Remotely Exploitable ClamAV DoS Bug Discovered & Fixed
1 min read
Aug 31, 2023
It was discovered that ClamAV incorrectly handled parsing HFS+ files (CVE-2023-20197). This bug is easy to exploit and poses a severe threat to the availability of impacted systems.
A remote attacker could use this issue to cause ClamAV to crash, resulting in a denial of service (DoS).
Important updates for ClamAV have been released that mitigate this severe flaw. We urge all impacted users to apply the updates issued by Fedora and Ubuntu as soon as possible to protect the availability of their critical systems.
To stay on top of essential updates released by the open-source programs and applications you use, register as a LinuxSecurity user, subscribe to our Linux Advisory Watch newsletter, and customize your advisories for your distro(s). This will enable you to stay up-to-date on the latest, most significant issues impacting the security of your systems.
Follow @LS_Advisories on Twitter for real-time updates on advisories for your distro(s).
Related Articles
1 - 0 min read
How to Keep Your Linux System Safe from Kernel Bugs
1 - 0 min read
Spectre V2: A New Threat to Linux Systems
1 - 0 min read
Hacked VMs Reveal New Attack Risks
