Cisco yakaburitsa kuburitswa kutsva kweyemahara antivirus package ClamAV 1.0.1, 0.105.3 uye 0.103.8, iyo inobvisa njodzi yakaoma (CVE-2023-20032) iyo inogona kutungamira kukuuraya kodhi kana uchitarisa mafaera ane akanyatsogadzirirwa disk mifananidzo mukati. ClamAV HFS+ format.
Kusava neruzivo rwakanaka kunokonzerwa nekushaikwa kwehukuru hwebuffer, zvichibvumira varwisi kunyora data kupfuura miganhu yebuffer uye kushandisa kodhi ine kodzero dzeClamAV process, semuenzaniso, kuongorora mafaira akatorwa kubva kumaemail pa mail server. Kuburitswa kwekuvandudzwa kwemapakeji mukuparadzira kunogona kuteverwa pamapeji anotevera: Debian, Ubuntu, Gentoo, RHEL, SUSE, Arch, FreeBSD, NetBSD.
Zvitsva izvi zvinogadzirisawo kumwe kushaikwa kwesimba (CVE-2023-20052) uko kunogona kukonzera kubuda kwezviri mukati kubva pamafaira ese ari pa server, izvo zvinosvikika kuburikidza nemaitiro ekuskena. Kusagadzikana kunoitika kana uchiongorora mafaira eDMG akagadzirwa zvakanaka uye kunokonzerwa ne parser inobvumira kutsiviwa kwezvinhu zvekunze zveXML zvinorehwa mufaira reDMG zviri kupatsanurwa.
Source: opennet.ru
