The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

Vulnerability of unrar: memory corruption via VMSF_DELTA

Synthesis of the vulnerability

An attacker can generate a memory corruption via VMSF_DELTA of unrar, in order to trigger a denial of service, and possibly to run code.
Severity of this bulletin: 2/4.
Creation date: 23/06/2017.
Références of this threat: bulletinjul2017, CERTFR-2017-AVI-238, CVE-2012-6706, DLA-1003-1, openSUSE-SU-2017:1658-1, openSUSE-SU-2017:1797-1, openSUSE-SU-2018:0825-1, SB10205, STORM-2018-003, SUSE-SU-2017:1716-1, SUSE-SU-2017:1745-1, SUSE-SU-2017:1760-1, SUSE-SU-2018:0809-1, SUSE-SU-2018:0863-1, VIGILANCE-VUL-23073.

Description of the vulnerability

An attacker can generate a memory corruption via VMSF_DELTA of unrar, in order to trigger a denial of service, and possibly to run code.
Full Vigil@nce bulletin... (Free trial)

This vulnerability note impacts software or systems such as SNS, ClamAV, Debian, McAfee Web Gateway, NETASQ, openSUSE Leap, Solaris, SUSE Linux Enterprise Desktop, SLES.

Our Vigil@nce team determined that the severity of this cybersecurity vulnerability is medium.

The trust level is of type confirmed by the editor, with an origin of document.

A proof of concept or an attack tool is available, so your teams have to process this alert. An attacker with a technician ability can exploit this computer threat note.

Solutions for this threat

ClamAV: version 0.99.4.
The version 0.99.4 is fixed:
  http://www.clamav.net/downloads/production/clamav-0.99.4.tar.gz

Debian 7: new unrar-nonfree packages.
New packages are available:
  Debian 7: unrar-nonfree 1:4.1.4-1+deb7u2

McAfee Web Gateway: versions 7.6.2.15 and 7.7.2.3.
Versions 7.6.2.15 and 7.7.2.3 are fixed:
  https://kc.mcafee.com/corporate/index?page=content&id=KB56057

openSUSE Leap 42.2: new clamav packages.
New packages are available:
  openSUSE Leap 42.2: clamav 0.99.2-16.3.1

openSUSE Leap 42.2: new unrar packages.
New packages are available:
  openSUSE Leap 42.2: unrar 5.5.5-3.1

openSUSE Leap 42.3: new clamav packages (27/03/2018).
New packages are available:
  openSUSE Leap 42.3: clamav 0.99.4-23.1

Oracle Solaris: patch for third party software of July 2017 v1.
A patch is available:
  https://support.oracle.com/rs?type=doc&id=1448883.1

Stormshield Network Security, Netasq: solution for ClamAV.
The solution is indicated in information sources.

SUSE LE 11 SP3/4: new clamav packages.
New packages are available:
  SUSE LE 11 SP3: clamav 0.99.4-0.20.7.2
  SUSE LE 11 SP4: clamav 0.99.4-0.20.7.2

SUSE LE 12: new clamav packages (26/03/2018).
New packages are available:
  SUSE LE 12 SP2: clamav 0.99.4-33.9.1
  SUSE LE 12 SP3: clamav 0.99.4-33.9.1

SUSE LE 12: new clamav packages (30/06/2017).
New packages are available:
  SUSE LE 12 SP2: clamav 0.99.2-32.1
  SUSE LE 12 SP1: clamav 0.99.2-32.1

SUSE LE: new unrar packages.
New packages are available:
  SUSE LE 12 SP2: unrar 5.0.14-3.1
  SUSE LE 12 SP1: unrar 5.0.14-3.1
  SUSE LE 12 RTM: unrar 5.0.14-3.1
  SUSE LE 11 SP4: unrar 3.80.2-4.1
  SUSE LE 11 SP3: unrar 3.80.2-4.1
Full Vigil@nce bulletin... (Free trial)

Computer vulnerabilities tracking service

Vigil@nce provides a computers vulnerabilities watch. The technology watch team tracks security threats targeting the computer system.