With CVE-2024-20328
(https://amitschendel.github.io/vulnerabilites/CVE-2024-20328/) and
CVE-2024-20290
(https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-20290) the
update now seems urgent! You seem to have released a patch
(https://blog.clamav.net/2023/11/clamav-130-122-105-released.html) but
debian oldstable still uses 0.103.10.
t
Am 09.01.24 um 20:57 schrieb Sebastian Andrzej Siewior:
On 2024-01-09 10:09:46 [+0100], p-----berger wrote:
Package: clamav
Version: 0.103.10+dfsg-0+deb11u1
The daily logs tell that clamav installation is outdated. I suggest to
bump the oldstable version to a current version like 0.103.11 which is
suggested in the error message.
Here is the error log:
WARNING: Your ClamAV installation is OUTDATED!
WARNING: Local version: 0.103.10 Recommended version: 0.103.11
Thank you for the report. I saw that, I just didn't get around. I try to
take care of this over the weekend.
Sebastian
