SUSE-SU-2015:0871-1: moderate: Security update for clamav

[sle-security-updates at lists.suse.com]

   SUSE Security Update: Security update for clamav
______________________________________________________________________________

Announcement ID:    SUSE-SU-2015:0871-1
Rating:             moderate
References:         #929192 
Cross-References:   CVE-2015-2170 CVE-2015-2221 CVE-2015-2222
                    CVE-2015-2305 CVE-2015-2668
Affected Products:
                    SUSE Linux Enterprise Server 11 SP3 for VMware
                    SUSE Linux Enterprise Server 11 SP3
                    SUSE Linux Enterprise Desktop 11 SP3
______________________________________________________________________________

   An update that fixes 5 vulnerabilities is now available. It
   includes one version update.

Description:


   The ClamAV antivirus engine was updated to version 0.98.7 to fix several
   security issues:

       * CVE-2015-2170: Fix crash in upx decoder with crafted file.
         Discovered and patch supplied by Sebastian Andrzej Siewior.
       * CVE-2015-2221: Fix infinite loop condition on crafted y0da cryptor
         file. Identified and patch suggested by Sebastian Andrzej Siewior.
       * CVE-2015-2222: Fix crash on crafted petite packed file. Reported and
         patch supplied by Sebastian Andrzej Siewior.
       * CVE-2015-2668: Fix an infinite loop condition on a crafted "xz"
         archive file. This was reported by Dimitri Kirchner and Goulven
         Guiheux.
       * CVE-2015-2305: Apply upstream patch for possible heap overflow in
         Henry Spencer's regex library.

   Security Issues:

       * CVE-2015-2170
         <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2170>
       * CVE-2015-2221
         <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2221>
       * CVE-2015-2222
         <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2222>
       * CVE-2015-2668
         <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2668>
       * CVE-2015-2305
         <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2305>


Patch Instructions:

   To install this SUSE Security Update use YaST online_update.
   Alternatively you can run the command listed for your product:

   - SUSE Linux Enterprise Server 11 SP3 for VMware:

      zypper in -t patch slessp3-clamav=10664

   - SUSE Linux Enterprise Server 11 SP3:

      zypper in -t patch slessp3-clamav=10664

   - SUSE Linux Enterprise Desktop 11 SP3:

      zypper in -t patch sledsp3-clamav=10664

   To bring your system up-to-date, use "zypper patch".


Package List:

   - SUSE Linux Enterprise Server 11 SP3 for VMware (i586 x86_64) [New Version: 0.98.7]:

      clamav-0.98.7-0.3.1

   - SUSE Linux Enterprise Server 11 SP3 (i586 ia64 ppc64 s390x x86_64) [New Version: 0.98.7]:

      clamav-0.98.7-0.3.1

   - SUSE Linux Enterprise Desktop 11 SP3 (i586 x86_64) [New Version: 0.98.7]:

      clamav-0.98.7-0.3.1


References:

   https://www.suse.com/security/cve/CVE-2015-2170.html
   https://www.suse.com/security/cve/CVE-2015-2221.html
   https://www.suse.com/security/cve/CVE-2015-2222.html
   https://www.suse.com/security/cve/CVE-2015-2305.html
   https://www.suse.com/security/cve/CVE-2015-2668.html
   https://bugzilla.suse.com/929192
   https://download.suse.com/patch/finder/?keywords=6f6828dce478f4baf653977c4fb6fce3