[opensuse-security] ***UNCHECKED*** clamav remote code injection - openSUSE Security - openSUSE Mailing Lists

newer
[opensuse-security] The list needs...

[opensuse-security] UNCHECKED clamav remote code injection

older
[opensuse-security] Security issue...

Florian Gleixner

27 Jan 2018 27 Jan '18

10:48

Hi, there are reports from email service providers, that there are attempts to exploit clamav using prepared pdf documents in mails. See (in german): https://www.heise.de/security/meldung/Jetzt-patchen-Angriffe-auf-Viren-Scann... I hope, the opensuse security team will release a update for clamav soon.

Attachments:

signature.asc (application/pgp-signature — 181 bytes)

Reply

Sign in to reply online Use email software

Show replies by date

Andreas Stieger

27 Jan 27 Jan

12:50

Hello, On 01/27/2018 11:48 AM, Florian Gleixner wrote:

there are reports from email service providers, that there are attempts to exploit clamav using prepared pdf documents in mails. See (in german):

https://www.heise.de/security/meldung/Jetzt-patchen-Angriffe-auf-Viren-Scann...

I hope, the opensuse security team will release a update for clamav soon.

Yes, follow https://bugzilla.suse.com/show_bug.cgi?id=1077732 Andreas -- Andreas Stieger <astieger@suse.com> Project Manager Security SUSE Linux GmbH, GF: Felix Imendörffer, Jane Smithard, Graham Norton, HRB 21284 (AG Nürnberg) -- To unsubscribe, e-mail: opensuse-security+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-security+owner@opensuse.org

Reply

Sign in to reply online Use email software

2520

Age (days ago)

2520

Last active (days ago)

Download

1 comments

2 participants

tags

participants (2)

Andreas Stieger
Florian Gleixner