Bug#328660: marked as done (clamav: clamav 0.87 fixes vulnerabilities in handling of UPX and FSG compressed executables)

Debian Bug Tracking System Mon, 19 Sep 2005 02:33:17 -0700

Your message dated Mon, 19 Sep 2005 02:17:05 -0700
with message-id <[EMAIL PROTECTED]>
and subject line Bug#328660: fixed in clamav 0.87-1
has caused the attached Bug report to be marked as done.


This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere.  Please contact me immediately.)

Debian bug tracking system administrator
(administrator, Debian Bugs database)

--------------------------------------
Received: (at submit) by bugs.debian.org; 16 Sep 2005 16:19:59 +0000
>From [EMAIL PROTECTED] Fri Sep 16 09:19:59 2005
Return-path: <[EMAIL PROTECTED]>
Received: from frigg.ftbfs.de [212.112.246.221] 
        by spohr.debian.org with esmtp (Exim 3.36 1 (Debian))
        id 1EGIwR-0000sH-00; Fri, 16 Sep 2005 09:19:59 -0700
Received: from localhost (localimap [192.168.2.3])
        by frigg.ftbfs.de (Postfix) with ESMTP id 0E54D785CF
        for <[EMAIL PROTECTED]>; Fri, 16 Sep 2005 18:19:14 +0200 (CEST)
Received: from frigg.ftbfs.de ([192.168.2.3])
        by localhost (frigg.ftbfs.de [192.168.2.3]) (amavisd-new, port 10024)
        with ESMTP id 18572-04 for <[EMAIL PROTECTED]>;
        Fri, 16 Sep 2005 18:19:06 +0200 (CEST)
Received: by frigg.ftbfs.de (Postfix, from userid 1000)
        id 7BDB378061; Fri, 16 Sep 2005 18:19:04 +0200 (CEST)
Date: Fri, 16 Sep 2005 18:19:04 +0200
From: Martin Zobel-Helas <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
Subject: clamav: clamav 0.87 fixes vulnerabilities in handling of UPX and FSG 
compressed executables
Message-ID: <[EMAIL PROTECTED]>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
X-Debbugs-CC: [EMAIL PROTECTED]
User-Agent: Mutt/1.5.9i
X-ftbfs-Virus-Scanned: by amavisd-new at frigg.ftbfs.de (config: 0.1a)
Delivered-To: [EMAIL PROTECTED]
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 
        (1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Level: 
X-Spam-Status: No, hits=-11.0 required=4.0 tests=BAYES_00,HAS_PACKAGE,
        X_DEBBUGS_CC autolearn=ham version=2.60-bugs.debian.org_2005_01_02

Package: clamav
Version: 0.84-2.sarge.2
Severity: serious
Tags: security

Hi,

the new version 0.87 of clamav fixes vulnerabilities in handling of UPX
and FSG compressed executables.

>From upstreams Changelog:
  * Changes backported from CVS:                                                
                                                                                
                                                            
    - libclamav/upx.c: fix possible buffer overflow (acab)                      
                                                                                
                                                            
    - libclamav/fsg.c: fix possible infinite loop (acab)                        
                                                                                
                                                            


For sarge the following patches are the one to fix it:

--- clamav-0.84/libclamav/fsg.c 2005-09-16 17:54:11.121701163 +0200
+++ clamav-0.87/libclamav/fsg.c 2005-09-16 00:49:04.000000000 +0200
@@ -235,7 +235,7 @@
     for (i = 0; i < sectcount  ; i++) {
       uint32_t trva,trsz,traw;
       
-      if ( sections[i].rva < sections[i+1].rva )
+      if ( sections[i].rva <= sections[i+1].rva )
        continue;
       trva = sections[i].rva;
       traw = sections[i].raw;


and:

--- clamav-0.84/libclamav/upx.c 2005-04-27 23:53:57.000000000 +0200
+++ clamav-0.87/libclamav/upx.c 2005-09-16 00:53:54.000000000 +0200
@@ -117,7 +117,7 @@
   }
   
   sections = pehdr+0xf8;
-  if ( ! (sectcnt = pehdr[6]+256*pehdr[7])) {
+  if ( ! (sectcnt = (unsigned char)pehdr[6]+256*(unsigned char)pehdr[7])) {
     cli_dbgmsg("UPX: No sections? - giving up rebuild\n");
     return 0;
   }


Greetings
Martin

---------------------------------------
Received: (at 328660-close) by bugs.debian.org; 19 Sep 2005 09:18:25 +0000
>From [EMAIL PROTECTED] Mon Sep 19 02:18:25 2005
Return-path: <[EMAIL PROTECTED]>
Received: from katie by spohr.debian.org with local (Exim 3.36 1 (Debian))
        id 1EHHlp-00020r-00; Mon, 19 Sep 2005 02:17:05 -0700
From: Stephen Gran <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
X-Katie: $Revision: 1.56 $
Subject: Bug#328660: fixed in clamav 0.87-1
Message-Id: <[EMAIL PROTECTED]>
Sender: Archive Administrator <[EMAIL PROTECTED]>
Date: Mon, 19 Sep 2005 02:17:05 -0700
Delivered-To: [EMAIL PROTECTED]
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 
        (1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Level: 
X-Spam-Status: No, hits=-6.0 required=4.0 tests=BAYES_00,HAS_BUG_NUMBER 
        autolearn=no version=2.60-bugs.debian.org_2005_01_02
X-CrossAssassin-Score: 3

Source: clamav
Source-Version: 0.87-1

We believe that the bug you reported is fixed in the latest version of
clamav, which is due to be installed in the Debian FTP archive:

clamav-base_0.87-1_all.deb
  to pool/main/c/clamav/clamav-base_0.87-1_all.deb
clamav-daemon_0.87-1_i386.deb
  to pool/main/c/clamav/clamav-daemon_0.87-1_i386.deb
clamav-docs_0.87-1_all.deb
  to pool/main/c/clamav/clamav-docs_0.87-1_all.deb
clamav-freshclam_0.87-1_i386.deb
  to pool/main/c/clamav/clamav-freshclam_0.87-1_i386.deb
clamav-milter_0.87-1_i386.deb
  to pool/main/c/clamav/clamav-milter_0.87-1_i386.deb
clamav-testfiles_0.87-1_all.deb
  to pool/main/c/clamav/clamav-testfiles_0.87-1_all.deb
clamav_0.87-1.diff.gz
  to pool/main/c/clamav/clamav_0.87-1.diff.gz
clamav_0.87-1.dsc
  to pool/main/c/clamav/clamav_0.87-1.dsc
clamav_0.87-1_i386.deb
  to pool/main/c/clamav/clamav_0.87-1_i386.deb
clamav_0.87.orig.tar.gz
  to pool/main/c/clamav/clamav_0.87.orig.tar.gz
libclamav-dev_0.87-1_i386.deb
  to pool/main/c/clamav/libclamav-dev_0.87-1_i386.deb
libclamav1_0.87-1_i386.deb
  to pool/main/c/clamav/libclamav1_0.87-1_i386.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Stephen Gran <[EMAIL PROTECTED]> (supplier of updated clamav package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Mon, 19 Sep 2005 09:05:59 +0100
Source: clamav
Binary: clamav libclamav-dev clamav-milter clamav-base clamav-freshclam 
clamav-testfiles clamav-daemon libclamav1 clamav-docs
Architecture: source all i386
Version: 0.87-1
Distribution: unstable
Urgency: low
Maintainer: Stephen Gran <[EMAIL PROTECTED]>
Changed-By: Stephen Gran <[EMAIL PROTECTED]>
Description: 
 clamav     - antivirus scanner for Unix
 clamav-base - base package for clamav, an anti-virus utility for Unix
 clamav-daemon - antivirus scanner daemon
 clamav-docs - documentation package for clamav, an anti-virus utility for Unix
 clamav-freshclam - downloads clamav virus databases from the Internet
 clamav-milter - antivirus scanner for sendmail
 clamav-testfiles - use these files to test that your Antivirus program works
 libclamav-dev - clam Antivirus library development files
 libclamav1 - virus scanner library
Closes: 323132 327707 328660 328912
Changes: 
 clamav (0.87-1) unstable; urgency=low
 .
   * New upstream version
     - Fixes CAN-2005-2920 and CAN-2005-2919 (closes: #328660)
   * New logcheck line for clamav-daemon (closes: #323132)
   * relibtoolize and apply kfreebsd patch (closes: #327707)
   * Make sure init.d script starts freshclam up again after upgrade when run
     from if-up.d (closes: #328912)
Files: 
 bc515e68678ef78d2c3afa6ad22553b9 856 utils optional clamav_0.87-1.dsc
 dd0a12deb4f48f760fa1fcd378ae7c24 4273714 utils optional clamav_0.87.orig.tar.gz
 c8e10ef746f899a31c9ba2fe7e728ad4 436103 utils optional clamav_0.87-1.diff.gz
 c2f28fa8147d6e7d3d06c4ebdb5b991f 165946 utils optional 
clamav-base_0.87-1_all.deb
 b18dad7bf28e26402bc6351e82e34a6d 127042 utils optional 
clamav-testfiles_0.87-1_all.deb
 b1e154159023ec8df26715876811c0c1 700912 utils optional 
clamav-docs_0.87-1_all.deb
 cd28ea342935980b1c831514cc22de5f 257544 libs optional 
libclamav1_0.87-1_i386.deb
 b8369ee994288cad832bca12d4f3678e 65466 utils optional clamav_0.87-1_i386.deb
 6c1a482bacadac83361e5eb5452d8598 38438 utils optional 
clamav-daemon_0.87-1_i386.deb
 abb17503318912c8b9091d7e56028adf 2680392 utils optional 
clamav-freshclam_0.87-1_i386.deb
 7bf54d69cde3d098e26582b2d7be39ae 37834 utils extra 
clamav-milter_0.87-1_i386.deb
 c69be053d2b36596f5c8c0a98faaceff 158926 libdevel optional 
libclamav-dev_0.87-1_i386.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)

iD8DBQFDLnn4SYIMHOpZA44RApD4AJ9uYILelq7f0ip8PmoRPETGVW6pAACfZVMq
JJs6i1e+DEvSY6PU8hm4CYs=
=RrzI
-----END PGP SIGNATURE-----


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#328660: marked as done (clamav: clamav 0.87 fixes vulnerabilities in handling of UPX and FSG compressed executables)

Reply via email to