漏洞信息详情
clamav 拒绝服务漏洞
- CNNVD编号:CNNVD-201110-634
- 危害等级: 中危
- CVE编号: CVE-2011-3627
- 漏洞类型: 数字错误
- 发布时间: 2011-10-25
- 威胁类型: 远程
- 更新时间: 2012-05-08
- 厂 商: clamav
- 漏洞来源:
漏洞简介
clamav中存在漏洞。恶意用户可利用该漏洞导致DoS(拒绝服务),并可能危害易受攻击的系统。
漏洞公告
目前厂商已经发布了升级补丁以修复此安全问题,补丁获取链接:
http://www.clamav.net/lang/en/
参考网址
来源: bugzilla.redhat.com
链接:https://bugzilla.redhat.com/show_bug.cgi?id=746984
来源: UBUNTU
名称: USN-1258-1
链接:http://www.ubuntu.com/usn/USN-1258-1
来源: BID
名称: 50183
链接:http://www.securityfocus.com/bid/50183
来源: MLIST
名称: [oss-security] 20111018 CVE request: recursion level crash in clamav before 0.97.3
链接:http://www.openwall.com/lists/oss-security/2011/10/18/1
来源: SECUNIA
名称: 46826
链接:http://secunia.com/advisories/46826
来源: SECUNIA
名称: 46717
链接:http://secunia.com/advisories/46717
来源: FEDORA
名称: FEDORA-2011-15033
链接:http://lists.fedoraproject.org/pipermail/package-announce/2011-November/068942.HTML
来源: FEDORA
名称: FEDORA-2011-15119
链接:http://lists.fedoraproject.org/pipermail/package-announce/2011-November/068941.HTML
来源: FEDORA
名称: FEDORA-2011-15076
链接:http://lists.fedoraproject.org/pipermail/package-announce/2011-November/068940.HTML
来源: git.clamav.net
链接:http://git.clamav.net/gitweb?p=clamav-devel.git;a=commitdiff;h=3d664817f6ef833a17414a4ecea42004c35cc42f
来源:SECUNIA
名称:46491
链接:http://secunia.com/advisories/46491
来源:SECUNIA
名称:46563
链接:http://secunia.com/advisories/46563 来源:NSFOCUS 名称:18132 链接:http://www.nsfocus.net/vulndb/18132
受影响实体
- Clamav Clamav:0.97.2
- Clamav Clamav:0.9:Rc1
- Clamav Clamav:0.90
- Clamav Clamav:0.90.1
- Clamav Clamav:0.90.2
补丁
- clamav-devel.git-3d664817f6ef833a17414a4ecea42004c35cc42f
- clamav-0.97.3
评论