CVE-2018-1000085 — Out-of-bounds Read in Clamav

CWE-125 — Out-of-bounds Read10 documents6 sources

Severity

5.5MEDIUMNVD

EPSS

0.7%

top 27.99%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Clamav Debian Clamav Canonical Ubuntu Linux +1 more

Timeline

PublishedMar 13

Latest updateMay 14

Description

ClamAV version version 0.99.3 contains a Out of bounds heap memory read vulnerability in XAR parser, function xar_hash_check() that can result in Leaking of memory, may help in developing exploit chains.. This attack appear to be exploitable via The victim must scan a crafted XAR file. This vulnerability appears to have been fixed in after commit d96a6b8bcc7439fa7e3876207aa0a8e79c8451b6.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages4 packages

▶debiandebian/clamav< clamav 0.99.3~beta1+dfsg-1 (bookworm)

▶Debianclamav/clamav< 0.99.3~beta1+dfsg-1+3

▶Ubuntuclamav/clamav< 0.99.4+addedllvm-0ubuntu0.14.04.1+1

▶NVDclamav/clamav0.99.3

Also affects: Debian Linux 7.0, Ubuntu Linux 12.04, 14.04, 16.04, 17.10

Patches

Patch: www.openwall.com ↗Patch: github.com ↗Patch: www.openwall.com ↗

🔴Vulnerability Details

GHSA

GHSA-7p5r-r9rq-7w35: ClamAV version version 0↗2022-05-14

▶

OSV

CVE-2018-1000085: ClamAV version version 0↗2018-03-13

▶

OSV

clamav vulnerabilities↗2018-03-08

▶

📋Vendor Advisories

Ubuntu

ClamAV vulnerabilities↗2018-03-08

▶

Ubuntu

ClamAV vulnerabilities↗2018-03-08

▶

Debian

CVE-2018-1000085: clamav - ClamAV version version 0.99.3 contains a Out of bounds heap memory read vulnerab...↗2018

▶

💬Community

Bugzilla

CVE-2018-1000085 clamav: Out-of-bounds heap read in XAR parser [fedora-all]↗2018-02-26

▶

Bugzilla

CVE-2018-1000085 clamav: Out-of-bounds heap read in XAR parser [epel-all]↗2018-02-26

▶

Bugzilla

CVE-2018-1000085 clamav: Out-of-bounds heap read in XAR parser↗2018-02-26

▶