Revision Date: | 2020-12-22 | Version: | 1 |
Title: | Security update for clamav (Important) |
Description: |
This update for clamav fixes the following issues:
clamav was updated to 0.103.0 to implement jsc#ECO-3010 and bsc#1118459.
clamd can now reload the signature database without blocking scanning. This multi-threaded database reload improvement was made possible thanks to a community effort. - Non-blocking database reloads are now the default behavior. Some systems that are more constrained on RAM may need to disable non-blocking reloads as it will temporarily consume two times as much memory. We added a new clamd config option ConcurrentDatabaseReload, which may be set to no. * Fix clamav-milter.service (requires clamd.service to run) * bsc#1119353, clamav-fips.patch: Fix freshclam crash in FIPS mode. * Partial sync with SLE15.
Update to version 0.102.4
Accumulated security fixes:
CVE-2020-3350: Fix a vulnerability wherein a malicious user could replace a scan target's directory with a symlink to another path to trick clamscan, clamdscan, or clamonacc into removing or moving a different file (eg. a critical system file). The issue would affect users that use the --move or --remove options for clamscan, clamdscan, and clamonacc. (bsc#1174255) * CVE-2020-3327: Fix a vulnerability in the ARJ archive parsing module in ClamAV 0.102.3 that could cause a Denial-of-Service (DoS) condition. Improper bounds checking results in an out-of-bounds read which could cause a crash. The previous fix for this CVE in 0.102.3 was incomplete. This fix correctly resolves the issue. * CVE-2020-3481: Fix a vulnerability in the EGG archive module in ClamAV 0.102.0 - 0.102.3 could cause a Denial-of-Service (DoS) condition. Improper error handling may result in a crash due to a NULL pointer dereference. This vulnerability is mitigated for those using the official ClamAV signature databases because the file type signatures in daily.cvd will not enable the EGG archive parser in versions affected by the vulnerability. (bsc#1174250) * CVE-2020-3341: Fix a vulnerability in the PDF parsing module in ClamAV 0.101 - 0.102.2 that could cause a Denial-of-Service (DoS) condition. Improper size checking of a buffer used to initialize AES decryption routines results in an out-of-bounds read which may cause a crash. (bsc#1171981) * CVE-2020-3123: A denial-of-service (DoS) condition may occur when using the optional credit card data-loss-prevention (DLP) feature. Improper bounds checking of an unsigned variable resulted in an out-of-bounds read, which causes a crash. * CVE-2019-15961: A Denial-of-Service (DoS) vulnerability may occur when scanning a specially crafted email file as a result of excessively long scan times. The issue is resolved by implementing several maximums in parsing MIME messages and by optimizing use of memory allocation. (bsc#1157763). * CVE-2019-12900: An out of bounds write in the NSIS bzip2 (bsc#1149458) * CVE-2019-12625: Introduce a configurable time limit to mitigate zip bomb vulnerability completely. Default is 2 minutes, configurable useing the clamscan --max-scantime and for clamd using the MaxScanTime config option (bsc#1144504)
Update to version 0.101.3:
ZIP bomb causes extreme CPU spikes (bsc#1144504)
Update to version 0.101.2 (bsc#1118459):
Support for RAR v5 archive extraction. * Incompatible changes to the arguments of cl_scandesc, cl_scandesc_callback, and cl_scanmap_callback. * Scanning options have been converted from a single flag bit-field into a structure of multiple categorized flag bit-fields. * The CL_SCAN_HEURISTIC_ENCRYPTED scan option was replaced by 2 new scan options: CL_SCAN_HEURISTIC_ENCRYPTED_ARCHIVE, and CL_SCAN_HEURISTIC_ENCRYPTED_DOC * Incompatible clamd.conf and command line interface changes. * Heuristic Alerts' (aka 'Algorithmic Detection') options have been changed to make the names more consistent. The original options are deprecated in 0.101, and will be removed in a future feature release. * For details, see https://blog.clamav.net/2018/12/clamav-01010-has-been-released.html
|
Family: | unix | Class: | patch |
Status: | | Reference(s): | 1051510 1058115 1065600 1065729 1082555 1083647 1089895 1103990 1103991 1103992 1104745 1109837 1111666 1112178 1112374 1113956 1114279 1117602 1118459 1119353 1124278 1124493 1127354 1127355 1127371 1129452 1133021 1133375 1142685 1144333 1144504 1149458 1149841 1151021 1151794 1152489 1154824 1155798 1157169 1157763 1158265 1160388 1160947 1164780 1164871 1164903 1165183 1165478 1165692 1165741 1166969 1166978 1167574 1167851 1167867 1168332 1168468 1168670 1168789 1169020 1169365 1169514 1169525 1169762 1169832 1170056 1170125 1170145 1170284 1170345 1170457 1170522 1170592 1170617 1170618 1170620 1170621 1170770 1170778 1170791 1170826 1170901 1171078 1171098 1171118 1171189 1171191 1171195 1171202 1171205 1171214 1171217 1171218 1171219 1171220 1171244 1171293 1171417 1171456 1171457 1171458 1171527 1171599 1171600 1171601 1171602 1171604 1171605 1171606 1171607 1171608 1171609 1171610 1171611 1171612 1171613 1171614 1171615 1171616 1171617 1171618 1171619 1171620 1171621 1171622 1171623 1171624 1171625 1171626 1171662 1171675 1171679 1171688 1171691 1171692 1171694 1171695 1171736 1171817 1171948 1171949 1171951 1171952 1171979 1171981 1171982 1171983 1172017 1172096 1172097 1172098 1172099 1172101 1172102 1172103 1172104 1172127 1172130 1172185 1172188 1172199 1172201 1172202 1172221 1172249 1172251 1172317 1172342 1172343 1172344 1172366 1172378 1172391 1172397 1172453 1172868 1174003 1174098 1174117 1174121 1174153 1174191 1174250 1174255 1174977 1175599 1175621 1175807 1175992 1176012 1176019 1176072 1176382 1176400 1176896 1176907 1176979 1177090 1177109 1177121 1177193 1177194 1177206 1177258 1177271 1177283 1177284 1177285 1177286 1177297 1177384 1177511 1177617 1177681 1177683 1177687 1177694 1177697 1177719 1177724 1177725 1177726 954532 CVE-2004-2771 CVE-2009-2625 CVE-2009-2694 CVE-2009-2703 CVE-2009-3026 CVE-2009-3083 CVE-2009-3084 CVE-2009-3085 CVE-2009-3560 CVE-2009-3615 CVE-2009-3720 CVE-2010-0013 CVE-2010-0277 CVE-2010-0420 CVE-2010-0423 CVE-2010-1624 CVE-2010-2528 CVE-2010-3711 CVE-2011-1091 CVE-2011-3594 CVE-2012-0876 CVE-2012-1147 CVE-2012-1148 CVE-2012-1152 CVE-2012-2214 CVE-2012-2369 CVE-2012-3374 CVE-2012-6152 CVE-2013-0271 CVE-2013-0272 CVE-2013-0273 CVE-2013-0274 CVE-2013-6393 CVE-2013-6477 CVE-2013-6478 CVE-2013-6479 CVE-2013-6481 CVE-2013-6482 CVE-2013-6483 CVE-2013-6484 CVE-2013-6485 CVE-2013-6486 CVE-2013-6487 CVE-2014-0020 CVE-2014-2525 CVE-2014-3695 CVE-2014-3696 CVE-2014-3698 CVE-2014-7844 CVE-2014-9130 CVE-2018-1000199 CVE-2018-17957 CVE-2019-12900 CVE-2019-14835 CVE-2019-15961 CVE-2019-19462 CVE-2019-20806 CVE-2019-20812 CVE-2019-3820 CVE-2019-9455 CVE-2019-9928 CVE-2020-0431 CVE-2020-0543 CVE-2020-10690 CVE-2020-10711 CVE-2020-10720 CVE-2020-10732 CVE-2020-10751 CVE-2020-10757 CVE-2020-10957 CVE-2020-10958 CVE-2020-10967 CVE-2020-12114 CVE-2020-12351 CVE-2020-12352 CVE-2020-12464 CVE-2020-12652 CVE-2020-12653 CVE-2020-12654 CVE-2020-12655 CVE-2020-12656 CVE-2020-12657 CVE-2020-12659 CVE-2020-12768 CVE-2020-12769 CVE-2020-13143 CVE-2020-13934 CVE-2020-13935 CVE-2020-14039 CVE-2020-14381 CVE-2020-14386 CVE-2020-15586 CVE-2020-16845 CVE-2020-24394 CVE-2020-24490 CVE-2020-25212 CVE-2020-25641 CVE-2020-25643 CVE-2020-25645 CVE-2020-3123 CVE-2020-3327 CVE-2020-3341 CVE-2020-3350 CVE-2020-3481 SUSE-SU-2018:4209-1 SUSE-SU-2019:1459-1 SUSE-SU-2020:1300-2 SUSE-SU-2020:1338-1 SUSE-SU-2020:1379-1 SUSE-SU-2020:1604-1 SUSE-SU-2020:2045-1 SUSE-SU-2020:2562-1 SUSE-SU-2020:2980-1 SUSE-SU-2020:3918-1
|
Platform(s): | openSUSE Leap 15.0 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 SUSE Linux Enterprise Module for Development Tools 15 SP1 SUSE Linux Enterprise Module for Development Tools 15 SP2 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SP2 SUSE Linux Enterprise Module for Public Cloud 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8
| Product(s): | |
Definition Synopsis |
openSUSE Leap 15.0 is installed AND libopenjp2-7-2.3.0-lp150.1 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Desktop 11 SP3 is installed
AND Package Information
MozillaFirefox-38.3.0esr-22 is installed
OR MozillaFirefox-translations-38.3.0esr-22 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Desktop 11 SP4 is installed
AND Package Information
ecryptfs-utils-61-1.35 is installed
OR ecryptfs-utils-32bit-61-1.35 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Desktop 12 SP1 is installed
AND Package Information
finch-2.10.9-8 is installed
OR libpurple-2.10.9-8 is installed
OR libpurple-lang-2.10.9-8 is installed
OR libpurple-meanwhile-2.10.9-8 is installed
OR libpurple-tcl-2.10.9-8 is installed
OR pidgin-2.10.9-8 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Desktop 12 SP2 is installed
AND Package Information
libFLAC++6-1.3.0-11 is installed
OR libFLAC++6-32bit-1.3.0-11 is installed
OR libFLAC8-1.3.0-11 is installed
OR libFLAC8-32bit-1.3.0-11 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Desktop 12 SP3 is installed
AND Package Information
gvim-7.4.326-16 is installed
OR vim-7.4.326-16 is installed
OR vim-data-7.4.326-16 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Desktop 12 SP4 is installed
AND Package Information
MozillaFirefox-52.9.0esr-109.38 is installed
OR MozillaFirefox-translations-52.9.0esr-109.38 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed
AND Package Information
gstreamer-plugins-base-1.12.5-3.3 is installed
OR libgstaudio-1_0-0-32bit-1.12.5-3.3 is installed
OR libgsttag-1_0-0-32bit-1.12.5-3.3 is installed
OR libgstvideo-1_0-0-32bit-1.12.5-3.3 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed
AND rpmlint-mini-1.10-7.8 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Module for Development Tools 15 SP2 is installed
AND Package Information
go1.14-1.14.7-1.15 is installed
OR go1.14-doc-1.14.7-1.15 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
AND Package Information
kernel-livepatch-4_12_14-197_10-default-2-2 is installed
OR kernel-livepatch-SLE15-SP1_Update_3-2-2 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Module for Live Patching 15 SP2 is installed
AND Package Information
kernel-default-5.3.18-24.29 is installed
OR kernel-default-livepatch-5.3.18-24.29 is installed
OR kernel-default-livepatch-devel-5.3.18-24.29 is installed
OR kernel-livepatch-5_3_18-24_29-default-1-5.3 is installed
OR kernel-livepatch-SLE15-SP2_Update_5-1-5.3 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed
AND Package Information
kernel-azure-4.12.14-8.33 is installed
OR kernel-azure-base-4.12.14-8.33 is installed
OR kernel-azure-devel-4.12.14-8.33 is installed
OR kernel-devel-azure-4.12.14-8.33 is installed
OR kernel-source-azure-4.12.14-8.33 is installed
OR kernel-syms-azure-4.12.14-8.33 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Module for Server Applications 15 is installed
AND yast2-rmt-1.1.2-3.11 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP1 is installed
AND busybox-1.21.1-3 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP1-LTSS is installed
AND Package Information
java-1_7_1-ibm-1.7.1_sr4.10-38.5 is installed
OR java-1_7_1-ibm-alsa-1.7.1_sr4.10-38.5 is installed
OR java-1_7_1-ibm-devel-1.7.1_sr4.10-38.5 is installed
OR java-1_7_1-ibm-jdbc-1.7.1_sr4.10-38.5 is installed
OR java-1_7_1-ibm-plugin-1.7.1_sr4.10-38.5 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP2 is installed
AND hardlink-1.0-6 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP2-BCL is installed
AND Package Information
perl-5.18.2-12.14 is installed
OR perl-32bit-5.18.2-12.14 is installed
OR perl-base-5.18.2-12.14 is installed
OR perl-doc-5.18.2-12.14 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
AND Package Information
xen-4.7.6_05-43.42 is installed
OR xen-doc-html-4.7.6_05-43.42 is installed
OR xen-libs-4.7.6_05-43.42 is installed
OR xen-libs-32bit-4.7.6_05-43.42 is installed
OR xen-tools-4.7.6_05-43.42 is installed
OR xen-tools-domU-4.7.6_05-43.42 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP2-LTSS is installed
AND Package Information
kgraft-patch-4_4_120-92_70-default-3-2 is installed
OR kgraft-patch-SLE12-SP2_Update_20-3-2 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP3 is installed
AND Package Information
augeas-1.2.0-15 is installed
OR augeas-lenses-1.2.0-15 is installed
OR libaugeas0-1.2.0-15 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
AND Package Information
libvirt-3.3.0-5.40 is installed
OR libvirt-admin-3.3.0-5.40 is installed
OR libvirt-client-3.3.0-5.40 is installed
OR libvirt-daemon-3.3.0-5.40 is installed
OR libvirt-daemon-config-network-3.3.0-5.40 is installed
OR libvirt-daemon-config-nwfilter-3.3.0-5.40 is installed
OR libvirt-daemon-driver-interface-3.3.0-5.40 is installed
OR libvirt-daemon-driver-libxl-3.3.0-5.40 is installed
OR libvirt-daemon-driver-lxc-3.3.0-5.40 is installed
OR libvirt-daemon-driver-network-3.3.0-5.40 is installed
OR libvirt-daemon-driver-nodedev-3.3.0-5.40 is installed
OR libvirt-daemon-driver-nwfilter-3.3.0-5.40 is installed
OR libvirt-daemon-driver-qemu-3.3.0-5.40 is installed
OR libvirt-daemon-driver-secret-3.3.0-5.40 is installed
OR libvirt-daemon-driver-storage-3.3.0-5.40 is installed
OR libvirt-daemon-driver-storage-core-3.3.0-5.40 is installed
OR libvirt-daemon-driver-storage-disk-3.3.0-5.40 is installed
OR libvirt-daemon-driver-storage-iscsi-3.3.0-5.40 is installed
OR libvirt-daemon-driver-storage-logical-3.3.0-5.40 is installed
OR libvirt-daemon-driver-storage-mpath-3.3.0-5.40 is installed
OR libvirt-daemon-driver-storage-rbd-3.3.0-5.40 is installed
OR libvirt-daemon-driver-storage-scsi-3.3.0-5.40 is installed
OR libvirt-daemon-hooks-3.3.0-5.40 is installed
OR libvirt-daemon-lxc-3.3.0-5.40 is installed
OR libvirt-daemon-qemu-3.3.0-5.40 is installed
OR libvirt-daemon-xen-3.3.0-5.40 is installed
OR libvirt-doc-3.3.0-5.40 is installed
OR libvirt-libs-3.3.0-5.40 is installed
OR libvirt-lock-sanlock-3.3.0-5.40 is installed
OR libvirt-nss-3.3.0-5.40 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP3-LTSS is installed
AND clamav-0.100.3-33.29 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
AND Package Information
libprocps3-3.3.9-11.14 is installed
OR procps-3.3.9-11.14 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP4 is installed
AND Package Information
cracklib-2.9.0-7 is installed
OR libcrack2-2.9.0-7 is installed
OR libcrack2-32bit-2.9.0-7 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 15-LTSS is installed
AND Package Information
dovecot23-2.3.10-4.22 is installed
OR dovecot23-backend-mysql-2.3.10-4.22 is installed
OR dovecot23-backend-pgsql-2.3.10-4.22 is installed
OR dovecot23-backend-sqlite-2.3.10-4.22 is installed
OR dovecot23-devel-2.3.10-4.22 is installed
OR dovecot23-fts-2.3.10-4.22 is installed
OR dovecot23-fts-lucene-2.3.10-4.22 is installed
OR dovecot23-fts-solr-2.3.10-4.22 is installed
OR dovecot23-fts-squat-2.3.10-4.22 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed
AND clamav-0.103.0-33.32.1 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server for SAP Applications 15 is installed
AND Package Information
tomcat-9.0.36-3.65 is installed
OR tomcat-admin-webapps-9.0.36-3.65 is installed
OR tomcat-el-3_0-api-9.0.36-3.65 is installed
OR tomcat-jsp-2_3-api-9.0.36-3.65 is installed
OR tomcat-lib-9.0.36-3.65 is installed
OR tomcat-servlet-4_0-api-9.0.36-3.65 is installed
OR tomcat-webapps-9.0.36-3.65 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Workstation Extension 15 is installed
AND Package Information
gnome-shell-3.26.2+20180130.0d9c74212-4.19 is installed
OR gnome-shell-calendar-3.26.2+20180130.0d9c74212-4.19 is installed
|
Definition Synopsis |
SUSE OpenStack Cloud 6 is installed
AND python-Pillow-2.7.0-1 is installed
|
Definition Synopsis |
SUSE OpenStack Cloud 7 is installed
AND Package Information
ntp-4.2.8p12-64.8 is installed
OR ntp-doc-4.2.8p12-64.8 is installed
|
Definition Synopsis |
SUSE OpenStack Cloud 8 is installed
AND cobbler-2.6.6-49.14 is installed
|
Definition Synopsis |
SUSE OpenStack Cloud Crowbar 8 is installed
AND Package Information
perl-5.18.2-12.20 is installed
OR perl-32bit-5.18.2-12.20 is installed
OR perl-base-5.18.2-12.20 is installed
OR perl-doc-5.18.2-12.20 is installed
|