[clamav-users] Injection Vulnerability in 0.99.2
Jonathan Stockley
jstockle at opentext.com
Thu Sep 28 20:42:20 UTC 2017
Hi,
We¹ve been using ClamAV 0.99.2 for some time. Our security team has
recently done a scan and reported that this version of ClamAV has the
injection vulnerability cited here:
http://www.securityspace.com/smysecure/catid.html?id=1.3.6.1.4.1.25623.1.0.
105762
I checked and 0.99.2 is the latest stable release with 0.99.3 in beta.
Is the cited vulnerability fixed in the 0.99.3-beta1 release?
If not, is there an approximate time for when this will be fixed?
Thanks,
Jo
More information about the clamav-users
mailing list