee: | Enrico Scholz <rh-bugzilla> |
Status: | CLOSED ERRATA | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
Severity: | high | Docs Contact: | |
Priority: | medium | ||
Version: | rawhide | CC: | bojan |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://fedoraproject.org/wiki/Micha%C5%82Bentkowski/FEver | ||
Whiteboard: | |||
Fixed In Version: | 0.91.2-2.fc7 | Doc Type: | Bug Fix |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2007-09-07 17:18:31 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
FEver
2007-08-21 21:09:53 UTC
New upstream version fixes multiple DoS vulnerabilities (hence severity: high), as described e.g. here: http://secunia.com/advisories/26530/ No CVE name was assigned to those issue yet. Found CVE name: CVE-2007-4510 Description: ClamAV before 0.91.2, as used in Kolab Server 2.0 through 2.2beta1 and other products, allows remote attackers to cause a denial of service (application crash) via (1) a crafted RTF file, which triggers a NULL dereference in the cli_scanrtf function in libclamav/rtf.c; or (2) a crafted HTML document with a data: URI, which triggers a NULL dereference in the cli_html_normalise function in libclamav/htmlnorm.c. NOTE: some of these details are obtained from third party information. Could you push this package (if it is ready) to F7 updates: http://koji.fedoraproject.org/koji/buildinfo?buildID=16075 clamav-0.91.2-2.fc7 has been pushed to the Fedora 7 stable repository. If problems still persist, please make note of it in this bug report. Found CVE name: CVE-2007-4560 Description (c/p from http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4560): clamav-milter in ClamAV before 0.91.2, when run in black hole mode, allows remote attackers to execute arbitrary commands via shell metacharacters that are used in a certain popen call, involving the "recipient field of sendmail." |