Advisories » MGASA-2018-0169

Updated clamav packages fix security vulnerabilities

Publication date: 14 Mar 2018
Modification date: 14 Mar 2018
Type: security
Affected Mageia releases : 6
CVE: CVE-2018-0202 , CVE-2018-1000085

Description

Clamav has been updated to fix 2 security issues and also contains a lot of 
bugfixes.

Out-of-bounds access in the PDF parser (CVE-2018-0202)
Out-of-bounds heap read in XAR parser (CVE-2018-1000085)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=22737
• https://security-tracker.debian.org/tracker/CVE-2018-0202
• https://security-tracker.debian.org/tracker/CVE-2018-1000085
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0202
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000085

SRPMS

6/core

• clamav-0.99.4-1.mga6