Bug 54856

Summary: Update clamav for CVE-2025-20260
Product: Sisyphus Reporter: Sergey Y. Afonin <asy>
Component: clamavAssignee: Sergey Y. Afonin <asy>
Status: CLOSED FIXED QA Contact: qa-sisyphus
Severity: critical    
Priority: P5 CC: aklemator, asy, taf
Version: unstable   
Hardware: x86_64   
OS: Linux   
Bug Depends on:    
Bug Blocks: 54849    

Description Sergey Y. Afonin 2025-06-19 14:20:36 MSK 
Из bug 54849:

https://www.cve.org/CVERecord?id=CVE-2025-20260 (9.8, buffer overflow RCE)
Comment 1 Sergey Y. Afonin 2025-10-29 12:57:38 MSK 
*** Bug 56667 has been marked as a duplicate of this bug. ***
Comment 2 Sergey Y. Afonin 2025-10-30 03:24:08 MSK 
 Wed Oct 29 2025 Alexei Takaseev <taf@altlinux> 1.4.3-alt1
 - 1.4.3 (Fixes CVE-2025-20260)
 - Add vendoring for rust
 - Update patches
 - Change /var/run/clamav -> /run/clamav
 - Disable slamscan test
 - Change soname 9 -> 12
 - Use cmake for build
 - Use PrivateMirror's by default