[CLSA-2024:1725385588] clamav: Fix of 2 CVEs
Type:
security
Severity:
Critical
Release date:
2024-09-03 17:50:17 UTC
Description:
- Update to 0.103.11 - CVE-2023-20032: fix missing buffer size check that may result in a heap buffer overflow write - Don't apply clamav-check.patch and CVE-2022-20698.patch as they have already been applied in new 0.103.11 version - Don't apply clamav-clamonacc-service.patch since el6 doesn't have systemd and service file is useless
Updated packages:
  • clamav-0.103.11-1.el6.tuxcare.els1.i686.rpm
    sha:471864c4cdbce371a1b1877e822d9a11ddba5407838d35c24d8a479a9e480bc8
  • clamav-0.103.11-1.el6.tuxcare.els1.x86_64.rpm
    sha:dc9801c40074a9aedb01bf97701f19b6bab0e13a43482f6f53ab9ea6ecf2e6e9
  • clamav-data-0.103.11-1.el6.tuxcare.els1.noarch.rpm
    sha:b4a8a46c1638d7f6e0d6b63a9a4528da07bedf2badba44e62e122e1646553e91
  • clamav-devel-0.103.11-1.el6.tuxcare.els1.i686.rpm
    sha:b5c53a5d7337b72b577543e373f33deaaee57bd2e2f7a4deb21eac6e9aa24527
  • clamav-devel-0.103.11-1.el6.tuxcare.els1.x86_64.rpm
    sha:2ece7a7f01fd5d720dfdc5532b8f5c36ef1a0e1d319294d90d4c362f23e26fd0
  • clamav-filesystem-0.103.11-1.el6.tuxcare.els1.noarch.rpm
    sha:7794466095e3b19d4e148a11cabfce5d4926bf69ccd89d895fde2cdf4432bd06
  • clamav-lib-0.103.11-1.el6.tuxcare.els1.x86_64.rpm
    sha:6da6b7025357cc11cdf4fd1df70100549c62da304f00d8f5861caad85bb5d517
  • clamav-milter-0.103.11-1.el6.tuxcare.els1.x86_64.rpm
    sha:3f91fc649776688825d9be0aa1327cba1b18616e418154bd524165be89dc9230
  • clamav-update-0.103.11-1.el6.tuxcare.els1.x86_64.rpm
    sha:aa5e6cbcd9c8c589f2d1c4739c71bbc5be61cfd44098d537ec34e1b3c059687f
  • clamd-0.103.11-1.el6.tuxcare.els1.x86_64.rpm
    sha:31f28bc7a336fb7297aed9f3f728d9aeb4a00099398558cb229d2d50f76fc223
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.