Ubuntu Update For Clamav USN-1482-3 Network Vulnerability

Summary

Ubuntu Update for Linux kernel vulnerabilities USN-1482-3

Solution

Please Install the Updated Packages.

Insight

USN-1482-1 fixed vulnerabilities in ClamAV. The updated package could fail to properly scan files in some situations. This update fixes the problem. We apologize for the inconvenience. Original advisory details: It was discovered that ClamAV incorrectly handled certain malformed TAR archives. A remote attacker could create a specially-crafted TAR file containing malware that could escape being detected. (CVE-2012-1457, CVE-2012-1459) It was discovered that ClamAV incorrectly handled certain malformed CHM files. A remote attacker could create a specially-crafted CHM file containing malware that could escape being detected. (CVE-2012-1458)

Affected

clamav on Ubuntu 12.04 LTS , Ubuntu 11.10 , Ubuntu 11.04

References

https://lists.ubuntu.com/archives/ubuntu-security-announce/2012-August/001795.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2012-1457, CVE-2012-1458, CVE-2012-1459

CVSS	Base Score: 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N

Related Vulnerabilities

Ubuntu Update for clamav USN-1482-3

Take action and discover your vulnerabilities