deepcrayon/buildroot
deepcrayon/buildroot
1
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity
buildroot/package/clamav
History
Peter Korsgaard 7aee27c2b9 package/clamav: security bump to version 0.103.2 
Fixes the following security issues:

- CVE-2021-1386: Fix for UnRAR DLL load privilege escalation.  Affects
  0.103.1 and prior on Windows only.

- CVE-2021-1252: Fix for Excel XLM parser infinite loop.  Affects 0.103.0
  and 0.103.1 only.

- CVE-2021-1404: Fix for PDF parser buffer over-read; possible crash.
  Affects 0.103.0 and 0.103.1 only.

- CVE-2021-1405: Fix for mail parser NULL-dereference crash.  Affects
  0.103.1 and prior.

- CVE-2021-27506: The ClamAV Engine (Version 0.103.1 and below) embedded in
  Storsmshield Network Security (1.0 to 4.1.5) is subject to DoS in case of
  parsing of malformed png files.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2021-04-10 18:39:56 +02:00
..
0001-clamdscan-proto.c-fix-build-error-due-to-missing-soc.patch
0002-mbox-do-not-use-backtrace-if-using-uClibc-without-ba.patch package/clamav: bump version to 0.103.0 2020-09-20 15:05:58 +02:00
clamav.hash package/clamav: security bump to version 0.103.2 2021-04-10 18:39:56 +02:00
clamav.mk package/clamav: security bump to version 0.103.2 2021-04-10 18:39:56 +02:00
Config.in package/clamav: needs dynamic library 2020-09-23 20:45:23 +02:00