FEDORA-EPEL-2023-47d3bcd891 — security update for clamav — Fedora Updates System

stable

clamav-0.103.8-1.el9

FEDORA-EPEL-2023-47d3bcd891 created by orion 7 months ago for Fedora EPEL 9

ClamAV 0.103.8 is a critical patch release with the following fixes:

CVE-2023-20032https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-20032: Fixed a possible remote code execution vulnerability in the HFS+ file parser. The issue affects versions 1.0.0 and earlier, 0.105.1 and earlier, and 0.103.7 and earlier. Thank you to Simon Scannell for reporting this issue.
CVE-2023-20052https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-20052: Fixed a possible remote information leak vulnerability in the DMG file parser. The issue affects versions 1.0.0 and earlier, 0.105.1 and earlier, and 0.103.7 and earlier. Thank you to Simon Scannell for reporting this issue.

This update has been submitted for testing by orion.

This update's test gating status has been changed to 'ignored'.

This update has been pushed to testing.

westonsteimel commented & provided feedback 7 months ago

karma

This passed my tests from a ubi9 image

BZ#2170570 Please build ClamAV 0.103.8 for EL7

Test Case ClamAV

bressers commented & provided feedback 7 months ago

karma

It scans files and picks up my tests

This update can be pushed to stable now if the maintainer wishes

This update has been submitted for stable by orion.

This update has been pushed to stable.

Please login to add feedback.

Metadata

Type

security

Severity

high

Karma

2

Signed

Content Type

RPM

Test Gating

ignored

Builds

1

clamav-0.103.8-1.el9

Settings

Unstable by Karma

-3

Stable by Karma

3

Stable by Time

7 days

Dates

submitted

7 months ago

in testing

7 months ago

in stable

7 months ago

BZ#2170570 Please build ClamAV 0.103.8 for EL7

0

1

clamav-0.103.8-1.el9

Automated Test Results

ignored

Test Cases


0	1	Test Case ClamAV