OESA-2021-1187

See a problem?
Please try reporting it to the source first.
Source
https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2021-1187
Import Source
https://repo.openeuler.org/security/data/osv/OESA-2021-1187.json
JSON Data
https://api.osv.dev/v1/vulns/OESA-2021-1187
Upstream
Published
2021-05-15T11:02:54Z
Modified
2025-09-03T06:17:20.217936Z
Summary
clamav security update
Details

Clam AntiVirus (clamav) is an open source antivirus engine for detecting trojans, viruses, malware & other malicious threats. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a command line scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use with your own software. he virus database is based on the virus database from OpenAntiVirus, but contains additional signatures and is KEPT UP TO DATE.

Security Fix(es):

The ClamAV Engine (version 0.103.1 and below) component embedded in Storsmshield Network Security (SNS) is subject to DoS in case of parsing of malformed png files. This affect Netasq versions 9.1.0 to 9.1.11 and SNS versions 1.0.0 to 4.2.0. This issue is fixed in SNS 3.7.19, 3.11.7 and 4.2.1.(CVE-2021-27506)

Database specific 
{
    "severity": "Medium"
}
References

Affected packages

openEuler:20.03-LTS-SP1 / clamav

Package

Name
clamav
Purl
pkg:rpm/openEuler/clamav&distro=openEuler-20.03-LTS-SP1

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.103.2-1.oe1

Ecosystem specific 

{
    "aarch64": [
        "clamav-debugsource-0.103.2-1.oe1.aarch64.rpm",
        "clamav-milter-0.103.2-1.oe1.aarch64.rpm",
        "clamav-debuginfo-0.103.2-1.oe1.aarch64.rpm",
        "clamd-0.103.2-1.oe1.aarch64.rpm",
        "clamav-update-0.103.2-1.oe1.aarch64.rpm",
        "clamav-devel-0.103.2-1.oe1.aarch64.rpm",
        "clamav-help-0.103.2-1.oe1.aarch64.rpm",
        "clamav-0.103.2-1.oe1.aarch64.rpm"
    ],
    "src": [
        "clamav-0.103.2-1.oe1.src.rpm"
    ],
    "x86_64": [
        "clamav-help-0.103.2-1.oe1.x86_64.rpm",
        "clamav-milter-0.103.2-1.oe1.x86_64.rpm",
        "clamav-debuginfo-0.103.2-1.oe1.x86_64.rpm",
        "clamav-0.103.2-1.oe1.x86_64.rpm",
        "clamav-debugsource-0.103.2-1.oe1.x86_64.rpm",
        "clamav-update-0.103.2-1.oe1.x86_64.rpm",
        "clamav-devel-0.103.2-1.oe1.x86_64.rpm",
        "clamd-0.103.2-1.oe1.x86_64.rpm"
    ],
    "noarch": [
        "clamav-filesystem-0.103.2-1.oe1.noarch.rpm",
        "clamav-data-0.103.2-1.oe1.noarch.rpm"
    ]
}

Database specific

source 
"https://repo.openeuler.org/security/data/osv/OESA-2021-1187.json"