Actions
Bug #14349
closed
The ClamAV 0.105.1 got a few vulnerabilities
Status:
Closed
Priority:
Normal
Assignee:
-
Category:
Squid
Target version:
-
Start date:
Due date:
% Done:
0%
Estimated time:
Plus Target Version:
Affected Version:
Affected Plus Version:
23.05.1
Affected Architecture:
Description
Current ClamAV 0.105.1 got a few vulnerabilities:
https://blog.clamav.net/2023/02/clamav-01038-01052-and-101-patch.html
CVE-2023-20032
CVE-2023-20052
The new package version needs to be pulled in, to let users get updated squid.
Updated by Kris Phillips about 2 years ago
- Status changed from New to Confirmed
- Plus Target Version set to 23.09
- Affected Plus Version set to 23.05.1
pfSense Plus 23.09 has the latest ClamAV 1.1.0, which is not vulnerable:
/usr/local/sbin/clamd --version
ClamAV 1.1.0/26963/Sat Jul 8 07:27:53 2023
pfSense Plus 23.05.1 has 1.0.1, which is affected:
/usr/local/sbin/clamd --version
ClamAV 1.0.1
Updated by Jim Pingle almost 2 years ago
- Status changed from Confirmed to Closed
- Plus Target Version deleted (
23.09)
It's already fixed in dev snaps, it'll come back naturally with the next release.
Actions