Security update for clamav
This update for clamav fixes the following issues:
- CVE-2021-1252: Fix for Excel XLM parser infinite loop. (bsc#1184532)
- CVE-2021-1404: Fix for PDF parser buffer over-read; possible crash. (bsc#1184533)
- CVE-2021-1405: Fix for mail parser NULL-dereference crash. (bsc#1184534)
- Fix errors when scanning files > 4G (bsc#1181256)
- Update clamav.keyring
- Update to 0.103.2
This update was imported from the SUSE:SLE-15:Update update project.
-
Submitted by
Reinhard Max (rmax)
Fixed bugs
bnc#1184532
VUL-0: CVE-2021-1252: clamav: denial of service in Excel XLM macro parsing module
bnc#1181256
L3: clamav scan of files > 4GB abort with RC2 [ ref:_00D1igLOd._5001iYHdiV:ref ]
bnc#1184534
VUL-0: CVE-2021-1405: clamav: denial of service in the PDF parsing module
bnc#1184533
VUL-0: CVE-2021-1404: clamav: denial of service in the email parsing module
