[clamav-users] ClamAV® blog: ClamAV 0.103.2 security patch release
Joel Esler (jesler)
jesler at cisco.com
Sat Apr 10 15:11:52 UTC 2021
Thanks for pointing that out. We’ve corrected it with mitre, but obviously, we can’t correct the news.md for now.
—
Sent from my iPad
> On Apr 10, 2021, at 08:14, Sergey <a_s_y at sama.ru> wrote:
>
> On Wednesday 07 April 2021, Joel Esler (jesler) via clamav-users wrote:
>
>> CVE-2021-1404: Fix for PDF parser buffer over-read; possible crash. Affects 0.103.0 and 0.103.1 only.
>>
>> CVE-2021-1405: Fix for mail parser NULL-dereference crash. Affects 0.103.1 and prior.
>
> I seems you got the CVE description mixed between: 1405 about PDF (and in NEWS.md).
>
> --
> Regards,
> Sergey
>
> _______________________________________________
>
> clamav-users mailing list
> clamav-users at lists.clamav.net
> https://lists.clamav.net/mailman/listinfo/clamav-users
>
>
> Help us build a comprehensive ClamAV guide:
> https://github.com/vrtadmin/clamav-faq
>
> http://www.clamav.net/contact.html#ml
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 1872 bytes
Desc: not available
URL: <https://lists.clamav.net/pipermail/clamav-users/attachments/20210410/6dd9ecc1/attachment.bin>
More information about the clamav-users
mailing list