VDB

MAGEIA-2024-48

MAGEIA-2024-48 PUBLISHED

The updated packages fix security vulnerabilities: A possible heap overflow read bug in the OLE2 file parser that could cause a denial-of-service (DoS) condition. (CVE-2024-20290) A possible command injection vulnerability in the "VirusEvent" feature of ClamAV's ClamD service. (CVE-2024-20328)

Affected Products

VendorProductVersions
Mageiaclamav0, 1.0.5-1.mga9, 0
Mageiaangband0, 4.2.5-1.mga9

Timeline

  • Feb 9, 2024 CVE Published
  • Feb 24, 2024 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›