A vulnerability in the endpoint software of Cisco AMP for Endpoints and
Clam AntiVirus could allow an authenticated, local attacker to cause the
running software to delete arbitrary files on the system. The vulnerability
is due to a race condition that could occur when scanning malicious files.
An attacker with local shell access could exploit this vulnerability by
executing a script that could trigger the race condition. A successful
exploit could allow the attacker to delete arbitrary files on the system
that the attacker would not normally have privileges to delete, producing
system instability or causing the endpoint software to stop working.
Upstream:released (0.102.4+dfsg-1)
Ubuntu 12.04 ESM (Precise Pangolin):released (0.102.4+dfsg-0ubuntu0.12.04.1)
Ubuntu 14.04 ESM (Trusty Tahr):released (0.102.4+dfsg-0ubuntu0.14.04.1+esm1)
Ubuntu 16.04 LTS (Xenial Xerus):released (0.102.4+dfsg-0ubuntu0.16.04.1)
Ubuntu 18.04 LTS (Bionic Beaver):released (0.102.4+dfsg-0ubuntu0.18.04.1)
Ubuntu 20.04 LTS (Focal Fossa):released (0.102.4+dfsg-0ubuntu0.20.04.1)
Ubuntu 20.10 (Groovy Gorilla):not-affected (0.102.4+dfsg-1)
More Information

Updated: 2020-07-28 20:08:19 UTC (commit d26b6ca9f5b3adb89bb036ce73ae7dab894935ec)