ГлавнаяБаза уязвимостей БДУ → BDU:2015-03662
7.8высокая

BDU:2015-03662 (CVE-2008-6680)

Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику нарушить доступность защищаемой информации
Опубликовано: 2015-04-28
Описание

Множественные уязвимости пакета libclamav5 операционной системы Debian GNU/Linux, эксплуатация которых может привести к нарушению доступности защищаемой информации. Эксплуатация уязвимостей может быть осуществлена удаленно

Затрагиваемое ПО и версии
Debian GNU/Linux (до 4)
Способ устранения

Проблема может быть решена обновлением операционной системы до следующих версий пакетов в зависимости от архитектуры:
Debian GNU/Linux 4:
ppc:
clamav-dbg - 0.90.1dfsg-4etch19
libclamav2 - 0.90.1dfsg-4etch19
clamav-daemon - 0.90.1dfsg-4etch19
libclamav-dev - 0.90.1dfsg-4etch19
clamav-freshclam - 0.90.1dfsg-4etch19
clamav-milter - 0.90.1dfsg-4etch19
clamav - 0.90.1dfsg-4etch19
s390x:
clamav-dbg - 0.90.1dfsg-4etch19
clamav-daemon - 0.90.1dfsg-4etch19
clamav-freshclam - 0.90.1dfsg-4etch19
clamav-milter - 0.90.1dfsg-4etch19
libclamav-dev - 0.90.1dfsg-4etch19
libclamav2 - 0.90.1dfsg-4etch19
clamav - 0.90.1dfsg-4etch19
i686:
clamav-milter - 0.90.1dfsg-4etch19
clamav-dbg - 0.90.1dfsg-4etch19
libclamav-dev - 0.90.1dfsg-4etch19
libclamav2 - 0.90.1dfsg-4etch19
clamav-daemon - 0.90.1dfsg-4etch19
clamav-freshclam - 0.90.1dfsg-4etch19
clamav - 0.90.1dfsg-4etch19
hppa:
clamav-freshclam - 0.90.1dfsg-4etch19
libclamav-dev - 0.90.1dfsg-4etch19
libclamav2 - 0.90.1dfsg-4etch19
clamav-daemon - 0.90.1dfsg-4etch19
clamav - 0.90.1dfsg-4etch19
clamav-dbg - 0.90.1dfsg-4etch19
clamav-milter - 0.90.1dfsg-4etch19
sparc:
clamav-daemon - 0.90.1dfsg-4etch19
clamav-milter - 0.90.1dfsg-4etch19
clamav - 0.90.1dfsg-4etch19
clamav-freshclam - 0.90.1dfsg-4etch19
libclamav2 - 0.90.1dfsg-4etch19
libclamav-dev - 0.90.1dfsg-4etch19
clamav-dbg - 0.90.1dfsg-4etch19
x86-64:
libclamav2 - 0.90.1dfsg-4etch19
clamav-dbg - 0.90.1dfsg-4etch19
clamav - 0.90.1dfsg-4etch19
clamav-freshclam - 0.90.1dfsg-4etch19
clamav-milter - 0.90.1dfsg-4etch19
clamav-daemon - 0.90.1dfsg-4etch19
libclamav-dev - 0.90.1dfsg-4etch19
alpha:
clamav - 0.90.1dfsg-4etch19
clamav-dbg - 0.90.1dfsg-4etch19
clamav-freshclam - 0.90.1dfsg-4etch19
clamav-milter - 0.90.1dfsg-4etch19
libclamav2 - 0.90.1dfsg-4etch19
libclamav-dev - 0.90.1dfsg-4etch19
clamav-daemon - 0.90.1dfsg-4etch19
ia64:
clamav-freshclam - 0.90.1dfsg-4etch19
libclamav2 - 0.90.1dfsg-4etch19
clamav-dbg - 0.90.1dfsg-4etch19
clamav-daemon - 0.90.1dfsg-4etch19
libclamav-dev - 0.90.1dfsg-4etch19
clamav-milter - 0.90.1dfsg-4etch19
clamav - 0.90.1dfsg-4etch19
mips:
clamav-dbg - 0.90.1dfsg-4etch19
clamav-daemon - 0.90.1dfsg-4etch19
clamav-milter - 0.90.1dfsg-4etch19
libclamav-dev - 0.90.1dfsg-4etch19
libclamav2 - 0.90.1dfsg-4etch19
clamav - 0.90.1dfsg-4etch19
clamav-freshclam - 0.90.1dfsg-4etch19
noarch:
clamav-base - 0.90.1dfsg-4etch19
clamav-docs - 0.90.1dfsg-4etch19
clamav-testfiles - 0.90.1dfsg-4etch19
arm:
clamav-daemon - 0.90.1dfsg-4etch19
libclamav2 - 0.90.1dfsg-4etch19
clamav-milter - 0.90.1dfsg-4etch19
libclamav-dev - 0.90.1dfsg-4etch19
clamav - 0.90.1dfsg-4etch19
clamav-dbg - 0.90.1dfsg-4etch19
clamav-freshclam - 0.90.1dfsg-4etch19
Debian GNU/Linux 5:
ppc:
clamav - 0.94.dfsg.2-1lenny2
libclamav-dev - 0.94.dfsg.2-1lenny2
libclamav5 - 0.94.dfsg.2-1lenny2
clamav-milter - 0.94.dfsg.2-1lenny2
clamav-freshclam - 0.94.dfsg.2-1lenny2
clamav-daemon - 0.94.dfsg.2-1lenny2
clamav-dbg - 0.94.dfsg.2-1lenny2
s390x:
clamav - 0.94.dfsg.2-1lenny2
clamav-dbg - 0.94.dfsg.2-1lenny2
clamav-freshclam - 0.94.dfsg.2-1lenny2
libclamav5 - 0.94.dfsg.2-1lenny2
libclamav-dev - 0.94.dfsg.2-1lenny2
clamav-daemon - 0.94.dfsg.2-1lenny2
clamav-milter - 0.94.dfsg.2-1lenny2
i686:
clamav-daemon - 0.94.dfsg.2-1lenny2
libclamav-dev - 0.94.dfsg.2-1lenny2
clamav-dbg - 0.94.dfsg.2-1lenny2
clamav-freshclam - 0.94.dfsg.2-1lenny2
clamav - 0.94.dfsg.2-1lenny2
clamav-milter - 0.94.dfsg.2-1lenny2
libclamav5 - 0.94.dfsg.2-1lenny2
hppa:
clamav - 0.94.dfsg.2-1lenny2
clamav-dbg - 0.94.dfsg.2-1lenny2
clamav-milter - 0.94.dfsg.2-1lenny2
clamav-daemon - 0.94.dfsg.2-1lenny2
libclamav-dev - 0.94.dfsg.2-1lenny2
clamav-freshclam - 0.94.dfsg.2-1lenny2
libclamav5 - 0.94.dfsg.2-1lenny2
sparc:
libclamav5 - 0.94.dfsg.2-1lenny2
clamav-dbg - 0.94.dfsg.2-1lenny2
clamav-milter - 0.94.dfsg.2-1lenny2
clamav-daemon - 0.94.dfsg.2-1lenny2
clamav - 0.94.dfsg.2-1lenny2
clamav-freshclam - 0.94.dfsg.2-1lenny2
libclamav-dev - 0.94.dfsg.2-1lenny2
x86-64:
clamav-daemon - 0.94.dfsg.2-1lenny2
clamav-milter - 0.94.dfsg.2-1lenny2
clamav-freshclam - 0.94.dfsg.2-1lenny2
libclamav5 - 0.94.dfsg.2-1lenny2
libclamav-dev - 0.94.dfsg.2-1lenny2
clamav - 0.94.dfsg.2-1lenny2
clamav-dbg - 0.94.dfsg.2-1lenny2
armel:
clamav - 0.94.dfsg.2-1lenny2
clamav-freshclam - 0.94.dfsg.2-1lenny2
clamav-daemon - 0.94.dfsg.2-1lenny2
clamav-milter - 0.94.dfsg.2-1lenny2
libclamav5 - 0.94.dfsg.2-1lenny2
clamav-dbg - 0.94.dfsg.2-1lenny2
libclamav-dev - 0.94.dfsg.2-1lenny2
alpha:
libclamav5 - 0.94.dfsg.2-1lenny2
clamav-dbg - 0.94.dfsg.2-1lenny2
libclamav-dev - 0.94.dfsg.2-1lenny2
clamav-freshclam - 0.94.dfsg.2-1lenny2
clamav-daemon - 0.94.dfsg.2-1lenny2
clamav - 0.94.dfsg.2-1lenny2
clamav-milter - 0.94.dfsg.2-1lenny2
ia64:
clamav-milter - 0.94.dfsg.2-1lenny2
libclamav-dev - 0.94.dfsg.2-1lenny2
clamav-daemon - 0.94.dfsg.2-1lenny2
clamav-freshclam - 0.94.dfsg.2-1lenny2
clamav - 0.94.dfsg.2-1lenny2
clamav-dbg - 0.94.dfsg.2-1lenny2
libclamav5 - 0.94.dfsg.2-1lenny2
mips:
clamav-freshclam - 0.94.dfsg.2-1lenny2
clamav-milter - 0.94.dfsg.2-1lenny2
libclamav5 - 0.94.dfsg.2-1lenny2
libclamav-dev - 0.94.dfsg.2-1lenny2
clamav - 0.94.dfsg.2-1lenny2
clamav-daemon - 0.94.dfsg.2-1lenny2
clamav-dbg - 0.94.dfsg.2-1lenny2
noarch:
clamav-docs - 0.94.dfsg.2-1lenny2
clamav-testfiles - 0.94.dfsg.2-1lenny2
clamav-base - 0.94.dfsg.2-1lenny2
arm:
clamav-daemon - 0.94.dfsg.2-1lenny2
libclamav5 - 0.94.dfsg.2-1lenny2
clamav-milter - 0.94.dfsg.2-1lenny2
clamav - 0.94.dfsg.2-1lenny2
libclamav-dev - 0.94.dfsg.2-1lenny2
clamav-freshclam - 0.94.dfsg.2-1lenny2
clamav-dbg - 0.94.dfsg.2-1lenny

Оценка CVSS
Балл7.8 — высокая опасность
Источники и патчи
http://www.debian.org/security/dsa-1771/http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-6680http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1270
Проверьте безопасность своего сайта и почты → Полная проверка домена