Advisories ยป MGASA-2024-0212

Updated amavisd-new packages fix security vulnerability

Publication date: 06 Jun 2024
Modification date: 06 Jun 2024
Type: security
Affected Mageia releases : 9
CVE: CVE-2024-28054

Description

Amavis before 2.12.3 and 2.13.x before 2.13.1, in part because of its
use of MIME-tools, has an Interpretation Conflict (relative to some mail
user agents) when there are multiple boundary parameters in a MIME email
message. Consequently, there can be an incorrect check for banned files
or malware. (CVE-2024-28054)
                

References

SRPMS

9/core