-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - ----------------------------------------------------------------------- Debian LTS Advisory DLA-3544-1 debian-...@lists.debian.org https://www.debian.org/lts/security/ Utkarsh Gupta August 28, 2023 https://wiki.debian.org/LTS - -----------------------------------------------------------------------
Package : clamav Version : 0.103.9+dfsg-0+deb10u1 CVE ID : CVE-2023-20197 Debian Bug : 1050057 A vulnerability in the filesystem image parser for Hierarchical File System Plus (HFS+) of ClamAV, an anti-virus utility for Unix, could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. For Debian 10 buster, this problem has been fixed in new upstream version 0.103.9+dfsg-0+deb10u1. We recommend that you upgrade your clamav packages. For the detailed security status of clamav please refer to its security tracker page at: https://security-tracker.debian.org/tracker/clamav Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEbJ0QSEqa5Mw4X3xxgj6WdgbDS5YFAmTr9+QACgkQgj6WdgbD S5aSpw//S2ABBpKGRZlmBZgYW8FzCsa/M1kr5dEOfBQE+jTc3GbhZgsu0RN45PT/ EPgWbPMSrVDHRIqgh7UJIJ9L/Qgx2BsbNYhgK9dPbaVPg2yq3M+KZA2zEAGT2QBq gYMJ80YTWBLz86swe3pUoIcQhzorrbnN2ox8qSIjOWSPbHUL1uX2RMiBqoZPpa9Q mpvQ0x9yM9bYjbMnsF91d6TYeOcjEpfSIbdut+h7hSA4KKzNMB1Vjx8QEllG+CT6 ExxPeuAOgI8ItRnt21q7B382YvMFr7thZiIwbBu79NXBFGGGix+/39xwi8dXTiJJ 2/90r5+KnTIKYu78RPhnsnkgzRZoKw7aaceWEMqLv50Rd/jmNS4xISFXDsWaiNzj hpof921LmflwLumxvL2j3Mv2Wc15ZMfxVytjOWSnCIgJ012mq9ujCxV+Q08l077g eZkKBpZco1I9KCHiVGbrRoNeBJklBP9xG5rkjOKkdrGY/kboGK6434v0SPUfFrnj +qOYrC4y964HJ8yGANTCE6iy8DUyQQ4zD6HcsdyfwD3/XXkY3EgcJt8adU4uiJgT pp6CYTfZB7Aluhs36eY3P1/1eVaPRISAnxnWqzaPPoWCTdDmY8IsgFmMrto58irY KwGmcpkN87AAj38wz8AKP2WEwRl1Ey57GlCOJGVytrJ5JD6CdwY= =wGR5 -----END PGP SIGNATURE-----