Updated amavisd-new packages fix security vulnerability
Publication date: 06 Jun 2024Modification date: 06 Jun 2024
Type: security
Affected Mageia releases : 9
CVE: CVE-2024-28054
Description
Amavis before 2.12.3 and 2.13.x before 2.13.1, in part because of its use of MIME-tools, has an Interpretation Conflict (relative to some mail user agents) when there are multiple boundary parameters in a MIME email message. Consequently, there can be an incorrect check for banned files or malware. (CVE-2024-28054)
References
SRPMS
9/core
- amavisd-new-2.11.0-9.1.mga9