Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

Debian 10 Buster DLA-3544-1 Critical: ClamAV DoS Threat

debian lts
Calendar Grey August 28, 2023
Dist Debian Esm H88
An important security patch for ClamAV resolving a DoS flaw on Debian LTS; upgrading is advised for enhanced safety.
A vulnerability in the filesystem image parser for Hierarchical File System Plus (HFS+) of ClamAV, an anti-virus utility for Unix, could allow an unauthenticated, remote attacker t...

Summary

For Debian 10 buster, this problem has been fixed in new upstream
version 0.103.9+dfsg-0+deb10u1.

We recommend that you upgrade your clamav packages.

For the detailed security status of clamav please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/source-package/clamav

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS


Severity
critical
Lowest
Low
Medium
High
Critical

Package: clamav
Version: 0.103.9+dfsg-0+deb10u1
CVE ID: CVE-2023-20197
Debian Bug: 1050057

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here