Oval Definition:	oval:org.opensuse.security:def:63837
Revision Date: 2020-12-01 Version: 1 Title: Security update for clamav (Moderate) Description: This update for clamav fixes the following issues: Security issue fixed: - CVE-2019-12625: Fixed a ZIP bomb issue by adding detection and heuristics for zips with overlapping files (bsc#1144504). - CVE-2019-12900: Fixed an out-of-bounds write in decompress.c with many selectors (bsc#1149458). Non-security issues fixed: - Added the --max-scantime clamscan option and MaxScanTime clamd configuration option (bsc#1144504). - Increased the startup timeout of clamd to 5 minutes to cater for the grown virus database as a workaround until clamd has learned to talk to systemd to extend the timeout as long as needed (bsc#1151839). Family: unix Class: patch Status: Reference(s): 1113041 1127820 1127821 1127822 1129059 1133313 1134218 1137332 1138287 1144056 1144504 1149203 1149458 1151839 1154600 1155834 1156210 1157798 1157803 1164459 1170643 1170715 1172698 1172704 1173302 1174117 1174121 1177409 1177412 1177413 1177414 CVE-2017-7418 CVE-2018-12178 CVE-2018-12180 CVE-2018-3630 CVE-2019-12625 CVE-2019-12815 CVE-2019-12900 CVE-2019-18217 CVE-2019-19269 CVE-2019-19270 CVE-2019-20479 CVE-2019-5787 CVE-2019-5788 CVE-2019-5789 CVE-2019-5790 CVE-2019-5791 CVE-2019-5792 CVE-2019-5793 CVE-2019-5794 CVE-2019-5795 CVE-2019-5796 CVE-2019-5797 CVE-2019-5798 CVE-2019-5799 CVE-2019-5800 CVE-2019-5801 CVE-2019-5802 CVE-2019-5803 CVE-2019-5804 CVE-2019-5805 CVE-2019-5806 CVE-2019-5807 CVE-2019-5808 CVE-2019-5809 CVE-2019-5810 CVE-2019-5811 CVE-2019-5812 CVE-2019-5813 CVE-2019-5814 CVE-2019-5815 CVE-2019-5816 CVE-2019-5817 CVE-2019-5818 CVE-2019-5819 CVE-2019-5820 CVE-2019-5821 CVE-2019-5822 CVE-2019-5823 CVE-2019-5824 CVE-2019-5827 CVE-2019-5828 CVE-2019-5829 CVE-2019-5830 CVE-2019-5831 CVE-2019-5832 CVE-2019-5833 CVE-2019-5834 CVE-2019-5835 CVE-2019-5836 CVE-2019-5837 CVE-2019-5838 CVE-2019-5839 CVE-2019-5840 CVE-2019-5842 CVE-2019-6446 CVE-2020-13934 CVE-2020-13935 CVE-2020-14196 CVE-2020-27670 CVE-2020-27671 CVE-2020-27672 CVE-2020-27673 CVE-2020-3899 CVE-2020-8023 openSUSE-SU-2019:1666-1 openSUSE-SU-2019:2227-1 openSUSE-SU-2020:0031-1 openSUSE-SU-2020:1005-1 openSUSE-SU-2020:1783-1 SUSE-SU-2019:0581-1 SUSE-SU-2019:3066-1 SUSE-SU-2020:0706-1 SUSE-SU-2020:1211-1 SUSE-SU-2020:1859-1 SUSE-SU-2020:2037-1 Platform(s): openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-LTSS Product(s): Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information chromedriver-75.0.3770.90-2 is installed OR chromium-75.0.3770.90-2 is installed Definition Synopsis openSUSE Leap 15.2 is installed AND pdns-recursor-4.1.17-22 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND clamav-0.100.3-33.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND Package Information tomcat-9.0.36-3.45 is installed OR tomcat-admin-webapps-9.0.36-3.45 is installed OR tomcat-docs-webapp-9.0.36-3.45 is installed OR tomcat-el-3_0-api-9.0.36-3.45 is installed OR tomcat-javadoc-9.0.36-3.45 is installed OR tomcat-jsp-2_3-api-9.0.36-3.45 is installed OR tomcat-lib-9.0.36-3.45 is installed OR tomcat-servlet-4_0-api-9.0.36-3.45 is installed OR tomcat-webapps-9.0.36-3.45 is installed
BACK