[Bug 1923831] Re: Sync clamav 0.103.2+dfsg-1 (main) from Debian unstable (main)
Utkarsh Gupta
1923831 at bugs.launchpad.net
Wed Apr 14 11:40:57 UTC 2021
If it helps, upstream release blog:
https://blog.clamav.net/2021/04/clamav-01032-security-patch-release.html
--
You received this bug notification because you are a member of Ubuntu
Sponsors Team, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/1923831
Title:
Sync clamav 0.103.2+dfsg-1 (main) from Debian unstable (main)
Status in clamav package in Ubuntu:
New
Bug description:
Please sync clamav 0.103.2+dfsg-1 (main) from Debian unstable (main).
The update fixes 3 new vulnerabilities and some other misc fixes.
IOW: it's probably important to update the package and hence the sync request
Changelog entries since current hirsute version 0.103.0+dfsg-3.1:
clamav (0.103.2+dfsg-1) unstable; urgency=medium
* Import 0.103.2
- CVE-2021-1252 (Fix for Excel XLM parser infinite loop.)
- CVE-2021-1404 (Fix for PDF parser buffer over-read; possible crash.)
- CVE-2021-1405 (Fix for mail parser NULL-dereference crash.)
- Update symbol file.
(Closes: #986622).
-- Sebastian Andrzej Siewior <sebastian at breakpoint.cc> Mon, 12 Apr
2021 21:31:08 +0200
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/clamav/+bug/1923831/+subscriptions
More information about the Ubuntu-sponsors
mailing list