UbuntuUpdates.org

Package "clamav"

Name: clamav

Description:

anti-virus utility for Unix - command-line interface

Latest version: 1.5.3+dfsg-0ubuntu0.26.04.1
Release: resolute (26.04)
Level: updates
Repository: main
Homepage: https://www.clamav.net/

Links


Download "clamav"


Other versions of "clamav" in Resolute

Repository Area Version
base universe 1.4.3+dfsg-2ubuntu3
base main 1.4.3+dfsg-2ubuntu3
security main 1.5.3+dfsg-0ubuntu0.26.04.1
security universe 1.5.3+dfsg-0ubuntu0.26.04.1
updates universe 1.5.3+dfsg-0ubuntu0.26.04.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 1.5.3+dfsg-0ubuntu0.26.04.1 2026-07-08 18:08:20 UTC

  clamav (1.5.3+dfsg-0ubuntu0.26.04.1) resolute-security; urgency=medium

  * Update to 1.5.3 to fix security issues and FIPS compatibility
    - debian/watch: switch to 1.5.*.
    - debian/rules: bump CL_FLEVEL to 233.
    - debian/libclamav12.symbols: updated symbols to new version.
    - debian/*postinst.in: added new options.
    - debian/libclamav12.install: bump so versions.
    - debian/clamav-freshclam.*: added new /etc/clamav/certs directory.
    - debian/usr.bin.freshclam, debian/usr.sbin.clamd: add
      /etc/clamav/certs to profile.
    - CVE-2026-20213, CVE-2026-20214, CVE-2026-20215, CVE-2026-20216,
      CVE-2026-20217, CVE-2026-20243, CVE-2026-20244

 -- Marc Deslauriers <email address hidden> Thu, 02 Jul 2026 08:07:08 -0400

Source diff to previous version
CVE-2026-20213 A vulnerability in the PE file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other ex
CVE-2026-20214 A vulnerability in the FSG file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other e
CVE-2026-20215 A vulnerability in the 7z file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other ex
CVE-2026-20216 A vulnerability in the InstallShield file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition on an affe
CVE-2026-20217 A vulnerability in the PESpin file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly othe
CVE-2026-20243 A vulnerability in the ALZ file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other e
CVE-2026-20244 A vulnerability in the DMG file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other e

Version: 1.4.4+dfsg-0ubuntu0.26.04.1 2026-04-27 14:11:17 UTC

  clamav (1.4.4+dfsg-0ubuntu0.26.04.1) resolute-security; urgency=medium

  * Updated to version 1.4.4 to fix security issue.
    - debian/rules: bump CL_FLEVEL to 214, set DH_ALWAYS_EXCLUDE = *.orig.
    - debian/libclamav12.symbols: updated symbols to new version.
    - CVE-2026-20031

 -- Marc Deslauriers <email address hidden> Tue, 14 Apr 2026 06:02:01 -0400

CVE-2026-20031 A vulnerability in the HTML Cascading Style Sheets (CSS) module of ClamAV could allow an unauthenticated, remote attacker to cause a denial of servic



About   -   Send Feedback to @ubuntu_updates