Amazon Linux AMI update for clamav

Published: 2019-01-13 12:26:27
Severity Low
Patch available YES
Number of vulnerabilities 5
CVE ID CVE-2018-14679
CVE-2018-14682
CVE-2018-15378
CVE-2018-14680
CVE-2018-14681
CVSSv3 5 [CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C]
5 [CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C]
6.5 [CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]
5 [CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C]
7.9 [CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:P/RL:O/RC:C]
CWE ID CWE-121
CWE-125
CWE-20
Exploitation vector Network
Public exploit Public exploit code for vulnerability #1 is available.
Public exploit code for vulnerability #2 is available.
Public exploit code for vulnerability #4 is available.
Public exploit code for vulnerability #5 is available.
Vulnerable software Amazon Linux AMI
Vulnerable software versions Amazon Linux AMI 2017.03
Vendor URL Amazon Web Services, Inc.

Security Advisory

1) Stack-based buffer overflow

Description

The vulnerability allows a local attacker to cause DoS condition on the target system.

The vulnerability exists due to stack-based buffer overflow the read_chunk function, as defined in the mspack/chmd.c source code file. A local attacker can send a specially crafted request that submits malicious input, trigger memory corruption and cause the service to crash.

Remediation

Update the affected packages.

i686:
    clamav-lib-0.100.2-2.35.amzn1.i686
    clamav-milter-0.100.2-2.35.amzn1.i686
    clamav-0.100.2-2.35.amzn1.i686
    clamav-debuginfo-0.100.2-2.35.amzn1.i686
    clamav-db-0.100.2-2.35.amzn1.i686
    clamav-update-0.100.2-2.35.amzn1.i686
    clamd-0.100.2-2.35.amzn1.i686
    clamav-devel-0.100.2-2.35.amzn1.i686

noarch:
    clamav-filesystem-0.100.2-2.35.amzn1.noarch
    clamav-data-0.100.2-2.35.amzn1.noarch

src:
    clamav-0.100.2-2.35.amzn1.src

x86_64:
    clamav-lib-0.100.2-2.35.amzn1.x86_64
    clamav-milter-0.100.2-2.35.amzn1.x86_64
    clamav-db-0.100.2-2.35.amzn1.x86_64
    clamav-debuginfo-0.100.2-2.35.amzn1.x86_64
    clamd-0.100.2-2.35.amzn1.x86_64
    clamav-devel-0.100.2-2.35.amzn1.x86_64
    clamav-update-0.100.2-2.35.amzn1.x86_64
    clamav-0.100.2-2.35.amzn1.x86_64

External links

https://alas.aws.amazon.com/ALAS-2019-1146.html

2) Stack-based buffer overflow

Description

The vulnerability allows a local attacker to cause DoS condition on the target system.

The vulnerability exists due to stack-based buffer overflow in the tolower macro, as defined in the mspack/chmd.c source code file. A local attacker can send a specially crafted request that submits malicious input, trigger memory corruption and cause the service to crash.

Remediation

Update the affected packages.

i686:
    clamav-lib-0.100.2-2.35.amzn1.i686
    clamav-milter-0.100.2-2.35.amzn1.i686
    clamav-0.100.2-2.35.amzn1.i686
    clamav-debuginfo-0.100.2-2.35.amzn1.i686
    clamav-db-0.100.2-2.35.amzn1.i686
    clamav-update-0.100.2-2.35.amzn1.i686
    clamd-0.100.2-2.35.amzn1.i686
    clamav-devel-0.100.2-2.35.amzn1.i686

noarch:
    clamav-filesystem-0.100.2-2.35.amzn1.noarch
    clamav-data-0.100.2-2.35.amzn1.noarch

src:
    clamav-0.100.2-2.35.amzn1.src

x86_64:
    clamav-lib-0.100.2-2.35.amzn1.x86_64
    clamav-milter-0.100.2-2.35.amzn1.x86_64
    clamav-db-0.100.2-2.35.amzn1.x86_64
    clamav-debuginfo-0.100.2-2.35.amzn1.x86_64
    clamd-0.100.2-2.35.amzn1.x86_64
    clamav-devel-0.100.2-2.35.amzn1.x86_64
    clamav-update-0.100.2-2.35.amzn1.x86_64
    clamav-0.100.2-2.35.amzn1.x86_64

External links

https://alas.aws.amazon.com/ALAS-2019-1146.html

3) Buffer over-read

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a boundary condition related to MEW unpacker within the unmew11() function in libclamav/mew.c. A remote attacker can create a specially crafted EXE file, pass it to vulnerable application and trigger invalid memory read.

Remediation

Update the affected packages.

i686:
    clamav-lib-0.100.2-2.35.amzn1.i686
    clamav-milter-0.100.2-2.35.amzn1.i686
    clamav-0.100.2-2.35.amzn1.i686
    clamav-debuginfo-0.100.2-2.35.amzn1.i686
    clamav-db-0.100.2-2.35.amzn1.i686
    clamav-update-0.100.2-2.35.amzn1.i686
    clamd-0.100.2-2.35.amzn1.i686
    clamav-devel-0.100.2-2.35.amzn1.i686

noarch:
    clamav-filesystem-0.100.2-2.35.amzn1.noarch
    clamav-data-0.100.2-2.35.amzn1.noarch

src:
    clamav-0.100.2-2.35.amzn1.src

x86_64:
    clamav-lib-0.100.2-2.35.amzn1.x86_64
    clamav-milter-0.100.2-2.35.amzn1.x86_64
    clamav-db-0.100.2-2.35.amzn1.x86_64
    clamav-debuginfo-0.100.2-2.35.amzn1.x86_64
    clamd-0.100.2-2.35.amzn1.x86_64
    clamav-devel-0.100.2-2.35.amzn1.x86_64
    clamav-update-0.100.2-2.35.amzn1.x86_64
    clamav-0.100.2-2.35.amzn1.x86_64

External links

https://alas.aws.amazon.com/ALAS-2019-1146.html

4) Improper input validation

Description

The vulnerability allows a local attacker to cause DoS condition on the target system.

The vulnerability exists due to the chmd_read_headers() function, as defined in the mspack/chmd.c source code file of the affected software, does not reject blank CHM filenames. A local attacker can submit a CHM file with a blank filename and cause the service to crash.

Remediation

Update the affected packages.

i686:
    clamav-lib-0.100.2-2.35.amzn1.i686
    clamav-milter-0.100.2-2.35.amzn1.i686
    clamav-0.100.2-2.35.amzn1.i686
    clamav-debuginfo-0.100.2-2.35.amzn1.i686
    clamav-db-0.100.2-2.35.amzn1.i686
    clamav-update-0.100.2-2.35.amzn1.i686
    clamd-0.100.2-2.35.amzn1.i686
    clamav-devel-0.100.2-2.35.amzn1.i686

noarch:
    clamav-filesystem-0.100.2-2.35.amzn1.noarch
    clamav-data-0.100.2-2.35.amzn1.noarch

src:
    clamav-0.100.2-2.35.amzn1.src

x86_64:
    clamav-lib-0.100.2-2.35.amzn1.x86_64
    clamav-milter-0.100.2-2.35.amzn1.x86_64
    clamav-db-0.100.2-2.35.amzn1.x86_64
    clamav-debuginfo-0.100.2-2.35.amzn1.x86_64
    clamd-0.100.2-2.35.amzn1.x86_64
    clamav-devel-0.100.2-2.35.amzn1.x86_64
    clamav-update-0.100.2-2.35.amzn1.x86_64
    clamav-0.100.2-2.35.amzn1.x86_64

External links

https://alas.aws.amazon.com/ALAS-2019-1146.html

5) Stack-based buffer overflow

Description

The vulnerability allows a local attacker to gain elevated privileges on the target system.

The vulnerability exists due to stack-based buffer overflow in the kwajd_read_headers function, as defined in the mspack/kwajd.c source code file. A local attacker can send a specially crafted request that submits malicious input, trigger memory corruption and cause the service to crash or execute arbitrary code with elevated privileges.

Successful exploitation of the vulnerability may result in system compromise.

Remediation

Update the affected packages.

i686:
    clamav-lib-0.100.2-2.35.amzn1.i686
    clamav-milter-0.100.2-2.35.amzn1.i686
    clamav-0.100.2-2.35.amzn1.i686
    clamav-debuginfo-0.100.2-2.35.amzn1.i686
    clamav-db-0.100.2-2.35.amzn1.i686
    clamav-update-0.100.2-2.35.amzn1.i686
    clamd-0.100.2-2.35.amzn1.i686
    clamav-devel-0.100.2-2.35.amzn1.i686

noarch:
    clamav-filesystem-0.100.2-2.35.amzn1.noarch
    clamav-data-0.100.2-2.35.amzn1.noarch

src:
    clamav-0.100.2-2.35.amzn1.src

x86_64:
    clamav-lib-0.100.2-2.35.amzn1.x86_64
    clamav-milter-0.100.2-2.35.amzn1.x86_64
    clamav-db-0.100.2-2.35.amzn1.x86_64
    clamav-debuginfo-0.100.2-2.35.amzn1.x86_64
    clamd-0.100.2-2.35.amzn1.x86_64
    clamav-devel-0.100.2-2.35.amzn1.x86_64
    clamav-update-0.100.2-2.35.amzn1.x86_64
    clamav-0.100.2-2.35.amzn1.x86_64

External links

https://alas.aws.amazon.com/ALAS-2019-1146.html

Back to List