CVE-2018-15378 — Out-of-bounds Read in Cisco Clamav

CWE-125 — Out-of-bounds Read8 documents7 sources

Severity

5.5MEDIUMNVD

EPSS

1.6%

top 18.11%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Clamav Clamav Canonical Ubuntu Linux +1 more

Timeline

PublishedOct 15

Latest updateMay 13

Description

A vulnerability in ClamAV versions prior to 0.100.2 could allow an attacker to cause a denial of service (DoS) condition. The vulnerability is due to an error related to the MEW unpacker within the "unmew11()" function (libclamav/mew.c), which can be exploited to trigger an invalid read memory access via a specially crafted EXE file.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages3 packages

▶CVEListV5cisco/clamavunspecified — 0.100.2

▶NVDclamav/clamav< 0.100.2

▶Debianclamav/clamav< 0.100.2+dfsg-1+3

Also affects: Debian Linux 8.0, Ubuntu Linux 12.04, 14.04, 16.04, 18.04

Patches

Patch: bugzilla.clamav.net ↗Patch: bugzilla.clamav.net ↗

🔴Vulnerability Details

GHSA

GHSA-f539-qjx8-227f: A vulnerability in ClamAV versions prior to 0↗2022-05-13

▶

OSV

CVE-2018-15378: A vulnerability in ClamAV versions prior to 0↗2018-10-15

▶

CVEList

Clam AntiVirus unmew11() Denial of Service Vulnerability↗2018-10-15

▶

📋Vendor Advisories

Ubuntu

ClamAV vulnerabilities↗2018-10-16

▶

Ubuntu

ClamAV vulnerability↗2018-10-11

▶

Debian

CVE-2018-15378: clamav - A vulnerability in ClamAV versions prior to 0.100.2 could allow an attacker to c...↗2018

▶

💬Community

Bugzilla

CVE-2018-15378 clamav: denial-of-service in MEW unpacking feature↗2018-10-05

▶