Bug 1961586 (CVE-2021-1252) - CVE-2021-1252 clamav: denial of service in Excel XLM macro parsing module
Summary: CVE-2021-1252 clamav: denial of service in Excel XLM macro parsing module
Keywords:
Status: NEW
Alias: CVE-2021-1252
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
high
high
Target Milestone: ---
Assignee: Nobody
QA Contact:
URL:
Whiteboard:
Depends On: 1961587 1961589 1961713
Blocks: 1961575
TreeView+ depends on / blocked
 
Reported: 2021-05-18 10:12 UTC by Marian Rehak
Modified: 2023-07-07 08:32 UTC (History)
12 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
A flaw was found in clamav. The Excel XLM macro parsing module can allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device due to improper error handling that may result in an infinite loop. The highest threat from this vulnerability is to system availability.
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments (Terms of Use)

Description Marian Rehak 2021-05-18 10:12:08 UTC 
A vulnerability in the Excel XLM macro parsing module in Clam AntiVirus (ClamAV) Software versions 0.103.0 and 0.103.1 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to improper error handling that may result in an infinite loop. An attacker could exploit this vulnerability by sending a crafted Excel file to an affected device. An exploit could allow the attacker to cause the ClamAV scanning process hang, resulting in a denial of service condition.

https://blog.clamav.net/2021/04/clamav-01032-security-patch-release.html
Comment 1 Marian Rehak 2021-05-18 10:13:48 UTC 
Created clamav tracking bugs for this issue:

Affects: epel-all [bug 1961589]
Affects: fedora-all [bug 1961587]
Note You need to log in before you can comment on or make changes to this bug.