FEDORA-EPEL-2018-1713497ca1

security update in Fedora EPEL 7 for clamav

Status: obsolete
  • Security fixes CVE-2017-6420 (#1483910), CVE-2017-6418 (#1483908)
  • Fixes for rhbz 1530678 and 1518016
  • Fix bugs 1126595,1464269,1126625 and 1258536,
  • Update of main.cvd, daily.cvd and bytecode.cvd

Comments 5

This update has been submitted for testing by sergiomb.

This update has obsoleted clamav-0.99.2-14.el7, and has inherited its bugs and notes.

sergiomb edited this update.

This update has been pushed to testing.

This update has been obsoleted by clamav-0.99.2-18.el7.


Add Comment & Feedback
Toggle Preview

Comment fields support Fedora-Flavored Markdown. Comments are governed under this privacy policy.

-1 0 +1 Feedback Guidelines
#1483910 CVE-2017-6420 clamav: use-after-free in wwunpack function
#1483908 CVE-2017-6418 clamav: out-of-bounds read in libclamav/message.c
#1530678 clamav-server requires nmap-ncat, security concerns
#1518016 the jitoff patch is no longer needed and should be removed
#1126595 /etc/tmpfiles.d/clamav-milter.conf is wrong
#1258536 clamav-server-sysvinit clamd can't create pid file
#1126625 clamd should use Type=forking instead Type=simple
#1464269 PrivateTmp = true breaks all ScanOnAccess features
Test Case ClamAV
Is the update generally functional?
Content Type
RPM
Status
obsolete
Test Gating Status
Tests not running
Submitted by
Update Type
security
Karma
0
stable threshold: 3
unstable threshold: -3
Autopush
Enabled
Dates
submitted 6 months ago
in testing 6 months ago
modified 6 months ago

Related Bugs 8

00 #1483910 CVE-2017-6420 clamav: use-after-free in wwunpack function
00 #1483908 CVE-2017-6418 clamav: out-of-bounds read in libclamav/message.c
00 #1530678 clamav-server requires nmap-ncat, security concerns
00 #1518016 the jitoff patch is no longer needed and should be removed
00 #1126595 /etc/tmpfiles.d/clamav-milter.conf is wrong
00 #1258536 clamav-server-sysvinit clamd can't create pid file
00 #1126625 clamd should use Type=forking instead Type=simple
00 #1464269 PrivateTmp = true breaks all ScanOnAccess features

Automated Test Results

Test results and gating status may sometimes conflict as the gating status is retrieved periodically by Bodhi's backend server, while the test results presented here are retrieved upon page load. If your update is marked as gated while all the tests show green/passed, the next check of gating status should open the gate.

Test Cases

00 Test Case ClamAV