This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "IPFire 2.x development tree".
The tag, v2.27-core173 has been created at d08fb579282307f4db936996c6e6110d442d79f4 (commit)
- Log ----------------------------------------------------------------- commit d08fb579282307f4db936996c6e6110d442d79f4 Author: Matthias Fischer matthias.fischer@ipfire.org Date: Fri Feb 17 19:00:48 2023 +0100
clamav: Update to 1.0.1
For details see: https://blog.clamav.net/2023/02/clamav-01038-01052-and-101-patch.html
"ClamAV 1.0.1 is a critical patch release with the following fixes:
CVE-2023-20032: Fixed a possible remote code execution vulnerability in the HFS+ file parser. The issue affects versions 1.0.0 and earlier, 0.105.1 and earlier, and 0.103.7 and earlier. Thank you to Simon Scannell for reporting this issue.
CVE-2023-20052: Fixed a possible remote information leak vulnerability in the DMG file parser. The issue affects versions 1.0.0 and earlier, 0.105.1 and earlier, and 0.103.7 and earlier. Thank you to Simon Scannell for reporting this issue.
Fix an allmatch detection issue with the preclass bytecode hook."
Signed-off-by: Matthias Fischer matthias.fischer@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org -----------------------------------------------------------------------
hooks/post-receive -- IPFire 2.x development tree