The AntiVirus scan engine ClamAV was updated to version 0.93 fixes a long list of vulnerabilities. These vulnerabilities can lead to remote code execution, bypassing the scanning engine, remote denial-of-service, local file overwrite. (CVE-2008-1837, CVE-2008-1836, CVE-2008-1835, CVE-2008-1833, CVE-2008-1387, CVE-2008-1100, CVE-2008-0314, CVE-2007-6595, CVE-2007-6596) Since the library changed, we also released updated klamav packages for openSUSE 10.2 and 10.3.
There is no known workaround, please install the update packages.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
openSUSE | 10.2 | x86_64 | clamav-db | < 0.93-0.3 | clamav-db-0.93-0.3.x86_64.rpm |
openSUSE | 10.2 | ppc | clamav | < 0.93-0.3 | clamav-0.93-0.3.ppc.rpm |
openSUSE | 10.3 | x86_64 | clamav | < 0.93-0.3 | clamav-0.93-0.3.x86_64.rpm |
openSUSE | 10.2 | x86_64 | clamav | < 0.93-0.3 | clamav-0.93-0.3.x86_64.rpm |
openSUSE | 10.3 | i586 | klamav | < 0.41.1-32.3 | klamav-0.41.1-32.3.i586.rpm |
openSUSE | 10.2 | ppc | klamav | < 0.41.1-17.4 | klamav-0.41.1-17.4.ppc.rpm |
openSUSE | 10.1 | ppc | clamav-db | < 0.93-0.6 | clamav-db-0.93-0.6.ppc.rpm |
openSUSE | 10.1 | i586 | clamav | < 0.93-0.6 | clamav-0.93-0.6.i586.rpm |
openSUSE | 10.1 | ppc | clamav | < 0.93-0.6 | clamav-0.93-0.6.ppc.rpm |
openSUSE | 10.3 | x86_64 | klamav | < 0.41.1-32.3 | klamav-0.41.1-32.3.x86_64.rpm |