Secunia Logo
Netsikker nu! 2008
 Vulnerability IntelligenceVulnerability ScanningBlog - new entry!Corporate InformationOnline ShopCustomer Login  
 Secunia AdvisoriesSecunia ResearchBinary Analysis  
Home > Vulnerability Intelligence > Secunia Advisories > SUSE update for clamav
Secunia Advisories
Advisories
Search
Advisories by Product
Advisories by Vendor
Historic Advisories
Mailing Lists & RSS
Report Vulnerability
Contact Form
Business Solutions Restricted
Partner Solutions Restricted
About
 
SUSE update for clamav
Secunia Advisory: SA29891
Advisory Toolbox:
Issue ticket
Save in to-do list
Mark as handled
Exploit information
Download as PDF
Review actions
Add comment
Release Date: 2008-04-25
Popularity: 6,097 views

Critical:
Highly critical
Impact: Security Bypass
DoS
System access
Where: From remote
Solution Status: Vendor Patch

OS:openSUSE 10.2
openSUSE 10.3
SUSE Linux 10.1
SUSE Linux Enterprise Server 10
SUSE Linux Enterprise Server 9

Software:Novell Open Enterprise Server 1.x
Subscribe: Instant alerts on relevant vulnerabilities

CVE reference:CVE-2007-6595
CVE-2007-6596
CVE-2008-0314
CVE-2008-1100
CVE-2008-1387
CVE-2008-1833
CVE-2008-1835
CVE-2008-1836
CVE-2008-1837
Description:
SUSE has issued an update for clamav. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, to cause a DoS (Denial of Service), or to compromise a vulnerable system.

For more information:
SA29000

Solution:
Apply updated packages.

x86 Platform:

openSUSE 10.3:
http://download.opensuse.org/pub/open.../rpm/i586/klamav-0.41.1-32.3.i586.rpm
5f062d237d2e2b467c04249d7ab4eaff

openSUSE 10.2:
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/clamav-0.93-0.3.i586.rpm
5c1208a1568ce8406cffbad97c17d5cd
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/clamav-db-0.93-0.3.i586.rpm
cc3797fc934ca8a7d36e951aedfd1205
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/klamav-0.41.1-17.4.i586.rpm
2d4a630d9477ad647c5f043a2061eec9

SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/clamav-0.93-0.6.i586.rpm
bae48419bbd6d98158b43a27d2e4ae26
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/clamav-db-0.93-0.6.i586.rpm
24c9cee54b8921b2c3896218ebf653fc

openSUSE 10.3:
http://download.opensuse.org/pub/open...0.3/rpm/i586/clamav-0.93-0.3.i586.rpm
cb1b5ad1c50971cd67a969641eb09b5b
http://download.opensuse.org/pub/open.../rpm/i586/clamav-db-0.93-0.3.i586.rpm
05c5ad3009b29ce730089376c4e94437

Power PC Platform:

openSUSE 10.3:
http://download.opensuse.org/pub/open.../10.3/rpm/ppc/clamav-0.93-0.3.ppc.rpm
0e6fd8ae2c47f5cf35671cf268c472a7
http://download.opensuse.org/pub/open....3/rpm/ppc/clamav-db-0.93-0.3.ppc.rpm
67bcdf76348f56ecf7e6e7f44551e58f
http://download.opensuse.org/pub/open....3/rpm/ppc/klamav-0.41.1-32.3.ppc.rpm
9d0be2b87217d54485717178877d0e27

openSUSE 10.2:
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/clamav-0.93-0.3.ppc.rpm
feea77a7898ef22fee24db6990dfcd53
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/clamav-db-0.93-0.3.ppc.rpm
c557477dfa4437292b476064b9008ce5
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/klamav-0.41.1-17.4.ppc.rpm
465357407c32c4b3f2858923dcf1fa79

SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/clamav-0.93-0.6.ppc.rpm
aefcb66e85016ea7ffac9ec90f07b941
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/clamav-db-0.93-0.6.ppc.rpm
c41dab747d0917115afca974dbf71f56

x86-64 Platform:

openSUSE 10.3:
http://download.opensuse.org/pub/open...rpm/x86_64/clamav-0.93-0.3.x86_64.rpm
b52b015df19d50ed90d59aaef2359695
http://download.opensuse.org/pub/open.../x86_64/clamav-db-0.93-0.3.x86_64.rpm
60450bcf1b6e77d9c401f39e53c80b80
http://download.opensuse.org/pub/open.../x86_64/klamav-0.41.1-32.3.x86_64.rpm
6889d3a67a917066a36a8f29dea43b60

openSUSE 10.2:
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/clamav-0.93-0.3.x86_64.rpm
6ad977899b59f5dc29c3499b57794fe2
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/clamav-db-0.93-0.3.x86_64.rpm
b69ab97fc38e5156fd14997621070521
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/klamav-0.41.1-17.4.x86_64.rpm
dfa9b572d5e7756ee3f7c9f515430fcb

SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/clamav-0.93-0.6.x86_64.rpm
d823bff9b6bd7a8363577d452cf32f85
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/clamav-db-0.93-0.6.x86_64.rpm
9fa30054ab60358dd34227fc1ba534c4

Sources:

SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/src/clamav-0.93-0.6.src.rpm
46330515b9c6195b80df21260727c917

openSUSE 10.3:
http://download.opensuse.org/pub/open.../10.3/rpm/src/clamav-0.93-0.3.src.rpm
b69d60de1059e37b16f1b8f4b6fdbcb0
http://download.opensuse.org/pub/open....3/rpm/src/klamav-0.41.1-32.3.src.rpm
e6dc89b046f7cb3649b480d0979d67c4

openSUSE 10.2:
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/clamav-0.93-0.3.src.rpm
4dfc2359d565c5584eed51fb0b6477cd
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/klamav-0.41.1-17.4.src.rpm
69b4f005d5e1910f817c9a6a2d9fc227

Original Advisory:
http://www.novell.com/linux/security/advisories/2008_24_clamav.html

Other References:
SA29000:
http://secunia.com/advisories/29000/

Track this Secunia Advisory
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.

Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.

About this Secunia Advisory
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.

Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
  
Latest Advisories

10th Oct, 2008
New advisories: 15
New vulnerabilities: 83
Updated advisories: 41

Moderately // 633 views
ScriptsEz Easy Image Downloader "id" File Disclosure Vulnerability
Moderately // 627 views
Built2go Real Estate Listings "event_id" SQL Injection
Highly // 896 views
Sun Java System Web Proxy Server FTP Subsystem Buffer Overflow
Moderately // 662 views
Red Hat update for cups
Highly // 667 views
DFF PHP Framework API "DFF_config[dir_incl ude]" File Inclusion Vulnerabilities
Not // 740 views
FUJITSU Interstage Products Apache Tomcat Security Bypass
Moderately // 987 views
Apple Mac OS X Security Update Fixes Multiple Vulnerabilities
Moderately // 641 views
Fedora update for condor
Moderately // 1,020 views
CUPS Multiple Vulnerabilities
Not // 704 views
Gentoo Portage Insecure Python Module Search Path Security Issue

Solutions | More...  

Send Feedback to Secunia
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.

Ideas, suggestions, and other feedback are most welcome.

Most Popular - 3 Hours

1. Sun Java System Web Proxy Server FTP Subsystem Buffer Overflow // 28 views
2. CA ARCserve Backup Multiple Vulnerabilities // 27 views
3. phpBB Avatar Script Insertion Vulnerability // 26 views
4. ScriptsEz Easy Image Downloader "id" File Disclosure Vulnerability // 24 views
5. phpBB "gen_rand_string()" Predictable RNG Weakness // 23 views
6. FUJITSU Interstage Products Apache Tomcat Security Bypass // 23 views
7. Red Hat update for cups // 22 views
8. Apple Mac OS X Security Update Fixes Multiple Vulnerabilities // 22 views
9. Opera Multiple Vulnerabilities // 22 views
10. DFF PHP Framework API "DFF_config[dir_include]" File Inclusion Vulnerabilities // 20 views



Contact | Terms & Conditions and Copyright | Report Vulnerability | Press | Jobs | About Secunia
Copyright Secunia 2002-2008