[AUTO-CHERRYPICK] [AUTOPATCHER-CORE] Upgrade clamav to 1.0.7 CVE-2024…

…-20505, CVE-2024-20506 - branch main (#11162)
microsoft · Nov 23, 2024 · cb6ef01 · cb6ef01
1 parent bddbf86
commit cb6ef01
Show file tree

Hide file tree

Showing 3 changed files with 11 additions and 8 deletions.
diff --git a/SPECS/clamav/clamav.signatures.json b/SPECS/clamav/clamav.signatures.json
@@ -1,6 +1,6 @@
 {
- "Signatures": {
-  "clamav-1.0.6.tar.gz": "7a9691525bd150f9419c337d25d8c28402ed35beea7aa19563aabcddc248de52",
-  "clamav-1.0.6-cargo.tar.gz": "20b6179033c32ad81023ccc4a4262730d10fa80cd7ae678b386f139305b1e31f"
- }
-}
+  "Signatures": {
+    "clamav-1.0.7-cargo.tar.gz": "3066cc6c80a01e6a65926c320af5d3d8b465a20e4975ec381e8e1b758598b532",
+    "clamav-1.0.7.tar.gz": "cf9908f68b07fda099fd382710863e99d064c7851c0a01bd9336ca8845d7644c"
+  }
+}
diff --git a/SPECS/clamav/clamav.spec b/SPECS/clamav/clamav.spec
@@ -1,6 +1,6 @@
 Summary:        Open source antivirus engine
 Name:           clamav
-Version:        1.0.6
+Version:        1.0.7
 Release:        1%{?dist}
 License:        ASL 2.0 AND BSD AND bzip2-1.0.4 AND GPLv2 AND LGPLv2+ AND MIT AND Public Domain AND UnRar
 Vendor:         Microsoft Corporation
@@ -133,6 +133,9 @@ fi
 %dir %attr(-,clamav,clamav) %{_sharedstatedir}/clamav
 
 %changelog
+* Tue Nov 19 2024 CBL-Mariner Servicing Account <[email protected]> - 1.0.7-1
+- Auto-upgrade to 1.0.7 - CVE-2024-20505, CVE-2024-20506
+
 * Thu Apr 25 2024 Betty Lakes <[email protected]> - 1.0.6-1
 - Upgrade to version 1.0.6
 

diff --git a/cgmanifest.json b/cgmanifest.json
@@ -1767,8 +1767,8 @@
         "type": "other",
         "other": {
           "name": "clamav",
-          "version": "1.0.6",
-          "downloadUrl": "https://github.com/Cisco-Talos/clamav/archive/refs/tags/clamav-1.0.6.tar.gz"
+          "version": "1.0.7",
+          "downloadUrl": "https://github.com/Cisco-Talos/clamav/archive/refs/tags/clamav-1.0.7.tar.gz"
         }
       }
     },