Overview

File _patchinfo of Package patchinfo.27836

<patchinfo incident="27836">
  <issue tracker="cve" id="2023-20052"/>
  <issue tracker="cve" id="2023-20032"/>
  <issue tracker="bnc" id="1208363">VUL-0: CVE-2023-20032: clamav,clamav-openssl1: remote code execution vulnerability in the HFS+ file parser</issue>
  <issue tracker="bnc" id="1208365">VUL-0: CVE-2023-20052: clamav,clamav-openssl1: ClamAV XML external entity injection</issue>
  <packager>rmax</packager>
  <rating>critical</rating>
  <category>security</category>
  <summary>Security update for clamav</summary>
  <description>This update for clamav fixes the following issues:

- CVE-2023-20032: Fixed a possible remote code execution vulnerability in the HFS+ file parser (bsc#1208363).
- CVE-2023-20052: Fixed a possible remote information leak vulnerability in the DMG file parser (bsc#1208365).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places