Bug 1801391 (CVE-2020-3123) - CVE-2020-3123 clamav: out-of-bounds read in the Data-Loss-Prevention (DLP) module
Summary: CVE-2020-3123 clamav: out-of-bounds read in the Data-Loss-Prevention (DLP) mo...
Keywords:
Status: CLOSED NOTABUG
Alias: CVE-2020-3123
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard:
Depends On: 1801392 1801393
Blocks: 1801394
TreeView+ depends on / blocked
 
Reported: 2020-02-10 19:08 UTC by Guilherme de Almeida Suckevicz
Modified: 2020-07-16 07:09 UTC (History)
12 users (show)

Fixed In Version:
Clone Of:
Environment:
Last Closed: 2020-02-10 20:13:31 UTC
Embargoed:

Attachments (Terms of Use)

Description Guilherme de Almeida Suckevicz 2020-02-10 19:08:21 UTC 
A vulnerability in the Data-Loss-Prevention (DLP) module in Clam AntiVirus (ClamAV) Software versions 0.102.1 and 0.102.0 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to an out-of-bounds read affecting users that have enabled the optional DLP feature. An attacker could exploit this vulnerability by sending a crafted email file to an affected device. An exploit could allow the attacker to cause the ClamAV scanning process crash, resulting in a denial of service condition.

Reference:
https://quickview.cloudapps.cisco.com/quickview/bug/CSCvs59062
Comment 1 Guilherme de Almeida Suckevicz 2020-02-10 19:08:46 UTC 
Created clamav tracking bugs for this issue:

Affects: epel-all [bug 1801393]
Affects: fedora-all [bug 1801392]
Comment 2 Orion Poplawski 2020-02-10 20:13:31 UTC 
This was introduced in 0.102.0 and fixed in 0.102.2.  0.102.0 and 0.102.1 were never released in Fedora.
Note You need to log in before you can comment on or make changes to this bug.