Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2018-10-04 19:03:24 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "clamav" Thu Oct 4 19:03:24 2018 rev:96 rq:639958 version:0.100.2 Changes: -------- --- /work/SRC/openSUSE:Factory/clamav/clamav.changes 2018-08-02 14:58:47.708343329 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2018-10-04 19:03:39.787066400 +0200 @@ -1,0 +2,23 @@ +Thu Oct 4 09:04:01 UTC 2018 - Reinhard Max <[email protected]> + +- Update to version 0.100.2: + * bsc#1110723, CVE-2018-15378: Vulnerability in ClamAV's MEW + unpacking feature that could allow an unauthenticated, remote + attacker to cause a denial of service (DoS) condition on an + affected device. + * bsc#1103040, CVE-2018-14680, CVE-2018-14681, CVE-2018-14682: + more fixes for embedded libmspack. + * Make freshclam more robust against lagging signature mirrors. + * On-Access "Extra Scanning", an opt-in minor feature of + OnAccess scanning on Linux systems, has been disabled due to a + known issue with resource cleanup OnAccessExtraScanning will + be re-enabled in a future release when the issue is + resolved. In the mean-time, users who enabled the feature in + clamd.conf will see a warning informing them that the feature + is not active. For details, see: + https://bugzilla.clamav.net/show_bug.cgi?id=12048 +- Restore exit code compatibility of freshclam with versions before + 0.100.0 when the virus database is already up to date + (bsc#1104457, clamav-freshclam-exit.patch). + +------------------------------------------------------------------- Old: ---- clamav-0.100.1.tar.gz clamav-0.100.1.tar.gz.sig New: ---- clamav-0.100.2.tar.gz clamav-0.100.2.tar.gz.sig clamav-freshclam-exit.patch ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ clamav.spec ++++++ --- /var/tmp/diff_new_pack.aoYHXA/_old 2018-10-04 19:03:40.399065754 +0200 +++ /var/tmp/diff_new_pack.aoYHXA/_new 2018-10-04 19:03:40.399065754 +0200 @@ -12,13 +12,13 @@ # license that conforms to the Open Source Definition (Version 1.9) # published by the Open Source Initiative. -# Please submit bugfixes or comments via http://bugs.opensuse.org/ +# Please submit bugfixes or comments via https://bugs.opensuse.org/ # %define clamav_check --enable-check Name: clamav -Version: 0.100.1 +Version: 0.100.2 Release: 0 Summary: Antivirus Toolkit License: GPL-2.0-only @@ -36,6 +36,7 @@ Patch4: clamav-disable-timestamps.patch Patch5: clamav-obsolete-config.patch Patch6: clamav-disable-yara.patch +Patch7: clamav-freshclam-exit.patch BuildRequires: autoconf BuildRequires: automake BuildRequires: bc @@ -111,6 +112,7 @@ %patch4 %patch5 %patch6 +%patch7 %build CFLAGS="-fstack-protector" ++++++ clamav-0.100.1.tar.gz -> clamav-0.100.2.tar.gz ++++++ /work/SRC/openSUSE:Factory/clamav/clamav-0.100.1.tar.gz /work/SRC/openSUSE:Factory/.clamav.new/clamav-0.100.2.tar.gz differ: char 5, line 1 ++++++ clamav-disable-timestamps.patch ++++++ --- /var/tmp/diff_new_pack.aoYHXA/_old 2018-10-04 19:03:40.439065711 +0200 +++ /var/tmp/diff_new_pack.aoYHXA/_new 2018-10-04 19:03:40.443065708 +0200 @@ -27,7 +27,7 @@ strncat(buf, "WARNING: sizeof(fp_digit) == sizeof(fp_word), this build is likely to not work properly.\n", --- configure.orig +++ configure -@@ -800,6 +800,7 @@ FGREP +@@ -801,6 +801,7 @@ FGREP SED LIBTOOL LIBCLAMAV_VERSION @@ -35,7 +35,7 @@ EGREP GREP CPP -@@ -902,6 +903,7 @@ ac_user_opts=' +@@ -903,6 +904,7 @@ ac_user_opts=' enable_option_checking enable_silent_rules enable_dependency_tracking @@ -43,7 +43,7 @@ enable_static enable_shared with_pic -@@ -1616,6 +1618,8 @@ Optional Features: +@@ -1619,6 +1621,8 @@ Optional Features: --disable-dependency-tracking speeds up one-time build --enable-static[=PKGS] build static libraries [default=no] @@ -52,7 +52,7 @@ --enable-shared[=PKGS] build shared libraries [default=yes] --enable-fast-install[=PKGS] optimize for fast installation [default=yes] -@@ -5211,6 +5215,26 @@ $as_echo "$ac_cv_safe_to_define___extens +@@ -5219,6 +5223,26 @@ $as_echo "$ac_cv_safe_to_define___extens $as_echo "#define _TANDEM_SOURCE 1" >>confdefs.h @@ -78,4 +78,4 @@ +_ACEOF - VERSION="0.100.1" + VERSION="0.100.2" ++++++ clamav-freshclam-exit.patch ++++++ --- freshclam/freshclam.c.orig +++ freshclam/freshclam.c @@ -714,6 +714,12 @@ main (int argc, char **argv) execute ("OnErrorExecute", opt->strarg, opts); } + if (ret == FC_UPTODATE) + { + /* Restore exit code compatibility with ClamAV < 0.100.0 */ + ret = 0; + } + if (pidfile) { unlink (pidfile);
