Overview

File _patchinfo of Package patchinfo.21880

<patchinfo incident="21880">
  <issue tracker="bnc" id="1188284">ClamAV 0.103.3</issue>
  <issue tracker="bnc" id="1103032">VUL-1: CVE-2018-14679: libmspack, clamav: An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There isan off-by-one error in the CHM PMGI/PMGL chunk number validity checks, whichcould lead to denial of service (uninitialized da</issue>
  <issue tracker="bnc" id="1192346">VUL-0: clamav: update to 0.103.4</issue>
  <issue tracker="cve" id="2018-14679"/>
  <packager>rmax</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for clamav</summary>
  <description>This update for clamav fixes the following issues:

- CVE-2018-14679: Fixed off-by-one issue in embedded libmspack that could lead to denial of service (bsc#1103032). 
  
- Update to 0.103.4 (bsc#1192346).
- Update to 0.103.3 (bsc#1188284).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places