漏洞信息详情
ClamAV 资源管理错误漏洞
- CNNVD编号:CNNVD-200809-131
- 危害等级: 中危
- CVE编号: CVE-2008-3912
- 漏洞类型: 资源管理错误
- 发布时间: 2007-10-14
- 威胁类型: 远程
- 更新时间: 2020-11-12
- 厂 商: clam_anti-virus
- 漏洞来源: Luigi Auriemma※ al...
漏洞简介
ClamAV(Clam AntiVirus)是ClamAV团队的一套免费且开源的杀毒软件。该软件用于检测木马、病毒、恶意软件和其他恶意威胁。
ClamAV 0.94之前版本中libclamav存在安全漏洞。
攻击这可通过造成内存越界相关的攻击方式,导致空指针引用及程序崩溃,产生拒绝服务
漏洞公告
目前厂商已经发布了升级补丁以修复此安全问题,补丁获取链接:
http://www.clamav.net/download/
参考网址
来源:SUSE
链接:http://lists.opensuse.org/opensuse-security-announce/2008-09/msg00004.HTML
来源:SECUNIA
链接:http://secunia.com/advisories/31906
来源:MLIST
链接:http://www.openwall.com/lists/oss-security/2008/09/04/13
来源:FEDORA
链接:https://www.redhat.com/archives/fedora-package-announce/2008-November/msg00348.HTML
来源:CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple
链接:http://lists.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/archives/security-announce/2008/Oct/msg00001.HTML
来源:BID
链接:http://www.securityfocus.com/bid/31681
来源:BID
链接:https://www.securityfocus.com/bid/31681
来源:VUPEN
链接:http://www.vupen.com/english/advisories/2008/2780
来源:SECUNIA
链接:http://secunia.com/advisories/32699
来源:SECUNIA
链接:http://secunia.com/advisories/31982
来源:VUPEN
链接:http://www.vupen.com/english/advisories/2008/2564
来源:MISC
链接:https://wwws.clamav.net/bugzilla/show_bug.cgi?id=1141
来源:MANDRIVA
链接:http://www.mandriva.com/security/advisories?name=MDVSA-2008:189
来源:CONFIRM
链接:http://sourceforge.net/project/shownotes.php?group_id=86638&release_id=623661
来源:XF
链接:https://exchange.xforce.ibmcloud.com/vulnerabilities/45056
来源:CONFIRM
链接:http://kolab.org/security/kolab-vendor-notice-22.txt
来源:SECUNIA
链接:http://secunia.com/advisories/32030
来源:FEDORA
链接:https://www.redhat.com/archives/fedora-package-announce/2008-November/msg00332.HTML
来源:SECUNIA
链接:http://secunia.com/advisories/32222
来源:BID
链接:https://www.securityfocus.com/bid/31051
来源:DEBIAN
链接:https://www.debian.org/security/2008/dsa-1660
来源:SECUNIA
链接:http://secunia.com/advisories/32424
来源:CONFIRM
链接:http://support.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/kb/HT3216
来源:CONFIRM
链接:http://svn.clamav.net/svn/clamav-devel/trunk/ChangeLog
来源:MLIST
链接:http://www.openwall.com/lists/oss-security/2008/09/03/2
来源:BID
链接:http://www.securityfocus.com/bid/31051
来源:GENTOO
链接:http://security.gentoo.org/glsa/glsa-200809-18.xml
来源:SECTRACK
链接:http://www.securitytracker.com/id?1020828
受影响实体
- Clam_anti-Virus Clamav:0.24
- Clam_anti-Virus Clamav:0.15
- Clam_anti-Virus Clamav:.
- Clam_anti-Virus Clamav:0.11
- Clam_anti-Virus Clamav:0.12
补丁
暂无
评论