Gibraltar Firewall contains a flaw that may fail to detect some viruses. The issue is triggered when the clamav virus scanning plugin for squid has been updated to version 0.81, which removed the method formerly used to scan internal memory buffers for viruses. This causes clamav and Gibraltar to report that no virus has been found even if if the squid memory buffers contained a virus. It is possible that the flaw may allow viruses to pass through the firewall undetected resulting in a loss of integrity and/or availability.

Upgrade to version 2.2a or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

• Security Tracker: 1014030
• CVE ID: 2005-1711 (see also: NVD)
• ISS X-Force ID: 20759
• Vendor Specific News/Changelog Entry: http://gibraltar.at/changes.php?onlyLastVersion=1&htmlOutput=1&to=2.2a
• Other Advisory URL: http://secwatch.org/advisories/1010660/
• Vendor URL: http://www.gibraltar.at/

Unknown or Incomplete