Mageia 2020-0105: clamav security update

    Date26 Feb 2020
    113
    Posted ByLinuxSecurity Advisories
    The updated packages fix a security vulnerability: A vulnerability in the Data-Loss-Prevention (DLP) module in Clam AntiVirus (ClamAV) Software versions 0.102.1 and 0.102.0 could allow an unauthenticated, remote attacker to cause a denial of service condition on
    MGASA-2020-0105 - Updated clamav packages fix security vulnerability
    
    Publication date: 26 Feb 2020
    URL: https://advisories.mageia.org/MGASA-2020-0105.html
    Type: security
    Affected Mageia releases: 7
    CVE: CVE-2020-3123
    
    The updated packages fix a security vulnerability:
    
    A vulnerability in the Data-Loss-Prevention (DLP) module in Clam AntiVirus
    (ClamAV) Software versions 0.102.1 and 0.102.0 could allow an
    unauthenticated, remote attacker to cause a denial of service condition on
    an affected device. The vulnerability is due to an out-of-bounds read
    affecting users that have enabled the optional DLP feature. An attacker
    could exploit this vulnerability by sending a crafted email file to an
    affected device. An exploit could allow the attacker to cause the ClamAV
    scanning process crash, resulting in a denial of service condition.
    (CVE-2020-3123)
    
    References:
    - https://bugs.mageia.org/show_bug.cgi?id=26221
    - https://usn.ubuntu.com/4280-1/
    - https://blog.clamav.net/2020/02/clamav-01022-security-patch-released.html
    - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3123
    
    SRPMS:
    - 7/core/clamav-0.102.2-1.mga7
    

    LinuxSecurity Poll

    What do you think of the LinuxSecurity Privacy news articles?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 3 answer(s).
    /main-polls/25-what-do-you-think-of-the-linuxsecurity-privacy-news-articles?task=poll.vote&format=json
    25
    radio
    [{"id":"90","title":"Love them!","votes":"53","type":"x","order":"1","pct":86.89,"resources":[]},{"id":"91","title":"I'm indifferent","votes":"6","type":"x","order":"2","pct":9.84,"resources":[]},{"id":"92","title":"Not interested in this topic","votes":"2","type":"x","order":"3","pct":3.28,"resources":[]}]["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"]["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"]350
    bottom200

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.