BYOE issues with ClamXav Sentry

Discussions relating to ClamXav

Moderator: Mark

Re: BYOE issues with ClamXav Sentry

Postby eiichi » Wed 31 May 2017 10:08 pm

alvarnell wrote:Vulnerable versions listed as Sudo 1.8.6p7 through 1.8.20 inclusive, so apparently not an issue here.


If your system is as below:
---
macOS Sierra Version: 10.12.5
Darwin Kernel Version: 16.6.0
Xcode Version: 8.3.2
CommnaLineTool Version: 8.3.2.0.1.1492020469

then:
---
$ sudo --version
Sudo version 1.8.17p1
Sudoers policy plugin version 1.8.17p1
Sudoers file grammar version 45
Sudoers I/O plugin version 1.8.17p1

So it's apparently vulnerable, I think.
eiichi
 
Posts: 33
Joined: Sat 19 Mar 2016 5:41 am

Re: BYOE issues with ClamXav Sentry

Postby alvarnell » Wed 31 May 2017 10:27 pm

You might want to drop a line to product-security@apple.com and outline all of this to them, in case they are not already aware.
-Al-
--
iMac(21.5-inch, Mid 2011) 2.8GHz Intel Core i7/OSX 10.10.5, 10.11.6, 10.12.6 & 10.13.6/ClamXAV v3.0.9 (7713)/0.100.2_01
iMac(Retina 5K, 27-inch, 2017) 4.2GHz Intel Core i7/macOS 10.12.6, 10.13.6 & 10.14.5/ClamXAV v3.0.11 (7899)/0.101.2_09
alvarnell
Site Admin
 
Posts: 5509
Joined: Thu 04 Sep 2008 1:18 am
Location: Mountain View, CA, USA

Re: BYOE issues with ClamXav Sentry

Postby alvarnell » Wed 31 May 2017 11:50 pm

I made some inquiries on the Slack MacAdmins #Security channel about this and was told:
bruienne wrote:this seems to pivot around the procfs on Linux which Darwin doesn't use so unless there's a similar way to make this work I think macOS is probably okay (i.e. there's no `/proc` tree) and looking at the source of `sudo` it looks like it strictly uses `/dev/` entries
-Al-
--
iMac(21.5-inch, Mid 2011) 2.8GHz Intel Core i7/OSX 10.10.5, 10.11.6, 10.12.6 & 10.13.6/ClamXAV v3.0.9 (7713)/0.100.2_01
iMac(Retina 5K, 27-inch, 2017) 4.2GHz Intel Core i7/macOS 10.12.6, 10.13.6 & 10.14.5/ClamXAV v3.0.11 (7899)/0.101.2_09
alvarnell
Site Admin
 
Posts: 5509
Joined: Thu 04 Sep 2008 1:18 am
Location: Mountain View, CA, USA

Re: BYOE issues with ClamXav Sentry

Postby eiichi » Thu 01 Jun 2017 12:42 am

Thanks, Al.
I might make a quick judgment.
eiichi
 
Posts: 33
Joined: Sat 19 Mar 2016 5:41 am

Re: BYOE issues with ClamXav Sentry

Postby alvarnell » Fri 04 Aug 2017 8:29 am

Note that ClamAV 0.99.3 beta has been released! for testing purposes.
-Al-
--
iMac(21.5-inch, Mid 2011) 2.8GHz Intel Core i7/OSX 10.10.5, 10.11.6, 10.12.6 & 10.13.6/ClamXAV v3.0.9 (7713)/0.100.2_01
iMac(Retina 5K, 27-inch, 2017) 4.2GHz Intel Core i7/macOS 10.12.6, 10.13.6 & 10.14.5/ClamXAV v3.0.11 (7899)/0.101.2_09
alvarnell
Site Admin
 
Posts: 5509
Joined: Thu 04 Sep 2008 1:18 am
Location: Mountain View, CA, USA

Previous

Return to ClamXav

Who is online

Users browsing this forum: No registered users