ALAS2023-2024-615

Amazon Linux 2023 Security Advisory: ALAS2023-2024-615
Advisory Released Date: 2024-05-13
Advisory Updated Date: 2025-09-08

Severity: Low

References:
FAQs regarding Amazon Linux ALAS/CVE Severity

Issue Overview:
No CVE associated with this advisory

Affected Packages:

clamav

Issue Correction:
Run dnf update clamav --releasever 2023.4.20240513 or dnf update --advisory ALAS2023-2024-615 --releasever 2023.4.20240513 to update your system.
More information on how to update your system can be found on this page: Amazon Linux 2023 documentation

New Packages:

aarch64:
    clamd-debuginfo-0.103.11-1.amzn2023.0.1.aarch64
    clamav-update-debuginfo-0.103.11-1.amzn2023.0.1.aarch64
    clamav-lib-debuginfo-0.103.11-1.amzn2023.0.1.aarch64
    clamav-update-0.103.11-1.amzn2023.0.1.aarch64
    clamav-milter-0.103.11-1.amzn2023.0.1.aarch64
    clamav-devel-0.103.11-1.amzn2023.0.1.aarch64
    clamd-0.103.11-1.amzn2023.0.1.aarch64
    clamav-debugsource-0.103.11-1.amzn2023.0.1.aarch64
    clamav-milter-debuginfo-0.103.11-1.amzn2023.0.1.aarch64
    clamav-debuginfo-0.103.11-1.amzn2023.0.1.aarch64
    clamav-0.103.11-1.amzn2023.0.1.aarch64
    clamav-lib-0.103.11-1.amzn2023.0.1.aarch64

noarch:
    clamav-filesystem-0.103.11-1.amzn2023.0.1.noarch
    clamav-data-0.103.11-1.amzn2023.0.1.noarch
    clamav-doc-0.103.11-1.amzn2023.0.1.noarch

src:
    clamav-0.103.11-1.amzn2023.0.1.src

x86_64:
    clamav-update-debuginfo-0.103.11-1.amzn2023.0.1.x86_64
    clamav-devel-0.103.11-1.amzn2023.0.1.x86_64
    clamav-milter-0.103.11-1.amzn2023.0.1.x86_64
    clamav-lib-0.103.11-1.amzn2023.0.1.x86_64
    clamav-milter-debuginfo-0.103.11-1.amzn2023.0.1.x86_64
    clamav-update-0.103.11-1.amzn2023.0.1.x86_64
    clamav-0.103.11-1.amzn2023.0.1.x86_64
    clamd-0.103.11-1.amzn2023.0.1.x86_64
    clamd-debuginfo-0.103.11-1.amzn2023.0.1.x86_64
    clamav-lib-debuginfo-0.103.11-1.amzn2023.0.1.x86_64
    clamav-debuginfo-0.103.11-1.amzn2023.0.1.x86_64
    clamav-debugsource-0.103.11-1.amzn2023.0.1.x86_64

Changelog:

2025-09-08: CVE-2024-20290 was removed from this advisory.

2025-09-08: The severity of this advisory has been changed from Medium to Low.

Additional References

Release Notes: Amazon Linux 2023 Release Notes

Red Hat:

Mitre: