The updated packages fix security vulnerabilities:
A possible heap overflow read bug in the OLE2 file parser that could
cause a denial-of-service (DoS) condition. (CVE-2024-20290)
A possible command injection vulnerability in the "VirusEvent" feature
of ClamAV's ClamD service. (CVE-2024-20328)
- https://bugs.mageia.org/show_bug.cgi?id=32815
- https://blog.clamav.net/2023/11/clamav-130-122-105-released.html
- https://www.cve.org/CVERecord?id=CVE-2024-20290
- https://www.cve.org/CVERecord?id=CVE-2024-20328
- 9/core/clamav-1.0.5-1.mga9
Get the latest Linux and open source security news straight to your inbox.