Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2019-2024 and is owned by Tenable, Inc. or an Affiliate thereof.OPENSUSE-2019-1208.NASL
HistoryApr 17, 2019 - 12:00 a.m.

openSUSE Security Update : clamav (openSUSE-2019-1208)

2019-04-1700:00:00
This script is Copyright (C) 2019-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
13

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

6.6 Medium

AI Score

Confidence

High

0.15 Low

EPSS

Percentile

95.8%

JSON

This update for clamav to version 0.100.3 fixes the following issues :

Security issues fixed (bsc#1130721):

  • CVE-2019-1787: Fixed an out-of-bounds heap read condition which may occur when scanning PDF documents.

  • CVE-2019-1789: Fixed an out-of-bounds heap read condition which may occur when scanning PE files (i.e.
    Windows EXE and DLL files).

  • CVE-2019-1788: Fixed an out-of-bounds heap write condition which may occur when scanning OLE2 files such as Microsoft Office 97-2003 documents.

This update was imported from the SUSE:SLE-12:Update update project.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update openSUSE-2019-1208.
#
# The text description of this plugin is (C) SUSE LLC.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(124101);
  script_version("1.6");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/06/03");

  script_cve_id("CVE-2019-1787", "CVE-2019-1788", "CVE-2019-1789");

  script_name(english:"openSUSE Security Update : clamav (openSUSE-2019-1208)");

  script_set_attribute(attribute:"synopsis", value:
"The remote openSUSE host is missing a security update.");
  script_set_attribute(attribute:"description", value:
"This update for clamav to version 0.100.3 fixes the following issues :

Security issues fixed (bsc#1130721): 	 

  - CVE-2019-1787: Fixed an out-of-bounds heap read
    condition which may occur when scanning PDF documents. 

  - CVE-2019-1789: Fixed an out-of-bounds heap read
    condition which may occur when scanning PE files (i.e.
    Windows EXE and DLL files).

  - CVE-2019-1788: Fixed an out-of-bounds heap write
    condition which may occur when scanning OLE2 files such
    as Microsoft Office 97-2003 documents. 

This update was imported from the SUSE:SLE-12:Update update project.");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1130721");
  script_set_attribute(attribute:"solution", value:
"Update the affected clamav packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2019-1789");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2019/04/08");
  script_set_attribute(attribute:"patch_publication_date", value:"2019/04/16");
  script_set_attribute(attribute:"plugin_publication_date", value:"2019/04/17");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:clamav");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:clamav-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:clamav-debugsource");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:42.3");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"SuSE Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2019-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE42\.3)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "42.3", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(x86_64)$") audit(AUDIT_ARCH_NOT, "x86_64", ourarch);

flag = 0;

if ( rpm_check(release:"SUSE42.3", reference:"clamav-0.100.3-35.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"clamav-debuginfo-0.100.3-35.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"clamav-debugsource-0.100.3-35.1") ) flag++;

if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "clamav / clamav-debuginfo / clamav-debugsource");
}
VendorProductVersionCPE
novellopensuseclamavp-cpe:/a:novell:opensuse:clamav
novellopensuseclamav-debugsourcep-cpe:/a:novell:opensuse:clamav-debugsource
novellopensuse42.3cpe:/o:novell:opensuse:42.3
novellopensuseclamav-debuginfop-cpe:/a:novell:opensuse:clamav-debuginfo

Related

suse 4
nessus 12
openvas 10
debian 1
amazon 1
osv 4
ubuntu 2
mageia 1
altlinux 3
freebsd 1
cve 3
prion 3
nvd 3
alpinelinux 3
debiancve 3
ubuntucve 3
cvelist 3
gentoo 1
checkpoint_advisories 1
suse
suse
Security update for clamav (important)
2019-04-16 00:00:00
Security update for clamav (important)
2019-04-16 00:00:00
Security update for clamav (moderate)
2020-12-17 00:00:00
nessus
nessus
SUSE SLED12 / SLES12 Security Update : clamav (SUSE-SU-2019:0897-1)
2019-04-09 00:00:00
openSUSE Security Update : clamav (openSUSE-2019-1210)
2019-04-17 00:00:00
Debian DLA-1759-1 : clamav security update
2019-04-23 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2019:14015-1)
2021-06-09 00:00:00
Mageia: Security Advisory (MGASA-2019-0162)
2022-01-28 00:00:00
Ubuntu: Security Advisory (USN-3940-2)
2022-08-26 00:00:00
debian
debian
[SECURITY] [DLA 1759-1] clamav security update
2019-04-22 11:32:55
amazon
amazon
Important: clamav
2019-05-16 23:16:00
osv
osv
clamav - security update
2019-04-22 00:00:00
CVE-2019-1787
2019-04-08 19:29:05
CVE-2019-1788
2019-04-08 20:29:11
ubuntu
ubuntu
ClamAV vulnerabilities
2019-04-08 00:00:00
ClamAV vulnerabilities
2019-04-08 00:00:00
mageia
mageia
Updated clamav packages fix security vulnerabilities
2019-05-12 12:35:33
altlinux
altlinux
Security fix for the ALT Linux 10 package clamav version 0.101.2-alt1
2019-03-28 00:00:00
Security fix for the ALT Linux 9 package clamav version 0.101.2-alt1
2019-03-28 00:00:00
Security fix for the ALT Linux 8 package clamav version 0.101.2-alt1
2019-03-28 00:00:00
freebsd
freebsd
clamav -- multiple vulnerabilities
2019-03-29 00:00:00
cve
cve
CVE-2019-1787
2019-04-08 19:29:05
CVE-2019-1788
2019-04-08 20:29:11
CVE-2019-1789
2019-11-05 19:15:11
prion
prion
Heap overflow
2019-04-08 19:29:00
Design/Logic Flaw
2019-04-08 20:29:00
Design/Logic Flaw
2019-11-05 19:15:00
nvd
nvd
CVE-2019-1787
2019-04-08 19:29:05
CVE-2019-1788
2019-04-08 20:29:11
CVE-2019-1789
2019-11-05 19:15:11
alpinelinux
alpinelinux
CVE-2019-1787
2019-04-08 19:29:05
CVE-2019-1788
2019-04-08 20:29:11
CVE-2019-1789
2019-11-05 19:15:11
debiancve
debiancve
CVE-2019-1787
2019-04-08 19:29:05
CVE-2019-1788
2019-04-08 20:29:11
CVE-2019-1789
2019-11-05 19:15:11
ubuntucve
ubuntucve
CVE-2019-1787
2019-04-03 00:00:00
CVE-2019-1788
2019-04-03 00:00:00
CVE-2019-1789
2019-04-03 00:00:00
cvelist
cvelist
CVE-2019-1787 Clam AntiVirus PDF Denial of Service Vulnerability
2019-04-08 19:10:16
CVE-2019-1788 ClamAV OLE2 File Out-Of-Bounds Write Vulnerability
2019-04-08 19:15:18
CVE-2019-1789 ClamAV Denial of Service Vulnerability
2019-11-05 18:25:34
gentoo
gentoo
ClamAV: Multiple vulnerabilities
2019-04-08 00:00:00
checkpoint_advisories
checkpoint_advisories
ClamAV OLE2 Out-of-Bounds Write (CVE-2019-1788)
2019-11-26 00:00:00

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

6.6 Medium

AI Score

Confidence

High

0.15 Low

EPSS

Percentile

95.8%

JSON
Related for OPENSUSE-2019-1208.NASL
suse4nessus12openvas10debian1amazon1osv4ubuntu2mageia1altlinux3freebsd1cve3prion3nvd3alpinelinux3debiancve3ubuntucve3cvelist3gentoo1checkpoint_advisories1