Advisories » MGASA-2023-0068

Updated clamav packages fix security vulnerability

Publication date: 27 Feb 2023
Modification date: 27 Feb 2023
Type: security
Affected Mageia releases : 8
CVE: CVE-2023-20032 , CVE-2023-20052

Description

A possible remote code execution vulnerability in the HFS+ file parser.
(CVE-2023-20032)

A possible remote information leak vulnerability in the DMG file parser.
(CVE-2023-20052)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=31562
• https://blog.clamav.net/2023/02/clamav-01038-01052-and-101-patch.html
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-20032
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-20052

SRPMS

8/core

• clamav-0.103.8-1.mga8