{"id":"MGASA-2023-0068","summary":"Updated clamav packages fix security vulnerability","details":"A possible remote code execution vulnerability in the HFS+ file parser.\n(CVE-2023-20032)\n\nA possible remote information leak vulnerability in the DMG file parser.\n(CVE-2023-20052)\n","modified":"2026-02-01T00:30:30.801312Z","published":"2023-02-27T20:27:16Z","related":["CVE-2023-20032","CVE-2023-20052"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2023-0068.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=31562"},{"type":"REPORT","url":"https://blog.clamav.net/2023/02/clamav-01038-01052-and-101-patch.html"}],"affected":[{"package":{"name":"clamav","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/clamav?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.103.8-1.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2023-0068.json"}}],"schema_version":"1.7.3","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}