Out of Bounds Memory Read in ClamAV Affects XAR Files
CVE-2018-1000085

5.5MEDIUM

Key Information:

Vendor

Clamav

Status
Clamav
Vendor
CVE Published:
13 March 2018

What is CVE-2018-1000085?

ClamAV version 0.99.3 features an out of bounds heap memory read vulnerability in the XAR parser, specifically within the xar_hash_check() function. This vulnerability may lead to the leakage of sensitive memory, potentially assisting in the development of exploit chains. The attack vector requires the victim to scan a specially crafted XAR file, which could compromise the system's integrity. The issue was addressed in subsequent updates after commit d96a6b8bcc7439fa7e3876207aa0a8e79c8451b6.

References

https://usn.ubuntu.com/3592-2/
vendor-advisoryx_refsource_UBUNTU
https://github.com/Cisco-Talos/clamav-devel/commit/d96a6b...
x_refsource_MISC
http://www.openwall.com/lists/oss-security/2017/09/29/4
mailing-listx_refsource_MLIST

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.