Avast WEBforum

Consumer Products => Avast Free Antivirus / Premium Security (legacy Pro Antivirus, Internet Security, Premier) => Topic started by: Kingfish on May 05, 2022, 06:20:52 PM

Title: This is concerning
Post by: Kingfish on May 05, 2022, 06:20:52 PM

I hope this is being addressed.
https://thehackernews.com/2022/05/researchers-disclose-10-year-old.html

Title: Re: This is concerning
Post by: DavidR on May 05, 2022, 07:34:05 PM

It already has in avast 22.1.xxxx

Quote from: Avast

Official Avast Statement: Avast is an active participant in the coordinated vulnerability disclosure process, and we appreciate that SentinelOne has worked with us and provided a detailed analysis of the vulnerabilities identified. SentinelOne reported two vulnerabilities, now tracked as CVE-2022-26522 and CVE-2022-26523, to us on December 20, 2021.

We worked on a fix released in version 22.1 in February 2022 and notified SentinelOne of this applied fix. Avast and AVG users were automatically updated and are protected against any risk of exploitation, although we have not seen the vulnerabilities abused in the wild. We recommend our Avast and AVG users constantly update their software to the latest version to be protected. Coordinated disclosure is an excellent way of preventing risks from manifesting into attacks, and we encourage participation in our bug bounty program.

Title: Re: This is concerning
Post by: bob3160 on May 05, 2022, 11:29:56 PM

Quote from: Kingfish on May 05, 2022, 06:20:52 PM

I hope this is being addressed.
https://thehackernews.com/2022/05/researchers-disclose-10-year-old.html (https://thehackernews.com/2022/05/researchers-disclose-10-year-old.html)

It was addressed back in February.

Title: Re: This is concerning
Post by: Kingfish on May 06, 2022, 12:09:43 AM

Good to hear.