SB2018100615 - Fedora EPEL 7 update for clamav

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2018100615

SB2018100615 - Fedora EPEL 7 update for clamav

Published: October 6, 2018 Updated: April 24, 2025

Security Bulletin ID SB2018100615
Severity
Medium
Patch available
YES
Number of vulnerabilities 5
Exploitation vector Remote access
Highest impact Code execution

Breakdown by Severity

Medium 20% Low 80%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 5 secuirty vulnerabilities.


1) Buffer over-read (CVE-ID: CVE-2018-15378)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a boundary condition related to MEW unpacker within the unmew11() function in libclamav/mew.c. A remote attacker can create a specially crafted EXE file, pass it to vulnerable application and trigger invalid memory read.


2) Improper input validation (CVE-ID: CVE-2018-14680)

The vulnerability allows a local attacker to cause DoS condition on the target system.

The vulnerability exists due to the chmd_read_headers() function, as defined in the mspack/chmd.c source code file of the affected software, does not reject blank CHM filenames. A local attacker can submit a CHM file with a blank filename and cause the service to crash.


3) Stack-based buffer overflow (CVE-ID: CVE-2018-14681)

The vulnerability allows a local attacker to gain elevated privileges on the target system.

The vulnerability exists due to stack-based buffer overflow in the kwajd_read_headers function, as defined in the mspack/kwajd.c source code file. A local attacker can send a specially crafted request that submits malicious input, trigger memory corruption and cause the service to crash or execute arbitrary code with elevated privileges.

Successful exploitation of the vulnerability may result in system compromise.


4) Stack-based buffer overflow (CVE-ID: CVE-2018-14682)

The vulnerability allows a local attacker to cause DoS condition on the target system.

The vulnerability exists due to stack-based buffer overflow in the tolower macro, as defined in the mspack/chmd.c source code file. A local attacker can send a specially crafted request that submits malicious input, trigger memory corruption and cause the service to crash.


5) Stack-based buffer overflow (CVE-ID: CVE-2018-14679)

The vulnerability allows a local attacker to cause DoS condition on the target system.

The vulnerability exists due to stack-based buffer overflow the read_chunk function, as defined in the mspack/chmd.c source code file. A local attacker can send a specially crafted request that submits malicious input, trigger memory corruption and cause the service to crash.


Remediation

Install update from vendor's website.

References