{"affected":[{"ecosystem_specific":{"binaries":[{"clamav":"1.4.3-3.47.1","clamav-devel":"1.4.3-3.47.1","clamav-docs-html":"1.4.3-3.47.1","clamav-milter":"1.4.3-3.47.1","libclamav12":"1.4.3-3.47.1","libclammspack0":"1.4.3-3.47.1","libfreshclam3":"1.4.3-3.47.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 12 SP5-LTSS","name":"clamav","purl":"pkg:rpm/suse/clamav&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5-LTSS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.4.3-3.47.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"clamav":"1.4.3-3.47.1","clamav-devel":"1.4.3-3.47.1","clamav-docs-html":"1.4.3-3.47.1","clamav-milter":"1.4.3-3.47.1","libclamav12":"1.4.3-3.47.1","libclammspack0":"1.4.3-3.47.1","libfreshclam3":"1.4.3-3.47.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server LTSS Extended Security 12 SP5","name":"clamav","purl":"pkg:rpm/suse/clamav&distro=SUSE%20Linux%20Enterprise%20Server%20LTSS%20Extended%20Security%2012%20SP5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.4.3-3.47.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for clamav fixes the following issues:\n\nClamAV version 1.4.3:\n\n- CVE-2025-20260: PDF Scanning Buffer Overflow Vulnerability (bsc#1245054).\n- CVE-2025-20234: Vulnerability in Universal Disk Format (UDF) processing (bsc#1245055).\n\nOther bugfixes:\n\n- Fix a race condition between the mockup servers started by different test cases in freshclam_test.py (bsc#1243565)\n","id":"SUSE-SU-2025:02201-1","modified":"2025-07-02T13:04:36Z","published":"2025-07-02T13:04:36Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2025/suse-su-202502201-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1243565"},{"type":"REPORT","url":"https://bugzilla.suse.com/1245054"},{"type":"REPORT","url":"https://bugzilla.suse.com/1245055"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-20234"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-20260"}],"related":["CVE-2025-20234","CVE-2025-20260"],"summary":"Security update for clamav","upstream":["CVE-2025-20234","CVE-2025-20260"]}