commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2020-09-21 17:33:23
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new.4249 (New)
Package is "clamav"
Mon Sep 21 17:33:23 2020 rev:109 rq:835433 version:0.103.0
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2020-07-17
20:54:52.901172603 +0200
+++ /work/SRC/openSUSE:Factory/.clamav.new.4249/clamav.changes 2020-09-21
17:42:01.160833651 +0200
@@ -1,0 +2,15 @@
+Mon Sep 14 17:39:16 UTC 2020 - Arjen de Korte
+
+- Update to 0.103.0
+ * clamd can now reload the signature database without blocking
+scanning. This multi-threaded database reload improvement was made
+possible thanks to a community effort.
+- Non-blocking database reloads are now the default behavior. Some
+ systems that are more constrained on RAM may need to disable
+ non-blocking reloads as it will temporarily consume two times as
+ much memory. We added a new clamd config option
+ ConcurrentDatabaseReload, which may be set to no.
+ * Dropped clamav-str-h.patch (no longer needed)
+ * Fix clamav-milter.service (requires clamd.service to run)
+
+---
Old:
clamav-0.102.4.tar.gz
clamav-0.102.4.tar.gz.sig
clamav-str-h.patch
New:
clamav-0.103.0.tar.gz
clamav-0.103.0.tar.gz.sig
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.MKV6jC/_old 2020-09-21 17:42:07.180839324 +0200
+++ /var/tmp/diff_new_pack.MKV6jC/_new 2020-09-21 17:42:07.180839324 +0200
@@ -19,7 +19,7 @@
%define clamav_check --enable-check
%bcond_with clammspack
Name: clamav
-Version:0.102.4
+Version:0.103.0
Release:0
Summary:Antivirus Toolkit
License:GPL-2.0-only
@@ -37,14 +37,13 @@
Patch4: clamav-disable-timestamps.patch
Patch5: clamav-obsolete-config.patch
Patch6: clamav-disable-yara.patch
-Patch7: clamav-str-h.patch
BuildRequires: autoconf
BuildRequires: automake
BuildRequires: bc
BuildRequires: check-devel
BuildRequires: gcc-c++
BuildRequires: libbz2-devel
-BuildRequires: libcurl-devel
+BuildRequires: libcurl-devel >= 7.45
BuildRequires: libjson-c-devel
BuildRequires: libopenssl-devel
BuildRequires: libtool
@@ -56,6 +55,7 @@
BuildRequires: sed
BuildRequires: sendmail-devel
BuildRequires: systemd-rpm-macros
+#BuildRequires: valgrind
BuildRequires: zlib-devel
BuildRequires: pkgconfig(libsystemd)
Requires(pre): %_bindir/awk
@@ -125,7 +125,6 @@
%patch4
%patch5
%patch6
-%patch7
%build
CFLAGS="-fstack-protector"
@@ -181,6 +180,7 @@
install -m 0644 %SOURCE7 %buildroot/%_unitdir/clamd.service
install -m 0644 %SOURCE8 %buildroot/%_unitdir/freshclam.service
install -m 0644 %SOURCE9 %buildroot/%_unitdir/clamav-milter.service
+rm -f %buildroot/%_unitdir/clamav-clamonacc.service
rm -f %buildroot/%_unitdir/clamav-daemon.service
rm -f %buildroot/%_unitdir/clamav-daemon.socket
rm -f %buildroot/%_unitdir/clamav-freshclam.service
@@ -194,7 +194,7 @@
# regression tests
%if !0%{?qemu_user_space_build:1}
-VALGRIND_GENSUP=1 make check
+make check VG=1
%endif
%post -n libclamav9 -p /sbin/ldconfig
++ clamav-0.102.4.tar.gz -> clamav-0.103.0.tar.gz ++
/work/SRC/openSUSE:Factory/clamav/clamav-0.102.4.tar.gz
/work/SRC/openSUSE:Factory/.clamav.new.4249/clamav-0.103.0.tar.gz differ: char
5, line 1
++ clamav-conf.patch ++
--- /var/tmp/diff_new_pack.MKV6jC/_old 2020-09-21 17:42:07.232839373 +0200
+++ /var/tmp/diff_new_pack.MKV6jC/_new 2020-09-21 17:42:07.232839373 +0200
@@ -31,7 +31,7 @@
# Waiting for data from clamd will timeout after this time (seconds).
# Value of 0 disables the timeout.
@@ -61,7 +56,7 @@ Example
- # daemon (main thread).
+ # also owned by root to keep other users from tampering with it.
#
# Default: disabled
-#PidFile /var/run/clamav-milter.pid
@@ -96,8 +96,8 @@
# Enable verbose logging.
# Default: no
@@ -71,7 +67,7 @@ Example
- # This option allows you to save a process identifier of the listening
- # daemon (main thread).
+ # It is recommended that the directory where this file is stored is
+ # also owned by root to keep other users from tampering with it.
# Default: disabled
-#PidFile /var/run/clamd.pid
+PidFile /run/clamav/clamd.pid
@@ -172,8 +172,8 @@
# Enable log rotation. Always enabled when LogFileMaxSize is enabled.
# Default: no
@@ -48,12 +44,12 @@ Example
-
- # This option allows you to save the process identifier of the daemon
+ # It is recommended that the directory where this file is stored is
+ # also owned by root to keep other users
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2020-07-17 20:54:14 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new.3592 (New) Package is "clamav" Fri Jul 17 20:54:14 2020 rev:108 rq:821532 version:0.102.4 Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2020-05-12 22:39:37.132781774 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new.3592/clamav.changes 2020-07-17 20:54:52.901172603 +0200 @@ -1,0 +2,24 @@ +Thu Jul 16 20:02:03 UTC 2020 - Arjen de Korte + +- Update to 0.102.4 + * CVE-2020-3350: Fix a vulnerability wherein a malicious user could +replace a scan target's directory with a symlink to another path +to trick clamscan, clamdscan, or clamonacc into removing or moving +a different file (eg. a critical system file). The issue would +affect users that use the --move or --remove options for clamscan, +clamdscan, and clamonacc. + * CVE-2020-3327: Fix a vulnerability in the ARJ archive parsing +module in ClamAV 0.102.3 that could cause a Denial-of-Service +(DoS) condition. Improper bounds checking results in an +out-of-bounds read which could cause a crash. The previous fix for +this CVE in 0.102.3 was incomplete. This fix correctly resolves +the issue. + * CVE-2020-3481: Fix a vulnerability in the EGG archive module in +ClamAV 0.102.0 - 0.102.3 could cause a Denial-of-Service (DoS) +condition. Improper error handling may result in a crash due to a +NULL pointer dereference. This vulnerability is mitigated for +those using the official ClamAV signature databases because the +file type signatures in daily.cvd will not enable the EGG archive +parser in versions affected by the vulnerability. + +--- Old: clamav-0.102.3.tar.gz clamav-0.102.3.tar.gz.sig New: clamav-0.102.4.tar.gz clamav-0.102.4.tar.gz.sig Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.LwE1tu/_old 2020-07-17 20:54:54.125173880 +0200 +++ /var/tmp/diff_new_pack.LwE1tu/_new 2020-07-17 20:54:54.125173880 +0200 @@ -19,7 +19,7 @@ %define clamav_check --enable-check %bcond_with clammspack Name: clamav -Version:0.102.3 +Version:0.102.4 Release:0 Summary:Antivirus Toolkit License:GPL-2.0-only @@ -153,7 +153,7 @@ --with-system-libmspack %endif -make V=1 %?_smp_mflags +%make_build %install %make_install @@ -247,7 +247,7 @@ %service_add_pre clamd.service freshclam.service clamav-milter.service %post -systemd-tmpfiles --create %_tmpfilesdir/clamav.conf +%tmpfiles_create %_tmpfilesdir/clamav.conf %service_add_post clamd.service freshclam.service clamav-milter.service %preun ++ clamav-0.102.3.tar.gz -> clamav-0.102.4.tar.gz ++ /work/SRC/openSUSE:Factory/clamav/clamav-0.102.3.tar.gz /work/SRC/openSUSE:Factory/.clamav.new.3592/clamav-0.102.4.tar.gz differ: char 5, line 1 ++ clamav-disable-timestamps.patch ++ --- /var/tmp/diff_new_pack.LwE1tu/_old 2020-07-17 20:54:54.181173939 +0200 +++ /var/tmp/diff_new_pack.LwE1tu/_new 2020-07-17 20:54:54.181173939 +0200 @@ -82,4 +82,4 @@ +_ACEOF - VERSION="0.102.3" + VERSION="0.102.4"
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2020-05-12 22:36:38 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new.2738 (New) Package is "clamav" Tue May 12 22:36:38 2020 rev:107 rq:803386 version:0.102.3 Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2020-04-16 23:04:38.671749080 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new.2738/clamav.changes 2020-05-12 22:39:37.132781774 +0200 @@ -1,0 +2,18 @@ +Tue May 12 17:31:15 UTC 2020 - Arjen de Korte + +- Update to 0.102.3 + * CVE-2020-3327: Fix a vulnerability in the ARJ archive parsing +module in ClamAV 0.102.2 that could cause a Denial-of-Service (DoS) +condition. Improper bounds checking of an unsigned variable results +in an out-of-bounds read which causes a crash. + * CVE-2020-3341: Fix a vulnerability in the PDF parsing module in +ClamAV 0.101 - 0.102.2 that could cause a Denial-of-Service (DoS) +condition. Improper size checking of a buffer used to initialize AES +decryption routines results in an out-of-bounds read which may cause +a crash. + * Fix "Attempt to allocate 0 bytes" error when parsing some PDF +documents. + * Fix a couple of minor memory leaks. + * Updated libclamunrar to UnRAR 5.9.2. + +--- Old: clamav-0.102.2.tar.gz clamav-0.102.2.tar.gz.sig New: clamav-0.102.3.tar.gz clamav-0.102.3.tar.gz.sig Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.KYbdv3/_old 2020-05-12 22:39:44.564797284 +0200 +++ /var/tmp/diff_new_pack.KYbdv3/_new 2020-05-12 22:39:44.572797301 +0200 @@ -19,7 +19,7 @@ %define clamav_check --enable-check %bcond_with clammspack Name: clamav -Version:0.102.2 +Version:0.102.3 Release:0 Summary:Antivirus Toolkit License:GPL-2.0-only ++ clamav-0.102.2.tar.gz -> clamav-0.102.3.tar.gz ++ /work/SRC/openSUSE:Factory/clamav/clamav-0.102.2.tar.gz /work/SRC/openSUSE:Factory/.clamav.new.2738/clamav-0.102.3.tar.gz differ: char 5, line 1 ++ clamav-conf.patch ++ --- /var/tmp/diff_new_pack.KYbdv3/_old 2020-05-12 22:39:44.628797418 +0200 +++ /var/tmp/diff_new_pack.KYbdv3/_new 2020-05-12 22:39:44.628797418 +0200 @@ -17,7 +17,7 @@ # Default: no default -#MilterSocket /tmp/clamav-milter.socket -#MilterSocket inet:7357 -+MilterSocket /var/run/clamav/clamav-milter-socket ++MilterSocket /run/clamav/clamav-milter-socket # Define the group ownership for the (unix) milter socket. # Default: disabled (the primary group of the user running clamd) @@ -35,7 +35,7 @@ # # Default: disabled -#PidFile /var/run/clamav-milter.pid -+PidFile /var/run/clamav/clamav-milter.pid ++PidFile /run/clamav/clamav-milter.pid # Optional path to the global temporary directory. # Default: system specific (usually /tmp or /var/tmp). @@ -44,7 +44,7 @@ # # Default: no default -#ClamdSocket tcp:scanner.mydomain:7357 -+ClamdSocket unix:/var/run/clamav/clamd-socket ++ClamdSocket unix:/run/clamav/clamd-socket ## @@ -100,7 +100,7 @@ # daemon (main thread). # Default: disabled -#PidFile /var/run/clamd.pid -+PidFile /var/run/clamav/clamd.pid ++PidFile /run/clamav/clamd.pid # Optional path to the global temporary directory. # Default: system specific (usually /tmp or /var/tmp). @@ -109,7 +109,7 @@ # Path to a local socket file the daemon will listen on. # Default: disabled (must be specified by a user) -#LocalSocket /tmp/clamd.socket -+LocalSocket /var/run/clamav/clamd-socket ++LocalSocket /run/clamav/clamd-socket # Sets the group ownership on the unix socket. # Default: disabled (the primary group of the user running clamd) @@ -176,7 +176,7 @@ # This option allows you to save the process identifier of the daemon # Default: disabled -#PidFile /var/run/freshclam.pid -+PidFile /var/run/clamav/freshclam.pid ++PidFile /run/clamav/freshclam.pid # By default when started freshclam drops privileges and switches to the # "clamav" user. This directive allows you to change the database owner. ++ clamav-disable-timestamps.patch ++ --- /var/tmp/diff_new_pack.KYbdv3/_old 2020-05-12 22:39:44.640797443 +0200 +++ /var/tmp/diff_new_pack.KYbdv3/_new 2020-05-12 22:39:44.640797443 +0200 @@ -82,4 +82,4 @@ +_ACEOF - VERSION="0.102.2" + VERSION="0.102.3" ++ service.clamd ++ --- /var/tmp/diff_new_pack.KYbdv3/_old 2020-05-12 22:39:44.720797609 +0200 +++ /var/tmp/diff_new_pack.KYbdv3/_new 2020-05-12 22:39:44.724797618 +0200 @@ -7,6 +7,7 @@ Type=forking ExecStart=/usr/sbin/clamd TimeoutStartSec=5min +ExecReload=/bin/ki
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2020-04-16 23:04:37
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new.2738 (New)
Package is "clamav"
Thu Apr 16 23:04:37 2020 rev:106 rq:794379 version:0.102.2
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2020-02-07
15:56:25.263574437 +0100
+++ /work/SRC/openSUSE:Factory/.clamav.new.2738/clamav.changes 2020-04-16
23:04:38.671749080 +0200
@@ -1,0 +2,5 @@
+Wed Apr 1 10:01:36 UTC 2020 - Martin Pluskal
+
+- Drop python build dependency as it is not needed
+
+---
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.0JZM9v/_old 2020-04-16 23:04:40.455750668 +0200
+++ /var/tmp/diff_new_pack.0JZM9v/_new 2020-04-16 23:04:40.459750672 +0200
@@ -16,9 +16,8 @@
#
-%bcond_with clammspack
-
%define clamav_check --enable-check
+%bcond_with clammspack
Name: clamav
Version:0.102.2
Release:0
@@ -47,9 +46,6 @@
BuildRequires: libbz2-devel
BuildRequires: libcurl-devel
BuildRequires: libjson-c-devel
-%if %{without clammspack}
-BuildRequires: libmspack-devel
-%endif
BuildRequires: libopenssl-devel
BuildRequires: libtool
BuildRequires: libxml2-devel
@@ -57,7 +53,6 @@
BuildRequires: pcre2-devel
BuildRequires: pkgconfig
BuildRequires: pwdutils
-BuildRequires: python-devel
BuildRequires: sed
BuildRequires: sendmail-devel
BuildRequires: systemd-rpm-macros
@@ -73,6 +68,9 @@
Provides: clamav-nodb = %version
Obsoletes: clamav-nodb <= 0.98.4
%systemd_requires
+%if %{without clammspack}
+BuildRequires: libmspack-devel
+%endif
%description
ClamAV is an antivirus engine designed for detecting trojans,
@@ -142,7 +140,7 @@
%configure \
--disable-clamav \
--disable-static \
- --with-dbdir=/var/lib/clamav \
+ --with-dbdir=%{_localstatedir}/lib/clamav \
--with-user=vscan \
--with-group=vscan \
--enable-milter \
@@ -159,10 +157,10 @@
%install
%make_install
-install -d -m755 %buildroot/var/lib/clamav
+install -d -m755 %buildroot%{_localstatedir}/lib/clamav
install -d -m755 %buildroot/%_tmpfilesdir
install -m644 %SOURCE6 %buildroot%_tmpfilesdir/clamav.conf
-mkdir -p %buildroot/var/spool/amavis
+mkdir -p %buildroot%{_localstatedir}/spool/amavis
mkdir -p -m 0755 %buildroot/run/clamav
find %buildroot -type f -name "*.la" -delete -print
@@ -219,8 +217,8 @@
%_bindir/*
%_sbindir/*
%defattr(-,vscan,vscan)
-%dir %attr(750,vscan,vscan) /var/spool/amavis
-%dir /var/lib/clamav
+%dir %attr(750,vscan,vscan) %{_localstatedir}/spool/amavis
+%dir %{_localstatedir}/lib/clamav
%ghost %attr(755,vscan,vscan) /run/clamav
%files -n libclamav9
@@ -244,7 +242,7 @@
getent group vscan >/dev/null || %_sbindir/groupadd -r vscan
getent passwd vscan >/dev/null || \
%_sbindir/useradd -r -o -g vscan -u 65 -s /bin/false \
- -c "Vscan account" -d /var/spool/amavis vscan
+ -c "Vscan account" -d %{_localstatedir}/spool/amavis vscan
%_sbindir/usermod vscan -g vscan
%service_add_pre clamd.service freshclam.service clamav-milter.service
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2020-02-07 15:54:44
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new.26092 (New)
Package is "clamav"
Fri Feb 7 15:54:44 2020 rev:105 rq:770647 version:0.102.2
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2019-12-30
12:35:09.911815280 +0100
+++ /work/SRC/openSUSE:Factory/.clamav.new.26092/clamav.changes 2020-02-07
15:56:25.263574437 +0100
@@ -1,0 +2,36 @@
+Wed Feb 5 18:31:17 UTC 2020 - Arjen de Korte
+
+- update to 0.102.2
+ * CVE-2020-3123: A denial-of-service (DoS) condition may occur when
+using the optional credit card data-loss-prevention (DLP) feature.
+Improper bounds checking of an unsigned variable resulted in an
+out-of-bounds read, which causes a crash.
+ * Significantly improved the scan speed of PDF files on Windows.
+ * Re-applied a fix to alleviate file access issues when scanning RAR
+files in downstream projects that use libclamav where the scanning
+engine is operating in a low-privilege process. This bug was originally
+fixed in 0.101.2 and the fix was mistakenly omitted from 0.102.0.
+ * Fixed an issue where freshclam failed to update if the database version
+downloaded is one version older than advertised. This situation may
+occur after a new database version is published. The issue affected
+users downloading the whole CVD database file.
+ * Changed the default freshclam ReceiveTimeout setting to 0 (infinite).
+The ReceiveTimeout had caused needless database update failures for
+users with slower internet connections.
+ * Correctly display the number of kilobytes (KiB) in progress bar and
+reduced the size of the progress bar to accommodate 80-character width
+terminals.
+ * Fixed an issue where running freshclam manually causes a daemonized
+freshclam process to fail when it updates because the manual instance
+deletes the temporary download directory. The freshclam temporary files
+will now download to a unique directory created at the time of an update
+instead of using a hardcoded directory created/destroyed at the program
+start/exit.
+ * Fix for freshclam's OnOutdatedExecute config option.
+ * Fixes a memory leak in the error condition handling for the email
+parser.
+ * Improved bound checking and error handling in ARJ archive parser.
+ * Improved error handling in PDF parser.
+ * Fix for memory leak in byte-compare signature handler.
+
+---
Old:
clamav-0.102.1.tar.gz
clamav-0.102.1.tar.gz.sig
New:
clamav-0.102.2.tar.gz
clamav-0.102.2.tar.gz.sig
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.COobvR/_old 2020-02-07 15:56:26.631575135 +0100
+++ /var/tmp/diff_new_pack.COobvR/_new 2020-02-07 15:56:26.635575137 +0100
@@ -1,7 +1,7 @@
#
# spec file for package clamav
#
-# Copyright (c) 2019 SUSE LLC
+# Copyright (c) 2020 SUSE LLC
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -20,7 +20,7 @@
%define clamav_check --enable-check
Name: clamav
-Version:0.102.1
+Version:0.102.2
Release:0
Summary:Antivirus Toolkit
License:GPL-2.0-only
@@ -60,9 +60,9 @@
BuildRequires: python-devel
BuildRequires: sed
BuildRequires: sendmail-devel
-BuildRequires: pkgconfig(libsystemd)
BuildRequires: systemd-rpm-macros
BuildRequires: zlib-devel
+BuildRequires: pkgconfig(libsystemd)
Requires(pre): %_bindir/awk
Requires(pre): %_sbindir/groupadd
Requires(pre): %_sbindir/useradd
++ clamav-0.102.1.tar.gz -> clamav-0.102.2.tar.gz ++
/work/SRC/openSUSE:Factory/clamav/clamav-0.102.1.tar.gz
/work/SRC/openSUSE:Factory/.clamav.new.26092/clamav-0.102.2.tar.gz differ: char
5, line 1
++ clamav-disable-timestamps.patch ++
--- /var/tmp/diff_new_pack.COobvR/_old 2020-02-07 15:56:26.683575162 +0100
+++ /var/tmp/diff_new_pack.COobvR/_new 2020-02-07 15:56:26.691575166 +0100
@@ -37,8 +37,8 @@
LIBCLAMAV_VERSION
+ENABLE_TIMESTAMPS
PACKAGE_VERSION_NUM
- EGREP
- GREP
+ ac_ct_AR
+ AR
@@ -924,6 +925,7 @@ ac_user_opts='
enable_mmap_for_cross_compiling
enable_dependency_tracking
@@ -58,8 +58,8 @@
optimize for fast installation [default=yes]
@@ -5927,6 +5931,26 @@ $as_echo "$ac_cv_safe_to_define___extens
- $as_echo "#define _TANDEM_SOURCE 1" >>confdefs.h
+ $as_echo "#define PACKAGE PACKAGE_NAME" >>confdefs.h
+# Check whether --enable-timestamps was given.
+if test "${ena
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2019-12-30 12:35:04 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new.6675 (New) Package is "clamav" Mon Dec 30 12:35:04 2019 rev:104 rq:759922 version:0.102.1 Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2019-12-27 13:50:42.640545410 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new.6675/clamav.changes 2019-12-30 12:35:09.911815280 +0100 @@ -1,0 +2,6 @@ +Tue Dec 24 10:49:25 UTC 2019 - Arjen de Korte + +- The freshclam.service should not be started before the network is + online (it checks for updates immediately upon service start) + +--- Other differences: -- ++ service.freshclam ++ --- /var/tmp/diff_new_pack.Y91v9I/_old 2019-12-30 12:35:11.771816278 +0100 +++ /var/tmp/diff_new_pack.Y91v9I/_new 2019-12-30 12:35:11.775816280 +0100 @@ -1,6 +1,7 @@ [Unit] Description=Freshclam virus definitions downloader -After=network.target +After=network-online.target +Wants=network-online.target [Service] Type=forking
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2019-12-27 13:50:27 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new.6675 (New) Package is "clamav" Fri Dec 27 13:50:27 2019 rev:103 rq:759585 version:0.102.1 Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2019-12-21 12:31:35.131369061 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new.6675/clamav.changes 2019-12-27 13:50:42.640545410 +0100 @@ -5 +5 @@ - Aloow OBS to shortcut through the -mini flavors. + Allow OBS to shortcut through the -mini flavors. Other differences: --
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2019-12-21 12:31:08 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new.6675 (New) Package is "clamav" Sat Dec 21 12:31:08 2019 rev:102 rq:758279 version:0.102.1 Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2019-11-26 17:03:29.700025095 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new.6675/clamav.changes 2019-12-21 12:31:35.131369061 +0100 @@ -1,0 +2,6 @@ +Thu Dec 19 15:31:58 UTC 2019 - Dominique Leuenberger + +- BuildRequire pkgconfig(libsystemd) instead of systemd-devel: + Aloow OBS to shortcut through the -mini flavors. + +--- Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.YmWaXV/_old 2019-12-21 12:31:36.403369666 +0100 +++ /var/tmp/diff_new_pack.YmWaXV/_new 2019-12-21 12:31:36.407369668 +0100 @@ -60,7 +60,7 @@ BuildRequires: python-devel BuildRequires: sed BuildRequires: sendmail-devel -BuildRequires: systemd-devel +BuildRequires: pkgconfig(libsystemd) BuildRequires: systemd-rpm-macros BuildRequires: zlib-devel Requires(pre): %_bindir/awk
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2019-11-26 17:02:30 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new.26869 (New) Package is "clamav" Tue Nov 26 17:02:30 2019 rev:101 rq:750886 version:0.102.1 Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2019-10-27 13:41:06.277273539 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new.26869/clamav.changes 2019-11-26 17:03:29.700025095 +0100 @@ -1,0 +2,53 @@ +Wed Nov 20 19:01:10 UTC 2019 - Arjen de Korte + +- update to 0.102.1 + * CVE-2019-15961: A Denial-of-Service (DoS) vulnerability may +occur when scanning a specially crafted email file as a result +of excessively long scan times. The issue is resolved by +implementing several maximums in parsing MIME messages and by +optimizing use of memory allocation. + * Build system fixes to build clamav-milter, to correctly link +with libxml2 when detected, and to correctly detect fanotify +for on-access scanning feature support. + * Signature load time is significantly reduced by changing to a +more efficient algorithm for loading signature patterns and +allocating the AC trie. Patch courtesy of Alberto Wu. + * Introduced a new configure option to statically link libjson-c +with libclamav. Static linking with libjson is highly +recommended to prevent crashes in applications that use +libclamav alongside another JSON parsing library. + * Null-dereference fix in email parser when using the +--gen-json metadata option. + * Fixes for Authenticode parsing and certificate signature +(.crb database) bugs. +- dropped clamav-fix_building_milter.patch (upstreamed) + +--- +Fri Nov 1 09:46:17 UTC 2019 - Arjen de Korte + +- update to 0.102.0 + * The On-Access Scanning feature has been migrated out of clamd +and into a brand new utility named clamonacc. This utility is +similar to clamdscan and clamav-milter in that it acts as a +client to clamd. This separation from clamd means that clamd no +longer needs to run with root privileges while scanning potentially +malicious files. Instead, clamd may drop privileges to run under an +account that does not have super-user. In addition to improving the +security posture of running clamd with On-Access enabled, this +update fixed a few outstanding defects: +- On-Access scanning for created and moved files (Extra-Scanning) + is fixed. +- VirusEvent for On-Access scans is fixed. +- With clamonacc, it is now possible to copy, move, or remove a + file if the scan triggered an alert, just like with clamdscan. + * The freshclam database update utility has undergone a significant +update. This includes: +- Added support for HTTPS. +- Support for database mirrors hosted on ports other than 80. +- Removal of the mirror management feature (mirrors.dat). +- An all new libfreshclam library API. +- created new subpackage libfreshclam2 +- dropped clamav-max_patch.patch (upstreamed) +- added clamav-fix_building_milter.patch to fix build of milter + +--- Old: clamav-0.101.4.tar.gz clamav-0.101.4.tar.gz.sig clamav-max_patch.patch New: clamav-0.102.1.tar.gz clamav-0.102.1.tar.gz.sig Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.TqPYRa/_old 2019-11-26 17:03:34.948023282 +0100 +++ /var/tmp/diff_new_pack.TqPYRa/_new 2019-11-26 17:03:34.948023282 +0100 @@ -1,7 +1,7 @@ # # spec file for package clamav # -# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2019 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -20,12 +20,12 @@ %define clamav_check --enable-check Name: clamav -Version:0.101.4 +Version:0.102.1 Release:0 Summary:Antivirus Toolkit License:GPL-2.0-only Group: Productivity/Security -Url:http://www.clamav.net +URL:http://www.clamav.net Source0: http://www.clamav.net/downloads/production/%name-%version.tar.gz Source1: http://www.clamav.net/downloads/production/%name-%version.tar.gz.sig Source4:clamav-rpmlintrc @@ -39,8 +39,6 @@ Patch5: clamav-obsolete-config.patch Patch6: clamav-disable-yara.patch Patch7: clamav-str-h.patch -#PATCH-FIX-UPSTREAM clamav-max_patch.patch -Patch8: clamav-max_patch.patch BuildRequires: autoconf BuildRequ
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2019-10-27 13:40:55 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new.2990 (New) Package is "clamav" Sun Oct 27 13:40:55 2019 rev:100 rq:742982 version:0.101.4 Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2019-09-09 23:59:41.697222794 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new.2990/clamav.changes 2019-10-27 13:41:06.277273539 +0100 @@ -1,0 +2,8 @@ +Fri Oct 25 14:53:06 UTC 2019 - Reinhard Max + +- bsc#1151839: Increase the startup timeout of clamd to 5 minutes + to cater for the grown virus database as a workaround until + clamd has learned to talk to systemd to extend the timeout as + long as needed. + +--- Other differences: -- ++ service.clamd ++ --- /var/tmp/diff_new_pack.suucuu/_old 2019-10-27 13:41:07.989275604 +0100 +++ /var/tmp/diff_new_pack.suucuu/_new 2019-10-27 13:41:07.989275604 +0100 @@ -6,6 +6,7 @@ [Service] Type=forking ExecStart=/usr/sbin/clamd +TimeoutStartSec=5min ;User=vscan ;Group=vscan ;PrivateTmp=yes
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2019-09-09 23:59:38
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new.7948 (New)
Package is "clamav"
Mon Sep 9 23:59:38 2019 rev:99 rq:729457 version:0.101.4
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2019-08-09
16:54:14.505456365 +0200
+++ /work/SRC/openSUSE:Factory/.clamav.new.7948/clamav.changes 2019-09-09
23:59:41.697222794 +0200
@@ -1,0 +2,11 @@
+Wed Sep 4 19:12:01 UTC 2019 - Andreas Stieger
+
+- update to 0.101.4:
+ * CVE-2019-12900: An out of bounds write in the NSIS bzip2
+(boo#1149458)
+ * CVE-2019-12625: Introduce a configurable time limit to mitigate
+zip bomb vulnerability completely. Default is 2 minutes,
+configurable useing the clamscan --max-scantime and for clamd
+using the MaxScanTime config option (boo#1144504)
+
+---
Old:
clamav-0.101.3.tar.gz
clamav-0.101.3.tar.gz.sig
New:
clamav-0.101.4.tar.gz
clamav-0.101.4.tar.gz.sig
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.XALD63/_old 2019-09-09 23:59:42.853222716 +0200
+++ /var/tmp/diff_new_pack.XALD63/_new 2019-09-09 23:59:42.857222715 +0200
@@ -20,7 +20,7 @@
%define clamav_check --enable-check
Name: clamav
-Version:0.101.3
+Version:0.101.4
Release:0
Summary:Antivirus Toolkit
License:GPL-2.0-only
++ clamav-0.101.3.tar.gz -> clamav-0.101.4.tar.gz ++
/work/SRC/openSUSE:Factory/clamav/clamav-0.101.3.tar.gz
/work/SRC/openSUSE:Factory/.clamav.new.7948/clamav-0.101.4.tar.gz differ: char
5, line 1
++ clamav-disable-timestamps.patch ++
--- /var/tmp/diff_new_pack.XALD63/_old 2019-09-09 23:59:42.897222713 +0200
+++ /var/tmp/diff_new_pack.XALD63/_new 2019-09-09 23:59:42.897222713 +0200
@@ -1,3 +1,5 @@
+Index: libclamav/tomsfastmath/misc/fp_ident.c
+===
--- libclamav/tomsfastmath/misc/fp_ident.c.orig
+++ libclamav/tomsfastmath/misc/fp_ident.c
@@ -15,7 +15,11 @@ const char *fp_ident(void)
@@ -25,9 +27,11 @@
if (sizeof(fp_digit) == sizeof(fp_word)) {
strncat(buf, "WARNING: sizeof(fp_digit) == sizeof(fp_word), this build
is likely to not work properly.\n",
+Index: configure
+===
--- configure.orig
+++ configure
-@@ -812,6 +812,7 @@ FGREP
+@@ -814,6 +814,7 @@ FGREP
SED
LIBTOOL
LIBCLAMAV_VERSION
@@ -35,7 +39,7 @@
EGREP
GREP
CPP
-@@ -922,6 +923,7 @@ ac_user_opts='
+@@ -924,6 +925,7 @@ ac_user_opts='
enable_option_checking
enable_dependency_tracking
enable_silent_rules
@@ -43,7 +47,7 @@
enable_static
enable_shared
with_pic
-@@ -1641,6 +1643,8 @@ Optional Features:
+@@ -1644,6 +1646,8 @@ Optional Features:
--enable-silent-rules less verbose build output (undo: "make V=1")
--disable-silent-rules verbose build output (undo: "make V=0")
--enable-static[=PKGS] build static libraries [default=no]
@@ -52,7 +56,7 @@
--enable-shared[=PKGS] build shared libraries [default=yes]
--enable-fast-install[=PKGS]
optimize for fast installation [default=yes]
-@@ -5923,6 +5927,26 @@ $as_echo "$ac_cv_safe_to_define___extens
+@@ -5927,6 +5931,26 @@ $as_echo "$ac_cv_safe_to_define___extens
$as_echo "#define _TANDEM_SOURCE 1" >>confdefs.h
@@ -78,4 +82,4 @@
+_ACEOF
- VERSION="0.101.3"
+ VERSION="0.101.4"
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2019-08-09 16:54:09 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new.9556 (New) Package is "clamav" Fri Aug 9 16:54:09 2019 rev:98 rq:721852 version:0.101.3 Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2019-04-04 15:27:39.818903976 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new.9556/clamav.changes 2019-08-09 16:54:14.505456365 +0200 @@ -1,0 +2,6 @@ +Tue Aug 6 15:34:08 UTC 2019 - Reinhard Max + +- Update to version 0.101.3: + * bsc#1144504: ZIP bomb causes extreme CPU spikes + +--- Old: clamav-0.101.2.tar.gz clamav-0.101.2.tar.gz.sig New: clamav-0.101.3.tar.gz clamav-0.101.3.tar.gz.sig Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.yOwazY/_old 2019-08-09 16:54:15.457456137 +0200 +++ /var/tmp/diff_new_pack.yOwazY/_new 2019-08-09 16:54:15.461456136 +0200 @@ -20,7 +20,7 @@ %define clamav_check --enable-check Name: clamav -Version:0.101.2 +Version:0.101.3 Release:0 Summary:Antivirus Toolkit License:GPL-2.0-only ++ clamav-0.101.2.tar.gz -> clamav-0.101.3.tar.gz ++ /work/SRC/openSUSE:Factory/clamav/clamav-0.101.2.tar.gz /work/SRC/openSUSE:Factory/.clamav.new.9556/clamav-0.101.3.tar.gz differ: char 5, line 1 ++ clamav-disable-timestamps.patch ++ --- /var/tmp/diff_new_pack.yOwazY/_old 2019-08-09 16:54:15.497456127 +0200 +++ /var/tmp/diff_new_pack.yOwazY/_new 2019-08-09 16:54:15.497456127 +0200 @@ -78,4 +78,4 @@ +_ACEOF - VERSION="0.101.2" + VERSION="0.101.3"
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2019-04-04 15:22:20
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new.3908 (New)
Package is "clamav"
Thu Apr 4 15:22:20 2019 rev:97 rq:689824 version:0.101.2
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2018-10-04
19:03:39.787066400 +0200
+++ /work/SRC/openSUSE:Factory/.clamav.new.3908/clamav.changes 2019-04-04
15:27:39.818903976 +0200
@@ -1,0 +2,38 @@
+Wed Mar 27 17:30:05 UTC 2019 - Andrey Karepin
+
+- Update to version 0.101.2 (bsc#1130721)
+ * CVE-2019-1787:
+An out-of-bounds heap read condition may occur when scanning PDF
+documents. The defect is a failure to correctly keep track of the number
+of bytes remaining in a buffer when indexing file data.
+ * CVE-2019-1789:
+An out-of-bounds heap read condition may occur when scanning PE files
+(i.e. Windows EXE and DLL files) that have been packed using Aspack as a
+result of inadequate bound-checking.
+ * CVE-2019-1788:
+An out-of-bounds heap write condition may occur when scanning OLE2 files
+such as Microsoft Office 97-2003 documents. The invalid write happens when
+an invalid pointer is mistakenly used to initialize a 32bit integer to
+zero. This is likely to crash the application.
+ * CVE-2019-1786:
+An out-of-bounds heap read condition may occur when scanning malformed
+PDF documents as a result of improper bounds-checking.
+ * CVE-2019-1785:
+A path-traversal write condition may occur as a result of improper
+input validation when scanning RAR archives.
+ * CVE-2019-1798:
+A use-after-free condition may occur as a result of improper error
+handling when scanning nested RAR archives.
+
+- added clamav-max_patch.patch to fix build
+- dropped clamav-freshclam-exit.patch
+
+---
+Mon Jan 21 17:30:15 UTC 2019 - Reinhard Max
+
+- Update to version 0.101.1:
+ * Add missing headers to fix build of packages against libclamav.
+- Add missing include for str.h to libclamav/others_common.c
+ (clamav-str-h.patch)
+
+---
Old:
clamav-0.100.2.tar.gz
clamav-0.100.2.tar.gz.sig
clamav-freshclam-exit.patch
New:
clamav-0.101.2.tar.gz
clamav-0.101.2.tar.gz.sig
clamav-max_patch.patch
clamav-str-h.patch
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.XithNk/_old 2019-04-04 15:27:43.422905362 +0200
+++ /var/tmp/diff_new_pack.XithNk/_new 2019-04-04 15:27:43.422905362 +0200
@@ -1,7 +1,7 @@
#
# spec file for package clamav
#
-# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -16,14 +16,16 @@
#
+%bcond_with clammspack
+
%define clamav_check --enable-check
Name: clamav
-Version:0.100.2
+Version:0.101.2
Release:0
Summary:Antivirus Toolkit
License:GPL-2.0-only
Group: Productivity/Security
-URL:http://www.clamav.net
+Url:http://www.clamav.net
Source0:
http://www.clamav.net/downloads/production/%name-%version.tar.gz
Source1:
http://www.clamav.net/downloads/production/%name-%version.tar.gz.sig
Source4:clamav-rpmlintrc
@@ -36,14 +38,20 @@
Patch4: clamav-disable-timestamps.patch
Patch5: clamav-obsolete-config.patch
Patch6: clamav-disable-yara.patch
-Patch7: clamav-freshclam-exit.patch
+Patch7: clamav-str-h.patch
+#PATCH-FIX-UPSTREAM clamav-max_patch.patch
+Patch8: clamav-max_patch.patch
BuildRequires: autoconf
BuildRequires: automake
BuildRequires: bc
BuildRequires: check-devel
+BuildRequires: gcc-c++
BuildRequires: libbz2-devel
BuildRequires: libcurl-devel
BuildRequires: libjson-c-devel
+%if %{without clammspack}
+BuildRequires: libmspack-devel
+%endif
BuildRequires: libopenssl-devel
BuildRequires: libtool
BuildRequires: libxml2-devel
@@ -78,11 +86,11 @@
support, archive support, and multiple signature languages for
detecting threats.
-%package -n libclamav7
+%package -n libclamav9
Summary:ClamAV antivirus engine runtime
Group: System/Libraries
-%description -n libclamav7
+%description -n libclamav9
ClamAV is an antivirus engine designed for detecting trojans,
viruses, malware and other malicious threats.
@@ -97,7 +105,7 @@
%package devel
Summary:Development files f
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2018-10-04 19:03:24
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new (New)
Package is "clamav"
Thu Oct 4 19:03:24 2018 rev:96 rq:639958 version:0.100.2
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2018-08-02
14:58:47.708343329 +0200
+++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2018-10-04
19:03:39.787066400 +0200
@@ -1,0 +2,23 @@
+Thu Oct 4 09:04:01 UTC 2018 - Reinhard Max
+
+- Update to version 0.100.2:
+ * bsc#1110723, CVE-2018-15378: Vulnerability in ClamAV's MEW
+unpacking feature that could allow an unauthenticated, remote
+attacker to cause a denial of service (DoS) condition on an
+affected device.
+ * bsc#1103040, CVE-2018-14680, CVE-2018-14681, CVE-2018-14682:
+more fixes for embedded libmspack.
+ * Make freshclam more robust against lagging signature mirrors.
+ * On-Access "Extra Scanning", an opt-in minor feature of
+OnAccess scanning on Linux systems, has been disabled due to a
+known issue with resource cleanup OnAccessExtraScanning will
+be re-enabled in a future release when the issue is
+resolved. In the mean-time, users who enabled the feature in
+clamd.conf will see a warning informing them that the feature
+is not active. For details, see:
+https://bugzilla.clamav.net/show_bug.cgi?id=12048
+- Restore exit code compatibility of freshclam with versions before
+ 0.100.0 when the virus database is already up to date
+ (bsc#1104457, clamav-freshclam-exit.patch).
+
+---
Old:
clamav-0.100.1.tar.gz
clamav-0.100.1.tar.gz.sig
New:
clamav-0.100.2.tar.gz
clamav-0.100.2.tar.gz.sig
clamav-freshclam-exit.patch
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.aoYHXA/_old 2018-10-04 19:03:40.399065754 +0200
+++ /var/tmp/diff_new_pack.aoYHXA/_new 2018-10-04 19:03:40.399065754 +0200
@@ -12,13 +12,13 @@
# license that conforms to the Open Source Definition (Version 1.9)
# published by the Open Source Initiative.
-# Please submit bugfixes or comments via http://bugs.opensuse.org/
+# Please submit bugfixes or comments via https://bugs.opensuse.org/
#
%define clamav_check --enable-check
Name: clamav
-Version:0.100.1
+Version:0.100.2
Release:0
Summary:Antivirus Toolkit
License:GPL-2.0-only
@@ -36,6 +36,7 @@
Patch4: clamav-disable-timestamps.patch
Patch5: clamav-obsolete-config.patch
Patch6: clamav-disable-yara.patch
+Patch7: clamav-freshclam-exit.patch
BuildRequires: autoconf
BuildRequires: automake
BuildRequires: bc
@@ -111,6 +112,7 @@
%patch4
%patch5
%patch6
+%patch7
%build
CFLAGS="-fstack-protector"
++ clamav-0.100.1.tar.gz -> clamav-0.100.2.tar.gz ++
/work/SRC/openSUSE:Factory/clamav/clamav-0.100.1.tar.gz
/work/SRC/openSUSE:Factory/.clamav.new/clamav-0.100.2.tar.gz differ: char 5,
line 1
++ clamav-disable-timestamps.patch ++
--- /var/tmp/diff_new_pack.aoYHXA/_old 2018-10-04 19:03:40.439065711 +0200
+++ /var/tmp/diff_new_pack.aoYHXA/_new 2018-10-04 19:03:40.443065708 +0200
@@ -27,7 +27,7 @@
strncat(buf, "WARNING: sizeof(fp_digit) == sizeof(fp_word), this build
is likely to not work properly.\n",
--- configure.orig
+++ configure
-@@ -800,6 +800,7 @@ FGREP
+@@ -801,6 +801,7 @@ FGREP
SED
LIBTOOL
LIBCLAMAV_VERSION
@@ -35,7 +35,7 @@
EGREP
GREP
CPP
-@@ -902,6 +903,7 @@ ac_user_opts='
+@@ -903,6 +904,7 @@ ac_user_opts='
enable_option_checking
enable_silent_rules
enable_dependency_tracking
@@ -43,7 +43,7 @@
enable_static
enable_shared
with_pic
-@@ -1616,6 +1618,8 @@ Optional Features:
+@@ -1619,6 +1621,8 @@ Optional Features:
--disable-dependency-tracking
speeds up one-time build
--enable-static[=PKGS] build static libraries [default=no]
@@ -52,7 +52,7 @@
--enable-shared[=PKGS] build shared libraries [default=yes]
--enable-fast-install[=PKGS]
optimize for fast installation [default=yes]
-@@ -5211,6 +5215,26 @@ $as_echo "$ac_cv_safe_to_define___extens
+@@ -5219,6 +5223,26 @@ $as_echo "$ac_cv_safe_to_define___extens
$as_echo "#define _TANDEM_SOURCE 1" >>confdefs.h
@@ -78,4 +78,4 @@
+_ACEOF
- VERSION="0.100.1"
+ VERSION="0.100.2"
++ clamav-freshclam-exit.patch ++
--- freshclam/freshclam.c.orig
+++ freshclam/freshclam.c
@@ -714,6 +714,12 @@ main (int argc, char **argv)
execute ("OnErrorExecute", opt->strarg, opts);
}
+if (ret == FC_U
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2018-08-02 14:58:41
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new (New)
Package is "clamav"
Thu Aug 2 14:58:41 2018 rev:95 rq:626690 version:0.100.1
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2018-04-29
19:37:31.238033752 +0200
+++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2018-08-02
14:58:47.708343329 +0200
@@ -1,0 +2,35 @@
+Tue Jul 31 08:43:39 UTC 2018 - m...@suse.com
+
+- bsc#1101654: Disable YARA support for licensing reasons
+ (clamav-disable-yara.patch).
+- Do not ignore errors from useradd et al.
+- Unclutter the spec file.
+
+---
+Wed Jul 25 16:23:09 UTC 2018 - mplus...@suse.com
+
+- Update dendencies (pcre2, libjson-c and systemd)
+- Modernise spec file with spec-cleaner
+
+---
+Tue Jul 17 14:21:35 UTC 2018 - secur...@suse.com
+
+- fix library-without-ldconfig warnings on libclammspack
+
+---
+Tue Jul 10 08:06:33 UTC 2018 - egdf...@opensuse.org
+
+- Update to version 0.100.1
+ * CVE-2018-0360: HWP integer overflow, infinite loop
+vulnerability (bsc#1101410)
+ * CVE-2018-0361: PDF object length check, unreasonably long time
+to parse relatively small file (bsc#1101412)
+ * Buffer over-read in unRAR code due to missing max value checks
+in table initialization
+ * Libmspack heap buffer over-read in CHM parser
+ * PDF parser bugs
+ * Add HTTPS support for clamsubmit
+ * Fix for DNS resolution for users on IPv4-only machines where
+IPv6 is not available or is link-local only
+
+---
Old:
clamav-0.100.0.tar.gz
clamav-0.100.0.tar.gz.sig
New:
clamav-0.100.1.tar.gz
clamav-0.100.1.tar.gz.sig
clamav-disable-yara.patch
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.NZAwNQ/_old 2018-08-02 14:58:48.684344974 +0200
+++ /var/tmp/diff_new_pack.NZAwNQ/_new 2018-08-02 14:58:48.692344987 +0200
@@ -16,49 +16,55 @@
#
+%define clamav_check --enable-check
Name: clamav
+Version:0.100.1
+Release:0
+Summary:Antivirus Toolkit
+License:GPL-2.0-only
+Group: Productivity/Security
+URL:http://www.clamav.net
+Source0:
http://www.clamav.net/downloads/production/%name-%version.tar.gz
+Source1:
http://www.clamav.net/downloads/production/%name-%version.tar.gz.sig
+Source4:clamav-rpmlintrc
+Source6:clamav-tmpfiles.conf
+Source7:service.clamd
+Source8:service.freshclam
+Source9:service.clamav-milter
+Source11: clamav.keyring
+Patch1: clamav-conf.patch
+Patch4: clamav-disable-timestamps.patch
+Patch5: clamav-obsolete-config.patch
+Patch6: clamav-disable-yara.patch
BuildRequires: autoconf
BuildRequires: automake
BuildRequires: bc
BuildRequires: check-devel
BuildRequires: libbz2-devel
BuildRequires: libcurl-devel
+BuildRequires: libjson-c-devel
BuildRequires: libopenssl-devel
BuildRequires: libtool
BuildRequires: libxml2-devel
BuildRequires: ncurses-devel
-BuildRequires: pcre-devel
+BuildRequires: pcre2-devel
BuildRequires: pkgconfig
BuildRequires: pwdutils
BuildRequires: python-devel
BuildRequires: sed
BuildRequires: sendmail-devel
+BuildRequires: systemd-devel
+BuildRequires: systemd-rpm-macros
BuildRequires: zlib-devel
-%define clamav_check --enable-check
-Summary:Antivirus Toolkit
-License:GPL-2.0-only
-Group: Productivity/Security
-Version:0.100.0
-Release:0
-Url:http://www.clamav.net
+Requires(pre): %_bindir/awk
+Requires(pre): %_sbindir/groupadd
+Requires(pre): %_sbindir/useradd
+Requires(pre): %_sbindir/usermod
+Requires(pre): /bin/sed
+Requires(pre): /bin/tar
Obsoletes: clamav-db < 0.88.3
-Provides: clamav-nodb = %{version}
+Provides: clamav-nodb = %version
Obsoletes: clamav-nodb <= 0.98.4
-Requires(pre): %_sbindir/groupadd %_sbindir/useradd %_sbindir/usermod
-Requires(pre): /usr/bin/awk /bin/sed /bin/tar
-Source0:
http://www.clamav.net/downloads/production/%{name}-%{version}.tar.gz
-Source1:
http://www.clamav.net/downloads/production/%{name}-%{version}.tar.gz.sig
-Source11: clamav.keyring
-Source4:clamav-rpmlintrc
-Source6:clamav-tmpfiles.conf
-Source7:service.clamd
-Source8:service.freshclam
-Source9:service.clamav-milte
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2018-04-29 19:37:28
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new (New)
Package is "clamav"
Sun Apr 29 19:37:28 2018 rev:94 rq:601641 version:0.100.0
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2018-03-08
10:59:25.953143356 +0100
+++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2018-04-29
19:37:31.238033752 +0200
@@ -1,0 +2,44 @@
+Thu Apr 26 15:35:15 UTC 2018 - m...@suse.com
+
+- Update to version 0.100.0 (bsc#1089502):
+ * Add interfaces to the Prelude SIEM open source package for
+collecting ClamAV virus events.
+ * Support libmspack internal code or as a shared object
+library. The internal library is the default and includes
+modifications to enable parsing of CAB files that do not
+entirely adhere to the CAB file format.
+ * Link with OpenSSL 1.1.0.
+ * Deprecate of the AllowSupplementaryGroups parameter
+statement in clamd, clamav-milter, and freshclam.
+Use of supplementary is now in effect by default.
+ * Deprecate internal LLVM code support.
+ * Compute and check PE import table hash (a.k.a. "imphash")
+signatures.
+ * Support file property collection and analysis for MHTML files.
+ * Raw scanning of PostScript files.
+ * Fix clamsubmit to use the new virus and false positive
+submission web interface.
+ * Optionally, flag files with the virus
+"Heuristic.Limits.Exceeded" when size limitations are exceeded.
+ * Improved decoders for PDF files.
+ * Reduced number of compile time warnings.
+ * Improved support for C++11.
+ * Improved detection of system installed libraries.
+ * Fixes to ClamAV's Container system and the introduction of
+Intermediates for more descriptive signatures.
+ * Improvements to clamd's On-Access scanning capabilities
+for Linux.
+ * Obsoletes clamav-fix_newer_zlib.patch
+- Update key ring and add signature file.
+- Turn off LLVM for now, because the bundled copy is deprecated,
+ the versions we have are too new and the performance gain over
+ the byte code interpreter are negligable, according to upstream.
+- Move pkgconfig stuff from main to devel package.
+- Re-introduce removed options as deprecated, so that clamd and
+ freshclam don't exit on startup with an old config file
+ (clamav-obsolete-config.patch).
+- Put libclammspack0 into its own subpackage to follow the letter
+ of the shlib packaging policy, even though it really makes no
+ sense here.
+
+---
Old:
clamav-0.99.4.tar.gz
clamav-fix_newer_zlib.patch
New:
clamav-0.100.0.tar.gz
clamav-0.100.0.tar.gz.sig
clamav-obsolete-config.patch
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.ge0bTj/_old 2018-04-29 19:37:32.062003537 +0200
+++ /var/tmp/diff_new_pack.ge0bTj/_new 2018-04-29 19:37:32.066003390 +0200
@@ -17,34 +17,28 @@
Name: clamav
-BuildRequires: ncurses-devel
-BuildRequires: sed
-BuildRequires: sendmail-devel
-%define llvm --disable-llvm
-BuildRequires: bc
-BuildRequires: pkgconfig
-BuildRequires: zlib-devel
-%ifarch %ix86 x86_64
-%define llvm --enable-llvm
-# Needed for compiling LLVM.
-BuildRequires: gcc-c++
-%endif
BuildRequires: autoconf
BuildRequires: automake
+BuildRequires: bc
BuildRequires: check-devel
BuildRequires: libbz2-devel
BuildRequires: libcurl-devel
BuildRequires: libopenssl-devel
BuildRequires: libtool
BuildRequires: libxml2-devel
+BuildRequires: ncurses-devel
BuildRequires: pcre-devel
+BuildRequires: pkgconfig
BuildRequires: pwdutils
BuildRequires: python-devel
+BuildRequires: sed
+BuildRequires: sendmail-devel
+BuildRequires: zlib-devel
%define clamav_check --enable-check
Summary:Antivirus Toolkit
-License:GPL-2.0
+License:GPL-2.0-only
Group: Productivity/Security
-Version:0.99.4
+Version:0.100.0
Release:0
Url:http://www.clamav.net
Obsoletes: clamav-db < 0.88.3
@@ -53,6 +47,7 @@
Requires(pre): %_sbindir/groupadd %_sbindir/useradd %_sbindir/usermod
Requires(pre): /usr/bin/awk /bin/sed /bin/tar
Source0:
http://www.clamav.net/downloads/production/%{name}-%{version}.tar.gz
+Source1:
http://www.clamav.net/downloads/production/%{name}-%{version}.tar.gz.sig
Source11: clamav.keyring
Source4:clamav-rpmlintrc
Source6:clamav-tmpfiles.conf
@@ -61,7 +56,7 @@
Source9:service.clamav-milter
Patch1: clamav-conf.patch
Patch4: clamav-disable-timestamps.patch
-Patch5: clamav-fix_newer_zlib
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2018-03-08 10:59:17
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new (New)
Package is "clamav"
Thu Mar 8 10:59:17 2018 rev:93 rq:583965 version:0.99.4
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2018-02-22
15:01:18.744450764 +0100
+++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2018-03-08
10:59:25.953143356 +0100
@@ -1,0 +2,13 @@
+Wed Mar 7 13:15:11 UTC 2018 - m...@suse.com
+
+- Update to security release 0.99.4 (bsc#1083915):
+ * CVE-2012-6706
+ * CVE-2017-6419
+ * CVE-2017-11423
+ * CVE-2018-185 (bsc#1082858)
+ * CVE-2018-0202
+- Obsolete patches:
+ * clamav-CVE-2012-6706.patch
+ * clamav-gcc47.patch
+
+---
Old:
clamav-0.99.3.tar.gz
clamav-CVE-2012-6706.patch
clamav-gcc47.patch
New:
clamav-0.99.4.tar.gz
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.P2AUWr/_old 2018-03-08 10:59:27.045103888 +0100
+++ /var/tmp/diff_new_pack.P2AUWr/_new 2018-03-08 10:59:27.049103742 +0100
@@ -44,7 +44,7 @@
Summary:Antivirus Toolkit
License:GPL-2.0
Group: Productivity/Security
-Version:0.99.3
+Version:0.99.4
Release:0
Url:http://www.clamav.net
Obsoletes: clamav-db < 0.88.3
@@ -60,10 +60,8 @@
Source8:service.freshclam
Source9:service.clamav-milter
Patch1: clamav-conf.patch
-Patch3: clamav-gcc47.patch
Patch4: clamav-disable-timestamps.patch
Patch5: clamav-fix_newer_zlib.patch
-Patch6: clamav-CVE-2012-6706.patch
BuildRequires: systemd
BuildRequires: systemd-rpm-macros
%systemd_requires
@@ -101,10 +99,8 @@
%prep
%setup -q
%patch1 -p1
-%patch3 -p1
-%patch4 -p1
+%patch4
%patch5 -p1
-%patch6
%build
CFLAGS="-fstack-protector"
++ clamav-0.99.3.tar.gz -> clamav-0.99.4.tar.gz ++
/work/SRC/openSUSE:Factory/clamav/clamav-0.99.3.tar.gz
/work/SRC/openSUSE:Factory/.clamav.new/clamav-0.99.4.tar.gz differ: char 5,
line 1
++ clamav-disable-timestamps.patch ++
--- /var/tmp/diff_new_pack.P2AUWr/_old 2018-03-08 10:59:27.105101719 +0100
+++ /var/tmp/diff_new_pack.P2AUWr/_new 2018-03-08 10:59:27.109101574 +0100
@@ -1,7 +1,5 @@
-Index: clamav-0.99.3/libclamav/tomsfastmath/misc/fp_ident.c
-===
clamav-0.99.3.orig/libclamav/tomsfastmath/misc/fp_ident.c 2018-01-26
16:31:35.516009696 +0100
-+++ clamav-0.99.3/libclamav/tomsfastmath/misc/fp_ident.c 2018-01-26
16:31:36.912029598 +0100
+--- libclamav/tomsfastmath/misc/fp_ident.c.orig
libclamav/tomsfastmath/misc/fp_ident.c
@@ -15,7 +15,11 @@ const char *fp_ident(void)
memset(buf, 0, sizeof(buf));
@@ -27,11 +25,9 @@
if (sizeof(fp_digit) == sizeof(fp_word)) {
strncat(buf, "WARNING: sizeof(fp_digit) == sizeof(fp_word), this build
is likely to not work properly.\n",
-Index: clamav-0.99.3/configure
-===
clamav-0.99.3.orig/configure 2018-01-26 16:31:35.532009924 +0100
-+++ clamav-0.99.3/configure2018-01-26 16:32:20.112645407 +0100
-@@ -783,6 +783,7 @@ FGREP
+--- configure.orig
configure
+@@ -785,6 +785,7 @@ FGREP
SED
LIBTOOL
LIBCLAMAV_VERSION
@@ -39,7 +35,7 @@
EGREP
GREP
CPP
-@@ -885,6 +886,7 @@ ac_user_opts='
+@@ -887,6 +888,7 @@ ac_user_opts='
enable_option_checking
enable_silent_rules
enable_dependency_tracking
@@ -47,7 +43,7 @@
enable_static
enable_shared
with_pic
-@@ -1591,6 +1593,8 @@ Optional Features:
+@@ -1594,6 +1596,8 @@ Optional Features:
--disable-dependency-tracking speeds up one-time build
--enable-dependency-tracking do not reject slow dependency extractors
--enable-static[=PKGS] build static libraries [default=no]
@@ -56,7 +52,7 @@
--enable-shared[=PKGS] build shared libraries [default=yes]
--enable-fast-install[=PKGS]
optimize for fast installation [default=yes]
-@@ -4967,6 +4971,26 @@ $as_echo "$ac_cv_safe_to_define___extens
+@@ -4989,6 +4993,26 @@ $as_echo "$ac_cv_safe_to_define___extens
$as_echo "#define _TANDEM_SOURCE 1" >>confdefs.h
@@ -82,4 +78,4 @@
+_ACEOF
- VERSION="0.99.3"
+ VERSION="0.99.4"
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2018-02-22 15:01:15
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new (New)
Package is "clamav"
Thu Feb 22 15:01:15 2018 rev:92 rq:578702 version:0.99.3
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2018-02-14
10:52:46.283201713 +0100
+++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2018-02-22
15:01:18.744450764 +0100
@@ -1,0 +2,7 @@
+Wed Feb 14 12:21:39 UTC 2018 - m...@suse.com
+
+- bsc#1045490, CVE-2012-6706: VMSF_DELTA filter in libclamunrar
+ allows arbitrary memory write (clamav-CVE-2012-6706.patch).
+- Buildrequire curl-devel to enable clamsubmit.
+
+---
New:
clamav-CVE-2012-6706.patch
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.sm1hcT/_old 2018-02-22 15:01:20.120401264 +0100
+++ /var/tmp/diff_new_pack.sm1hcT/_new 2018-02-22 15:01:20.124401120 +0100
@@ -33,6 +33,7 @@
BuildRequires: automake
BuildRequires: check-devel
BuildRequires: libbz2-devel
+BuildRequires: libcurl-devel
BuildRequires: libopenssl-devel
BuildRequires: libtool
BuildRequires: libxml2-devel
@@ -62,6 +63,7 @@
Patch3: clamav-gcc47.patch
Patch4: clamav-disable-timestamps.patch
Patch5: clamav-fix_newer_zlib.patch
+Patch6: clamav-CVE-2012-6706.patch
BuildRequires: systemd
BuildRequires: systemd-rpm-macros
%systemd_requires
@@ -102,6 +104,7 @@
%patch3 -p1
%patch4 -p1
%patch5 -p1
+%patch6
%build
CFLAGS="-fstack-protector"
++ clamav-CVE-2012-6706.patch ++
--- libclamunrar/unrarvm.c.orig
+++ libclamunrar/unrarvm.c
@@ -26,6 +26,13 @@
#include "libclamunrar/unrarvm.h"
#include "libclamunrar/unrarcmd.h"
+/*
+ * Limit maximum number of channels in RAR3 delta filter to some
+ * reasonable value to prevent too slow processing of corrupt archives
+ * with invalid channels number.
+ */
+#define MAX3_UNPACK_CHANNELS 1024
+
#ifdef RAR_HIGH_DEBUG
#define rar_dbgmsg printf
#else
@@ -340,8 +347,8 @@ static void filter_itanium_setbits(unsig
static void execute_standard_filter(rarvm_data_t *rarvm_data,
rarvm_standard_filters_t filter_type)
{
unsigned char *data, cmp_byte2, cur_byte, *src_data, *dest_data;
- int i, j, data_size, channels, src_pos, dest_pos, border, width, PosR;
- int op_type, cur_channel, byte_count, start_pos, pa, pb, pc;
+ int i, j, op_type, cur_channel, byte_count, start_pos, pa, pb, pc;
+ unsigned int data_size, channels, src_pos, dest_pos, border, width,
PosR;
unsigned int file_offset, cur_pos, predicted;
int32_t offset, addr;
const int file_size=0x100;
@@ -426,7 +433,7 @@ static void execute_standard_filter(rarv
border = data_size*2;
SET_VALUE(FALSE, &rarvm_data->mem[VM_GLOBALMEMADDR+0x20],
data_size);
- if ((unsigned int)data_size >= VM_GLOBALMEMADDR/2) {
+ if ((unsigned int)data_size >= VM_GLOBALMEMADDR/2 || channels >
MAX3_UNPACK_CHANNELS) {
break;
}
for (cur_channel=0 ; cur_channel < channels ; cur_channel++) {
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2018-02-14 10:52:43 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Wed Feb 14 10:52:43 2018 rev:91 rq:576419 version:0.99.3 Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2018-01-28 20:33:26.978815999 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2018-02-14 10:52:46.283201713 +0100 @@ -1,0 +2,5 @@ +Tue Feb 13 08:50:55 UTC 2018 - vark...@suse.com + +- bsc=983938 `After=syslog.target` left-overs in several unit files + +--- Other differences: -- ++ service.clamav-milter ++ --- /var/tmp/diff_new_pack.xdSf5w/_old 2018-02-14 10:52:47.667151899 +0100 +++ /var/tmp/diff_new_pack.xdSf5w/_new 2018-02-14 10:52:47.671151755 +0100 @@ -1,6 +1,6 @@ [Unit] Description=Clamav antivirus milter daemon -After=syslog.target network.target freshclam.service +After=network.target freshclam.service Requires=freshclam.service [Service] ++ service.clamd ++ --- /var/tmp/diff_new_pack.xdSf5w/_old 2018-02-14 10:52:47.691151035 +0100 +++ /var/tmp/diff_new_pack.xdSf5w/_new 2018-02-14 10:52:47.691151035 +0100 @@ -1,6 +1,6 @@ [Unit] Description=Clamav antivirus Deamon -After=syslog.target network.target freshclam.service +After=network.target freshclam.service Requires=freshclam.service [Service] ++ service.freshclam ++ --- /var/tmp/diff_new_pack.xdSf5w/_old 2018-02-14 10:52:47.711150315 +0100 +++ /var/tmp/diff_new_pack.xdSf5w/_new 2018-02-14 10:52:47.711150315 +0100 @@ -1,6 +1,6 @@ [Unit] Description=Freshclam virus definitions downloader -After=syslog.target network.target +After=network.target [Service] Type=forking
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2018-01-28 20:32:09 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Sun Jan 28 20:32:09 2018 rev:90 rq:569980 version:0.99.3 Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2017-11-29 10:54:23.332886685 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2018-01-28 20:33:26.978815999 +0100 @@ -1,0 +2,32 @@ +Fri Jan 26 15:19:33 UTC 2018 - vci...@suse.com + +- Update to security release 0.99.3 (bsc#1077732) + * CVE-2017-12376 (ClamAV Buffer Overflow in handle_pdfname Vulnerability) + * CVE-2017-12377 (ClamAV Mew Packet Heap Overflow Vulnerability) + * CVE-2017-12379 (ClamAV Buffer Overflow in messageAddArgument Vulnerability) +- these vulnerabilities could have allowed an unauthenticated, + remote attacker to cause a denial of service (DoS) condition + or potentially execute arbitrary code on an affected device. + * CVE-2017-12374 (ClamAV use-after-free Vulnerabilities) + * CVE-2017-12375 (ClamAV Buffer Overflow Vulnerability) + * CVE-2017-12378 (ClamAV Buffer Over Read Vulnerability) + * CVE-2017-12380 (ClamAV Null Dereference Vulnerability) +- these vulnerabilities could have allowed an unauthenticated, + remote attacker to cause a denial of service (DoS) condition on an affected device. + * CVE-2017-6420 (bsc#1052448) +- this vulnerability allowed remote attackers to cause a denial of service + (use-after-free) via a crafted PE file with WWPack compression. + * CVE-2017-6419 (bsc#1052449) +- ClamAV allowed remote attackers to cause a denial of service + (heap-based buffer overflow and application crash) or possibly + have unspecified other impact via a crafted CHM file. + * CVE-2017-11423 (bsc#1049423) +- The cabd_read_string function in mspack/cabd.c in libmspack 0.5alpha + allowed remote attackers to cause a denial of service + (stack-based buffer over-read and application crash) via a crafted CAB file. + * CVE-2017-6418 (bsc#1052466) +- ClamAV 0.99.2 allowed remote attackers to cause a denial + of service (out-of-bounds read) via a crafted e-mail message. +- drop clamav-0.99.2-openssl-1.1.patch (upstream) + +--- Old: clamav-0.99.2-openssl-1.1.patch clamav-0.99.2.tar.gz New: clamav-0.99.3.tar.gz Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.t4kjQj/_old 2018-01-28 20:33:27.914772280 +0100 +++ /var/tmp/diff_new_pack.t4kjQj/_new 2018-01-28 20:33:27.918772093 +0100 @@ -1,7 +1,7 @@ # # spec file for package clamav # -# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -43,7 +43,7 @@ Summary:Antivirus Toolkit License:GPL-2.0 Group: Productivity/Security -Version:0.99.2 +Version:0.99.3 Release:0 Url:http://www.clamav.net Obsoletes: clamav-db < 0.88.3 @@ -62,8 +62,6 @@ Patch3: clamav-gcc47.patch Patch4: clamav-disable-timestamps.patch Patch5: clamav-fix_newer_zlib.patch -# https://raw.githubusercontent.com/patch-exchange/openssl-1.1-transition/master/clamav/clamav-0.99.2-openssl-1.1.patch -Patch6: clamav-0.99.2-openssl-1.1.patch BuildRequires: systemd BuildRequires: systemd-rpm-macros %systemd_requires @@ -104,10 +102,6 @@ %patch3 -p1 %patch4 -p1 %patch5 -p1 -if pkg-config --atleast-version=1.1.0 libssl; then -%patch6 -p1 -autoreconf -i -f -fi %build CFLAGS="-fstack-protector" ++ clamav-0.99.2.tar.gz -> clamav-0.99.3.tar.gz ++ /work/SRC/openSUSE:Factory/clamav/clamav-0.99.2.tar.gz /work/SRC/openSUSE:Factory/.clamav.new/clamav-0.99.3.tar.gz differ: char 5, line 1 ++ clamav-disable-timestamps.patch ++ --- /var/tmp/diff_new_pack.t4kjQj/_old 2018-01-28 20:33:27.962770038 +0100 +++ /var/tmp/diff_new_pack.t4kjQj/_new 2018-01-28 20:33:27.962770038 +0100 @@ -1,7 +1,7 @@ -Index: clamav-0.99.2/libclamav/tomsfastmath/misc/fp_ident.c +Index: clamav-0.99.3/libclamav/tomsfastmath/misc/fp_ident.c === clamav-0.99.2.orig/libclamav/tomsfastmath/misc/fp_ident.c -+++ clamav-0.99.2/libclamav/tomsfastmath/misc/fp_ident.c +--- clamav-0.99.3.orig/libclamav/tomsfastmath/misc/fp_ident.c 2018-01-26 16:31:35.516009696 +0100 clamav-0.99.3/libclamav/tomsfas
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2017-11-29 10:54:11
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new (New)
Package is "clamav"
Wed Nov 29 10:54:11 2017 rev:89 rq:546176 version:0.99.2
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2017-10-09
19:47:37.781143634 +0200
+++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2017-11-29
10:54:23.332886685 +0100
@@ -1,0 +2,5 @@
+Tue Nov 28 08:30:04 UTC 2017 - meiss...@suse.com
+
+- clamav-0.99.2-openssl-1.1.patch: fixed build against openssl 1.1
+
+---
New:
clamav-0.99.2-openssl-1.1.patch
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.gbbhjH/_old 2017-11-29 10:54:24.292851857 +0100
+++ /var/tmp/diff_new_pack.gbbhjH/_new 2017-11-29 10:54:24.296851713 +0100
@@ -29,9 +29,12 @@
# Needed for compiling LLVM.
BuildRequires: gcc-c++
%endif
+BuildRequires: autoconf
+BuildRequires: automake
BuildRequires: check-devel
BuildRequires: libbz2-devel
BuildRequires: libopenssl-devel
+BuildRequires: libtool
BuildRequires: libxml2-devel
BuildRequires: pcre-devel
BuildRequires: pwdutils
@@ -59,6 +62,8 @@
Patch3: clamav-gcc47.patch
Patch4: clamav-disable-timestamps.patch
Patch5: clamav-fix_newer_zlib.patch
+#
https://raw.githubusercontent.com/patch-exchange/openssl-1.1-transition/master/clamav/clamav-0.99.2-openssl-1.1.patch
+Patch6: clamav-0.99.2-openssl-1.1.patch
BuildRequires: systemd
BuildRequires: systemd-rpm-macros
%systemd_requires
@@ -99,6 +104,10 @@
%patch3 -p1
%patch4 -p1
%patch5 -p1
+if pkg-config --atleast-version=1.1.0 libssl; then
+%patch6 -p1
+autoreconf -i -f
+fi
%build
CFLAGS="-fstack-protector"
++ clamav-0.99.2-openssl-1.1.patch ++
--- clamav-0.99.2/libclamav/crypto.c.omv~ 2016-09-18 18:11:34.723085234
+0200
+++ clamav-0.99.2/libclamav/crypto.c2016-09-18 18:11:48.296898159 +0200
@@ -121,7 +121,7 @@ time_t timegm(struct tm *t)
int cl_initialize_crypto(void)
{
SSL_load_error_strings();
-SSL_library_init();
+OPENSSL_init_ssl(0, NULL);
OpenSSL_add_all_digests();
OpenSSL_add_all_algorithms();
OpenSSL_add_all_ciphers();
--- clamav-0.99.2/m4/reorganization/libs/openssl.m4.omv~2016-09-18
18:11:11.071411211 +0200
+++ clamav-0.99.2/m4/reorganization/libs/openssl.m4 2016-09-18
18:11:22.872248566 +0200
@@ -41,7 +41,7 @@ fi
have_ssl="no"
have_crypto="no"
-AC_CHECK_LIB([ssl], [SSL_library_init], [have_ssl="yes"], [AC_MSG_ERROR([Your
OpenSSL installation is misconfigured or missing])], [-lcrypto -lz])
+AC_CHECK_LIB([ssl], [OPENSSL_init_ssl], [have_ssl="yes"], [AC_MSG_ERROR([Your
OpenSSL installation is misconfigured or missing])], [-lcrypto -lz])
AC_CHECK_LIB([crypto], [EVP_EncryptInit], [have_crypto="yes"],
[AC_MSG_ERROR([Your OpenSSL installation is misconfigured or missing])],
[-lcrypto -lz])
--- clamav-0.99.2/libclamav/crypto.c.omv~ 2016-09-18 18:15:48.514588018
+0200
+++ clamav-0.99.2/libclamav/crypto.c2016-09-18 18:18:26.332413758 +0200
@@ -1110,7 +1110,7 @@ X509_CRL *cl_load_crl(const char *file)
fclose(fp);
if ((x)) {
-tm = cl_ASN1_GetTimeT(x->crl->nextUpdate);
+tm = cl_ASN1_GetTimeT(X509_CRL_get0_nextUpdate(x));
if (!(tm)) {
X509_CRL_free(x);
return NULL;
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2017-10-09 19:44:11
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new (New)
Package is "clamav"
Mon Oct 9 19:44:11 2017 rev:88 rq:532408 version:0.99.2
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2017-09-07
22:15:51.964552542 +0200
+++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2017-10-09
19:47:37.781143634 +0200
@@ -1,0 +2,5 @@
+Tue Sep 5 23:30:39 UTC 2017 - jeng...@inai.de
+
+- Implement shared library guideline.
+
+---
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.GITJP6/_old 2017-10-09 19:47:38.581108476 +0200
+++ /var/tmp/diff_new_pack.GITJP6/_new 2017-10-09 19:47:38.585108300 +0200
@@ -73,6 +73,26 @@
support, archive support, and multiple signature languages for
detecting threats.
+%package -n libclamav7
+Summary:ClamAV antivirus engine runtime
+Group: System/Libraries
+
+%description -n libclamav7
+ClamAV is an antivirus engine designed for detecting trojans,
+viruses, malware and other malicious threats.
+
+%package devel
+Summary:Development files for libclamav, an antivirus engine
+Group: Development/Libraries/C and C++
+Requires: libclamav7 = %version
+
+%description devel
+ClamAV is an antivirus engine designed for detecting trojans,
+viruses, malware and other malicious threats.
+
+This subpackage contains header files for developing applications
+that want to make use of libclamav.
+
%prep
%setup -q
%patch1 -p1
@@ -106,7 +126,7 @@
make V=1 %{?_smp_mflags}
%install
-%makeinstall
+%make_install
install -d -m755 %buildroot/var/lib/clamav
install -d -m755 %buildroot/%_tmpfilesdir
install -m644 %{S:6} %buildroot%_tmpfilesdir/clamav.conf
@@ -144,6 +164,9 @@
VALGRIND_GENSUP=1 make check
%endif
+%post -n libclamav7 -p /sbin/ldconfig
+%postun -n libclamav7 -p /sbin/ldconfig
+
%files
%defattr(-,root,root,-)
%config(noreplace) %_sysconfdir/*.conf
@@ -157,14 +180,21 @@
%doc %_mandir/*/*
%_bindir/*
%_sbindir/*
-%_includedir/*
-%_libdir/lib*
%_libdir/pkgconfig/libclamav.pc
%defattr(-,vscan,vscan)
%dir %attr(750,vscan,vscan) /var/spool/amavis
%dir /var/lib/clamav
%ghost %attr(755,vscan,vscan) /run/clamav
+%files -n libclamav7
+%defattr(-,root,root)
+%_libdir/libclam*.so.7*
+
+%files devel
+%defattr(-,root,root)
+%_libdir/libclam*.so
+%_includedir/*
+
%pre
getent group vscan >/dev/null || %_sbindir/groupadd -r vscan || :
getent passwd vscan >/dev/null || \
@@ -174,7 +204,6 @@
%service_add_pre clamd.service freshclam.service clamav-milter.service
%post
-/sbin/ldconfig
systemd-tmpfiles --create %_tmpfilesdir/clamav.conf
%service_add_post clamd.service freshclam.service clamav-milter.service
@@ -182,7 +211,6 @@
%service_del_preun clamd.service freshclam.service clamav-milter.service
%postun
-/sbin/ldconfig
%service_del_postun clamd.service freshclam.service clamav-milter.service
%changelog
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2017-09-07 22:15:04
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new (New)
Package is "clamav"
Thu Sep 7 22:15:04 2017 rev:87 rq:521169 version:0.99.2
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2016-11-14
20:13:45.0 +0100
+++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2017-09-07
22:15:51.964552542 +0200
@@ -1,0 +2,17 @@
+Mon Aug 21 13:41:14 UTC 2017 - fv...@suse.com
+
+- Add clamav-fix_newer_zlib.patch from ubuntu packages to fix build with
+ zlib 1.2.11 (boo#1041201)
+
+---
+Tue Aug 1 18:40:35 CEST 2017 - r...@suse.de
+
+- pass --disable-zlib-vcheck to fix build in factory
+
+---
+Mon May 29 14:25:26 UTC 2017 - astie...@suse.com
+
+- provide and obsolete clamav-nodb to trigger it's removal in Leap
+ bsc#1040662
+
+---
New:
clamav-fix_newer_zlib.patch
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.mpskeV/_old 2017-09-07 22:15:53.460341760 +0200
+++ /var/tmp/diff_new_pack.mpskeV/_new 2017-09-07 22:15:53.464341197 +0200
@@ -1,7 +1,7 @@
#
# spec file for package clamav
#
-# Copyright (c) 2016 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -44,6 +44,8 @@
Release:0
Url:http://www.clamav.net
Obsoletes: clamav-db < 0.88.3
+Provides: clamav-nodb = %{version}
+Obsoletes: clamav-nodb <= 0.98.4
Requires(pre): %_sbindir/groupadd %_sbindir/useradd %_sbindir/usermod
Requires(pre): /usr/bin/awk /bin/sed /bin/tar
Source0:
http://www.clamav.net/downloads/production/%{name}-%{version}.tar.gz
@@ -56,6 +58,7 @@
Patch1: clamav-conf.patch
Patch3: clamav-gcc47.patch
Patch4: clamav-disable-timestamps.patch
+Patch5: clamav-fix_newer_zlib.patch
BuildRequires: systemd
BuildRequires: systemd-rpm-macros
%systemd_requires
@@ -75,6 +78,7 @@
%patch1 -p1
%patch3 -p1
%patch4 -p1
+%patch5 -p1
%build
CFLAGS="-fstack-protector"
@@ -96,6 +100,7 @@
%clamav_check \
%llvm \
--enable-clamdtop \
+ --disable-zlib-vcheck \
--disable-timestamps
make V=1 %{?_smp_mflags}
++ clamav-fix_newer_zlib.patch ++
Description: fix compatibility with zlib 1.2.9 and newer
Author: Marc Deslauriers
Bug-Ubuntu: https://bugs.launchpad.net/ubuntu/+source/clamav/+bug/1692073
Index: clamav-0.99.2+dfsg/libclamav/bytecode_api.c
===
--- clamav-0.99.2+dfsg.orig/libclamav/bytecode_api.c2017-08-08
15:20:06.651685637 -0400
+++ clamav-0.99.2+dfsg/libclamav/bytecode_api.c 2017-08-15 15:45:14.645714766
-0400
@@ -811,8 +811,20 @@ int32_t cli_bcapi_inflate_init(struct cl
cli_dbgmsg("bytecode api: inflate_init: invalid buffers!\n");
return -1;
}
-memset(&stream, 0, sizeof(stream));
-ret = inflateInit2(&stream, windowBits);
+
+b = cli_realloc(ctx->inflates, sizeof(*ctx->inflates)*n);
+if (!b) {
+return -1;
+}
+ctx->inflates = b;
+ctx->ninflates = n;
+b = &b[n-1];
+
+b->from = from;
+b->to = to;
+b->needSync = 0;
+memset(&b->stream, 0, sizeof(stream));
+ret = inflateInit2(&b->stream, windowBits);
switch (ret) {
case Z_MEM_ERROR:
cli_dbgmsg("bytecode api: inflateInit2: out of memory!\n");
@@ -829,20 +841,6 @@ int32_t cli_bcapi_inflate_init(struct cl
cli_dbgmsg("bytecode api: inflateInit2: unknown error %d\n", ret);
return -1;
}
-
-b = cli_realloc(ctx->inflates, sizeof(*ctx->inflates)*n);
-if (!b) {
-inflateEnd(&stream);
-return -1;
-}
-ctx->inflates = b;
-ctx->ninflates = n;
-b = &b[n-1];
-
-b->from = from;
-b->to = to;
-b->needSync = 0;
-memcpy(&b->stream, &stream, sizeof(stream));
return n-1;
}
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2016-11-14 20:13:44
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new (New)
Package is "clamav"
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2016-08-05
18:17:19.0 +0200
+++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2016-11-14
20:13:45.0 +0100
@@ -1,0 +2,7 @@
+Thu Oct 13 07:56:56 UTC 2016 - fwe...@suse.com
+
+- Add enable-timestamps option to disable time
+ dependent macros if passed to configure.
+ (bsc#1001154, clamav-disable-timestamps.patch)
+
+---
New:
clamav-disable-timestamps.patch
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.FMyKzT/_old 2016-11-14 20:13:47.0 +0100
+++ /var/tmp/diff_new_pack.FMyKzT/_new 2016-11-14 20:13:47.0 +0100
@@ -55,6 +55,7 @@
Source9:service.clamav-milter
Patch1: clamav-conf.patch
Patch3: clamav-gcc47.patch
+Patch4: clamav-disable-timestamps.patch
BuildRequires: systemd
BuildRequires: systemd-rpm-macros
%systemd_requires
@@ -73,6 +74,7 @@
%setup -q
%patch1 -p1
%patch3 -p1
+%patch4 -p1
%build
CFLAGS="-fstack-protector"
++ clamav-disable-timestamps.patch ++
Index: clamav-0.99.2/libclamav/tomsfastmath/misc/fp_ident.c
===
--- clamav-0.99.2.orig/libclamav/tomsfastmath/misc/fp_ident.c
+++ clamav-0.99.2/libclamav/tomsfastmath/misc/fp_ident.c
@@ -15,7 +15,11 @@ const char *fp_ident(void)
memset(buf, 0, sizeof(buf));
snprintf(buf, sizeof(buf)-1,
-"TomsFastMath (%s)\n"
+#if (ENABLE_TIMESTAMPS == 1)
+ "TomsFastMath (%s)\n"
+#else
+ "TomsFastMath\n"
+#endif
"\n"
"Sizeofs\n"
"\tfp_digit = %llu\n"
@@ -70,7 +74,11 @@ const char *fp_ident(void)
#ifdef TFM_HUGE
" TFM_HUGE "
#endif
+#if (ENABLE_TIMESTAMPS == 1)
"\n", __DATE__, (long long unsigned)sizeof(fp_digit), (long long
unsigned)sizeof(fp_word), FP_MAX_SIZE);
+#else
+"\n", (long long unsigned)sizeof(fp_digit), (long long
unsigned)sizeof(fp_word), FP_MAX_SIZE);
+#endif
if (sizeof(fp_digit) == sizeof(fp_word)) {
strncat(buf, "WARNING: sizeof(fp_digit) == sizeof(fp_word), this build
is likely to not work properly.\n",
Index: clamav-0.99.2/configure
===
--- clamav-0.99.2.orig/configure
+++ clamav-0.99.2/configure
@@ -783,6 +783,7 @@ FGREP
SED
LIBTOOL
LIBCLAMAV_VERSION
+ENABLE_TIMESTAMPS
EGREP
GREP
CPP
@@ -885,6 +886,7 @@ ac_user_opts='
enable_option_checking
enable_silent_rules
enable_dependency_tracking
+enable_timestamps
enable_static
enable_shared
with_pic
@@ -1592,6 +1594,8 @@ Optional Features:
do not reject slow dependency extractors
--disable-dependency-tracking
speeds up one-time build
+ --enable-timestamps Enable embedding timestamp information in build
+ (default is YES)
--enable-static[=PKGS] build static libraries [default=no]
--enable-shared[=PKGS] build shared libraries [default=yes]
--enable-fast-install[=PKGS]
@@ -5163,6 +5167,26 @@ $as_echo "$ac_cv_safe_to_define___extens
$as_echo "#define _TANDEM_SOURCE 1" >>confdefs.h
+# Check whether --enable-timestamps was given.
+if test "${enable_timestamps+set}" = set; then :
+ enableval=$enable_timestamps;
+else
+ enableval=default
+fi
+
+case "$enableval" in
+ yes) ENABLE_TIMESTAMPS=1
+ ;;
+ no) ENABLE_TIMESTAMPS=0
+ ;;
+ default) ENABLE_TIMESTAMPS=1
+ ;;
+ *) as_fn_error $? "Invalid setting for --enable-timestamps. Use \"yes\" or
\"no\"" "$LINENO" 5 ;;
+esac
+
+cat >>confdefs.h <<_ACEOF
+#define ENABLE_TIMESTAMPS $ENABLE_TIMESTAMPS
+_ACEOF
VERSION="0.99.2"
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2016-08-05 18:17:11
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new (New)
Package is "clamav"
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2016-07-24
19:53:21.0 +0200
+++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2016-08-05
18:17:19.0 +0200
@@ -1,0 +2,12 @@
+Wed Aug 3 08:46:11 UTC 2016 - m...@suse.com
+
+- boo#991812: Remove obsolete dependency on latex2html-pngicons.
+
+---
+Thu Jul 21 14:09:26 UTC 2016 - jeng...@inai.de
+
+- Trim useless words from description and fix spellos.
+ Test for user/group existence before adding and always show
+ errors when they occur.
+
+---
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.XU6XK8/_old 2016-08-05 18:17:21.0 +0200
+++ /var/tmp/diff_new_pack.XU6XK8/_new 2016-08-05 18:17:21.0 +0200
@@ -43,7 +43,6 @@
Version:0.99.2
Release:0
Url:http://www.clamav.net
-Requires: latex2html-pngicons
Obsoletes: clamav-db < 0.88.3
Requires(pre): %_sbindir/groupadd %_sbindir/useradd %_sbindir/usermod
Requires(pre): /usr/bin/awk /bin/sed /bin/tar
@@ -61,14 +60,14 @@
%systemd_requires
%description
-ClamAV is an open source (GPL) antivirus engine designed for detecting
-Trojans, viruses, malware and other malicious threats. It is the de
-facto standard for mail gateway scanning. It provides a high
-performance mutli-threaded scanning daemon, command line utilities for
-on demand file scanning, and an intelligent tool for automatic
-signature updates. The core ClamAV library provides numerous file
-format detection mechanisms, file unpacking support, archive support,
-and multiple signature languages for detecting threats.
+ClamAV is an antivirus engine designed for detecting trojans,
+viruses, malware and other malicious threats. It is the de-facto
+standard for mail gateway scanning. It provides a multi-threaded
+scanning daemon, command line utilities for on-demand file scanning,
+and a tool for automatic signature updates. The core ClamAV library
+provides numerous file format detection mechanisms, file unpacking
+support, archive support, and multiple signature languages for
+detecting threats.
%prep
%setup -q
@@ -97,7 +96,7 @@
--enable-clamdtop \
--disable-timestamps
-make V=1 %{?jobs:-j%jobs}
+make V=1 %{?_smp_mflags}
%install
%makeinstall
@@ -160,8 +159,10 @@
%ghost %attr(755,vscan,vscan) /run/clamav
%pre
-%_sbindir/groupadd -r vscan 2> /dev/null || :
-%_sbindir/useradd -r -o -g vscan -u 65 -s /bin/false -c "Vscan account" -d
/var/spool/amavis vscan 2> /dev/null || :
+getent group vscan >/dev/null || %_sbindir/groupadd -r vscan || :
+getent passwd vscan >/dev/null || \
+ %_sbindir/useradd -r -o -g vscan -u 65 -s /bin/false \
+ -c "Vscan account" -d /var/spool/amavis vscan || :
%_sbindir/usermod vscan -g vscan 2> /dev/null || :
%service_add_pre clamd.service freshclam.service clamav-milter.service
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2016-07-24 19:52:48
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new (New)
Package is "clamav"
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2016-06-25
02:23:04.0 +0200
+++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2016-07-24
19:53:21.0 +0200
@@ -1,0 +2,8 @@
+Thu Jun 30 13:42:20 UTC 2016 - fwe...@suse.com
+
+- Added BuildRequires systemd-rpm-macros
+- Added %ghost entry for /run/clamav
+- Use /run instead of /var/run because it is a symlink nowadays
+ (clamav-tmpfiles.conf)
+
+---
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.6ADdr9/_old 2016-07-24 19:53:22.0 +0200
+++ /var/tmp/diff_new_pack.6ADdr9/_new 2016-07-24 19:53:22.0 +0200
@@ -57,6 +57,7 @@
Patch1: clamav-conf.patch
Patch3: clamav-gcc47.patch
BuildRequires: systemd
+BuildRequires: systemd-rpm-macros
%systemd_requires
%description
@@ -102,8 +103,9 @@
%makeinstall
install -d -m755 %buildroot/var/lib/clamav
install -d -m755 %buildroot/%_tmpfilesdir
-install -m644 %SOURCE6 %buildroot%_tmpfilesdir/clamav.conf
+install -m644 %{S:6} %buildroot%_tmpfilesdir/clamav.conf
mkdir -p %buildroot/var/spool/amavis
+mkdir -p -m 0755 %buildroot/run/clamav
rm %buildroot/%_libdir/*.la
# Remove bogus dependencies from libclamav.pc
sed -i 's/^Libs: .*/Libs: -lclamav/' %buildroot%_libdir/pkgconfig/libclamav.pc
@@ -117,9 +119,12 @@
# Systemd...
install -d -m 0755 %buildroot/%{_unitdir}
-install -m 0644 %{SOURCE7} %buildroot/%{_unitdir}/clamd.service
-install -m 0644 %{SOURCE8} %buildroot/%{_unitdir}/freshclam.service
-install -m 0644 %{SOURCE9} %buildroot/%{_unitdir}/clamav-milter.service
+install -m 0644 %{S:7} %buildroot/%{_unitdir}/clamd.service
+install -m 0644 %{S:8} %buildroot/%{_unitdir}/freshclam.service
+install -m 0644 %{S:9} %buildroot/%{_unitdir}/clamav-milter.service
+rm -f %buildroot/%{_unitdir}/clamav-daemon.service
+rm -f %buildroot/%{_unitdir}/clamav-daemon.socket
+rm -f %buildroot/%{_unitdir}/clamav-freshclam.service
# this is broken if system does not have systemd so don't
# use it at all on systems without mandatory systemd
for srvname in clamd freshclam clamav-milter;do
@@ -152,6 +157,7 @@
%defattr(-,vscan,vscan)
%dir %attr(750,vscan,vscan) /var/spool/amavis
%dir /var/lib/clamav
+%ghost %attr(755,vscan,vscan) /run/clamav
%pre
%_sbindir/groupadd -r vscan 2> /dev/null || :
++ clamav-tmpfiles.conf ++
--- /var/tmp/diff_new_pack.6ADdr9/_old 2016-07-24 19:53:22.0 +0200
+++ /var/tmp/diff_new_pack.6ADdr9/_new 2016-07-24 19:53:22.0 +0200
@@ -1,2 +1,2 @@
-# clamav needs a directory in /var/run:
-d /var/run/clamav 0755 vscan vscan -
+# clamav needs a directory in /run:
+d /run/clamav 0755 vscan vscan -
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2016-06-25 02:22:48
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new (New)
Package is "clamav"
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2016-06-19
12:52:59.0 +0200
+++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2016-06-25
02:23:04.0 +0200
@@ -1,0 +2,53 @@
+Thu Jun 23 07:30:49 UTC 2016 - fwe...@suse.com
+
+- Update to version 0.99.2 (bsc#978459)
+ * 7z: fix for FolderStartPackStreamIndex array index heck
+ * print all CDBNAME entries for a zip file when using the -z
+flag.
+ * try to minimize the err cleanup path
+ * clamunrar: notice if unpacking comment failed
+ * signature manual update.
+ * use temp var for realloc to prevent pointer loss.
+ * fix debug VI hex truncation
+ * freshclam: avoid random data in mirrors.dat.
+ * libclamav: print raw certificate metadata
+ * freshclam manager check return code of strdup.
+ * additional suppress IP notification when using proxy
+ * fix download and verification of *.cld through PrivateMirrors
+ * suppress IP notification when using proxy
+ * remove redundant mempool assignment
+ * divide out dumpcerts output for better readability
+ * fix dconf and option handling for nocert and dumpcert
+ * patch by Jim Morris to increase clamd's soft file descriptor to
+its potential maximum on 64-bit systems
+ * Move libfreshclam config to m4/reorganization.
+ * adding libfreshclam
+ * Add 'cdb' datafile to sigtools list of datafile types.
+ * NULL pointer check.
+ * malloc() NULL pointer check.
+ * clamscan 'block-macros' option.
+ * initialize cpio name buffer
+ * initialize mspack decompression buffers
+ * prevent memory allocations on used pointers (folder objects)
+ * prevent memory allocations on used pointers (boolvectors)
+ * initialize ARJ metadata structures
+ * change cli_malloc with cli_calloc
+ * check packSizes prior to dereference
+ * fixed inconsistent folder state on failure
+ * pre-check on (*unpackSizes) dereference
+ * fix on pre-checks on dereferenced array
+ * pre-checks on dereferenced array size values (not =0)
+ * adding sanity checks to 7z header parsing
+ * fixed mew source read issue
+ * documentation update on targets
+ * filetype consistency
+ * move llvm option flag handling to new m4 file
+ * hwp5.x: fix for streams without names
+
+- bsc#958451: Remove updateclamconf, because it breaks
+ configurations that have multiple occurances of the same keyword.
+
+ Henceforth the configuration files have to be merged manually, if
+ a ClamAV update adds or removs options.
+
+---
Old:
clamav-0.99.1.tar.gz
clamav-updateclamconf
New:
clamav-0.99.2.tar.gz
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.zEvQGE/_old 2016-06-25 02:23:05.0 +0200
+++ /var/tmp/diff_new_pack.zEvQGE/_new 2016-06-25 02:23:05.0 +0200
@@ -40,16 +40,15 @@
Summary:Antivirus Toolkit
License:GPL-2.0
Group: Productivity/Security
-Version:0.99.1
+Version:0.99.2
Release:0
Url:http://www.clamav.net
Requires: latex2html-pngicons
Obsoletes: clamav-db < 0.88.3
Requires(pre): %_sbindir/groupadd %_sbindir/useradd %_sbindir/usermod
Requires(pre): /usr/bin/awk /bin/sed /bin/tar
-Source0:
http://downloads.sourceforge.net/clamav/%{name}-%{version}.tar.gz
+Source0:
http://www.clamav.net/downloads/production/%{name}-%{version}.tar.gz
Source11: clamav.keyring
-Source3:clamav-updateclamconf
Source4:clamav-rpmlintrc
Source6:clamav-tmpfiles.conf
Source7:service.clamd
@@ -101,7 +100,6 @@
%install
%makeinstall
-install -m755 %SOURCE3 %buildroot%_sbindir/updateclamconf
install -d -m755 %buildroot/var/lib/clamav
install -d -m755 %buildroot/%_tmpfilesdir
install -m644 %SOURCE6 %buildroot%_tmpfilesdir/clamav.conf
@@ -166,22 +164,6 @@
systemd-tmpfiles --create %_tmpfilesdir/clamav.conf
%service_add_post clamd.service freshclam.service clamav-milter.service
-# merge config files on update
-test "0$1" -lt 2 && exit 0
-umask 022
-for f in /etc/clamd.conf /etc/freshclam.conf /etc/clamav-milter.conf; do
- if test -e $f.rpmnew; then
-echo "Merging $f and $f.rpmnew"
-%_sbindir/updateclamconf -v override="$OVERRIDE" $f $f.rpmnew > $f.tmp
-if test $? = 0; then
- mv $f $f.old
- mv $f.tmp $f
-else
- echo "Merging $f with $f.rpmnew failed"
-fi
- fi
-done
-
%preun
%service_del_preun clamd.service freshclam.s
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2016-06-19 12:52:58 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2016-03-08 10:18:35.0 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2016-06-19 12:52:59.0 +0200 @@ -1,0 +2,5 @@ +Fri Jun 17 10:07:51 UTC 2016 - martin.li...@suse.com + +- Change default C++ std to -std=gnu++98. + +--- Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.g7XKRt/_old 2016-06-19 12:53:00.0 +0200 +++ /var/tmp/diff_new_pack.g7XKRt/_new 2016-06-19 12:53:00.0 +0200 @@ -79,7 +79,7 @@ CFLAGS="-fstack-protector" CXXFLAGS="-fstack-protector" export CFLAGS="%optflags $CFLAGS -fPIE -fno-strict-aliasing" -export CXXFLAGS="%optflags $CXXFLAGS -fPIE -fno-strict-aliasing" +export CXXFLAGS="%optflags $CXXFLAGS -fPIE -fno-strict-aliasing -std=gnu++98" export LDFLAGS="-pie" %if "%_lib" == "lib64" # tomsfastmath needs this for correct operation on 64-bit platforms
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2016-03-08 09:39:15
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new (New)
Package is "clamav"
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2016-01-15
10:41:42.0 +0100
+++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2016-03-08
10:18:35.0 +0100
@@ -1,0 +2,55 @@
+Thu Mar 3 11:30:10 UTC 2016 - ec...@opensuse.org
+
+- Update to version 0.99.1
+ * hwp5.x: fix for streams without names
+ * libclamav: yara: avoid unaliged access to 64bit variable
+ * patch by Mark Allan to add show-progress option to freshclam.
+ * added 'CustomXML' as trigger for likely OOXML
+ * ClamAV 0.99.1 beta1 release.
+ * add scanning options for scanning xml-based documents
+ (MSXML, OOXML, HWPML) and HWP3
+ * add dconfs for XDP, MBR, GPT, APM, OOXML, MSXML, and HWP formats
+ * hwp: scan decompressed data on limits exceeded
+ * Fix for signature name length<3 in .ign & .ign2 CVD files.
+ * Change RTF file magic from '{\rtf' to '{\rt'
+ * zeroing out buffer at allocation to avoid writing uninitialized
+ bytes to a file
+ * adding check for compressed input stream
+ * clean up and boost accuracy to detecting OOXML documents
+ * Fix crash when using pcre statistics due to inconsistent memory
+ management function calls
+ * adding check to verify a valid number of rounds for rijndael aes
+ encryption/decryption
+ * fixing edge case revealed by unit testing
+ * let html be scanned raw when --scan-html=no is in effect.
+ * fix crash due to memory overlay with crafted 7z files.
+ * fixing off by one OOB write in htmlnorm
+ * fixing autoit OOB bufferread
+ * sigtool: adding support for decoding cdb sigs
+ * fix embedded http links.
+ * fix regression crash on sid 1005597703 due to uninitialzed
+ (i.e., garbage initialized) structure.
+ * corrects mso stream prefix value for big endian processors.
+ * ooxml_hwp: add support for filetyping and preclassification
+ * hwpole2: new filetype and handler for hwp embedded ole2 files
+ * fixing possible oob dereference when parsing mbox files
+ * adding explicit wwunpack oob checks
+ * fixing edge case where a null terminator was unintentionally
+ written into an adjacent buffer.
+ * hwpml: use msxml_parser callback scanner for binary data
+ * msxml_parser: add callback-based scanning mechanism
+ * HWPML: added hwpml_keys for hwpml parsing
+ * add HMPML filetype, tab fixes in filetype.c
+ * Hwp3.x: inflate compressed segment and offset tracking
+ * Hwp3.x file header parsing and preclass
+ * pcre: fixed minimum pcre version check
+ * fix detection of libcheck without pkg-config file
+ * add HWP5 filetype tracking to preclassification
+ * add HWP 3.x internal filetypes
+ * add hwp5 contents to preclass set
+ * proper identification of HWP file format
+ * strengthen file typing for OOXML.
+ * normalization of whitelist signatures
+ * github issue #9 - wrong length & offset.
+
+---
Old:
clamav-0.99.tar.gz
New:
clamav-0.99.1.tar.gz
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.Y9gMVi/_old 2016-03-08 10:18:36.0 +0100
+++ /var/tmp/diff_new_pack.Y9gMVi/_new 2016-03-08 10:18:36.0 +0100
@@ -1,7 +1,7 @@
#
# spec file for package clamav
#
-# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2016 SUSE LINUX GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -40,7 +40,7 @@
Summary:Antivirus Toolkit
License:GPL-2.0
Group: Productivity/Security
-Version:0.99
+Version:0.99.1
Release:0
Url:http://www.clamav.net
Requires: latex2html-pngicons
++ clamav-0.99.tar.gz -> clamav-0.99.1.tar.gz ++
/work/SRC/openSUSE:Factory/clamav/clamav-0.99.tar.gz
/work/SRC/openSUSE:Factory/.clamav.new/clamav-0.99.1.tar.gz differ: char 5,
line 1
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2016-01-15 10:41:40 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2015-12-16 17:43:28.0 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2016-01-15 10:41:42.0 +0100 @@ -1,0 +2,5 @@ +Fri Dec 25 19:22:23 UTC 2015 - meiss...@suse.com + +- now can handle regexp using signatures using pcre bsc#960237 + +--- Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.kxpayd/_old 2016-01-15 10:41:43.0 +0100 +++ /var/tmp/diff_new_pack.kxpayd/_new 2016-01-15 10:41:43.0 +0100 @@ -33,6 +33,7 @@ BuildRequires: libbz2-devel BuildRequires: libopenssl-devel BuildRequires: libxml2-devel +BuildRequires: pcre-devel BuildRequires: pwdutils BuildRequires: python-devel %define clamav_check --enable-check
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2015-12-16 17:42:46 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2015-12-06 07:41:05.0 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2015-12-16 17:43:28.0 +0100 @@ -1,0 +2,5 @@ +Thu Dec 3 14:17:02 UTC 2015 - m...@suse.com + +- Version 0.99 fixes bsc#957728. + +--- Other differences: --
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2015-12-06 07:41:03
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new (New)
Package is "clamav"
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2015-07-03
00:02:31.0 +0200
+++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2015-12-06
07:41:05.0 +0100
@@ -1,0 +2,32 @@
+Wed Dec 2 13:23:40 UTC 2015 - p.drou...@gmail.com
+
+- Update to version 0.99
+ * Processing of YARA rules(some limitations- see signatures.pdf).
+ * Support in ClamAV logical signatures for many of the features
+added for YARA, such as Perl Compatible Regular Expressions,
+alternate strings, and YARA string attributes. See signatures.pdf
+for full details.
+ * New and improved on-access scanning for Linux. See the recent blog
+post and clamdoc.pdf for details on the new on-access capabilities.
+ * A new ClamAV API callback function that is invoked when a virus
+is found. This is intended primarily for applications running in
+all-match mode. Any applications using all-match mode must use
+the new callback function to record and report detected viruses.
+ * Configurable default password list to attempt zip file decryption.
+ * TIFF file support.
+ * Upgrade Windows pthread library to 2.9.1.
+ * A new signature target type for designating signatures to run
+against files with unknown file types.
+ * Improved fidelity of the "data loss prevention" heuristic
+algorithm. Code supplied by Bill Parker.
+ * Support for LZMA decompression within Adobe Flash files.
+ * Support for MSO attachments within Microsoft Office 2003 XML files.
+ * A new sigtool option(--ascii-normalize) allowing signature authors
+to more easily generate normalized versions of ascii files.
+ * Windows installation directories changed from \Program Files\Sourcefire\
+ClamAV to \Program Files\ClamAV or \Program Files\ClamAV-x64.
+- Refactor a little the specfile; remove some obsolete conditional
+ macros, as clamav doesn't build for SLE11 anyway
+- Remove clamav-sles9.patch; sles9 is not supported for a while
+
+---
Old:
clamav-0.98.7.tar.gz
clamav-sles9.patch
New:
clamav-0.99.tar.gz
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.1GOPzm/_old 2015-12-06 07:41:07.0 +0100
+++ /var/tmp/diff_new_pack.1GOPzm/_new 2015-12-06 07:41:07.0 +0100
@@ -16,14 +16,11 @@
#
-%{!?_tmpfilesdir:%global _tmpfilesdir /usr/lib/tmpfiles.d}
-
Name: clamav
BuildRequires: ncurses-devel
BuildRequires: sed
BuildRequires: sendmail-devel
%define llvm --disable-llvm
-%if 0%{?suse_version} >= 1010
BuildRequires: bc
BuildRequires: pkgconfig
BuildRequires: zlib-devel
@@ -32,8 +29,6 @@
# Needed for compiling LLVM.
BuildRequires: gcc-c++
%endif
-%endif
-%if 0%{?suse_version} >= 1030
BuildRequires: check-devel
BuildRequires: libbz2-devel
BuildRequires: libopenssl-devel
@@ -41,20 +36,16 @@
BuildRequires: pwdutils
BuildRequires: python-devel
%define clamav_check --enable-check
-%else
-BuildRequires: bzip2
-%define clamav_check --disable-check
-%endif
Summary:Antivirus Toolkit
License:GPL-2.0
Group: Productivity/Security
-Version:0.98.7
+Version:0.99
Release:0
Url:http://www.clamav.net
Requires: latex2html-pngicons
Obsoletes: clamav-db < 0.88.3
-PreReq: %_sbindir/groupadd %_sbindir/useradd %_sbindir/usermod
-PreReq: /usr/bin/awk /bin/sed /bin/tar
+Requires(pre): %_sbindir/groupadd %_sbindir/useradd %_sbindir/usermod
+Requires(pre): /usr/bin/awk /bin/sed /bin/tar
Source0:
http://downloads.sourceforge.net/clamav/%{name}-%{version}.tar.gz
Source11: clamav.keyring
Source3:clamav-updateclamconf
@@ -64,9 +55,7 @@
Source8:service.freshclam
Source9:service.clamav-milter
Patch1: clamav-conf.patch
-Patch2: clamav-sles9.patch
Patch3: clamav-gcc47.patch
-BuildRoot: %{_tmppath}/%{name}-%{version}-build
BuildRequires: systemd
%systemd_requires
@@ -83,33 +72,19 @@
%prep
%setup -q
%patch1 -p1
-%if 0%{?suse_version} == 0910
-# SLES9's libmilter doesn't have smfi_insheader()
-%patch2
-%endif
%patch3 -p1
%build
-%if 0%{?suse_version} >= 1010
CFLAGS="-fstack-protector"
CXXFLAGS="-fstack-protector"
-%endif
-export CFLAGS="%optflags $CFLAGS -fPIE"
-export CXXFLAGS="%optflags $CXXFLAGS -fPIE"
+export CFLAGS="%optflags $CFLAGS -fPIE -fno-strict-aliasing"
+export CXXFLAGS="%optflags $CXX
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2015-07-02 22:50:45 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2015-05-07 08:29:24.0 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2015-07-03 00:02:31.0 +0200 @@ -1,0 +2,6 @@ +Wed Jul 1 12:17:04 UTC 2015 - mplus...@suse.com + +- Make clamd and clamav-milter services depend on freshclam as + they need it + +--- Other differences: -- ++ service.clamav-milter ++ --- /var/tmp/diff_new_pack.s24hZ6/_old 2015-07-03 00:02:32.0 +0200 +++ /var/tmp/diff_new_pack.s24hZ6/_new 2015-07-03 00:02:32.0 +0200 @@ -1,6 +1,7 @@ [Unit] Description=Clamav antivirus milter daemon -After=syslog.target network.target +After=syslog.target network.target freshclam.service +Requires=freshclam.service [Service] Type=forking ++ service.clamd ++ --- /var/tmp/diff_new_pack.s24hZ6/_old 2015-07-03 00:02:32.0 +0200 +++ /var/tmp/diff_new_pack.s24hZ6/_new 2015-07-03 00:02:32.0 +0200 @@ -1,6 +1,7 @@ [Unit] Description=Clamav antivirus Deamon -After=syslog.target network.target +After=syslog.target network.target freshclam.service +Requires=freshclam.service [Service] Type=forking
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2015-05-07 08:29:09
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new (New)
Package is "clamav"
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2015-02-06
22:38:09.0 +0100
+++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2015-05-07
08:29:24.0 +0200
@@ -1,0 +2,33 @@
+Mon May 4 13:39:49 UTC 2015 - m...@suse.com
+
+- Version 0.98.7 fixes several security issues (bsc#929192) and
+ other bug fixes/improvements:
+ * Fix crash in upx decoder with crafted file. Discovered and
+patch supplied by Sebastian Andrzej Siewior. CVE-2015-2170.
+ * Fix infinite loop condition on crafted y0da cryptor
+file. Identified and patch suggested by Sebastian Andrzej
+Siewior. CVE-2015-2221.
+ * Fix crash on crafted petite packed file. Reported and patch
+supplied by Sebastian Andrzej Siewior. CVE-2015-.
+ * Fix an infinite loop condition on a crafted "xz" archive file.
+This was reported by Dimitri Kirchner and Goulven Guiheux.
+CVE-2015-2668.
+ * Apply upstream patch for possible heap overflow in Henry
+Spencer's regex library. CVE-2015-2305.
+ * Fix false negatives on files within iso9660 containers. This
+issue was reported by Minzhuan Gong.
+ * Fix a couple crashes on crafted upack packed file. Identified
+and patches supplied by Sebastian Andrzej Siewior.
+ * Fix a crash during algorithmic detection on crafted PE file.
+Identified and patch supplied by Sebastian Andrzej Siewior.
+ * Fix compilation error after ./configure --disable-pthreads.
+Reported and fix suggested by John E. Krokes.
+ * Fix segfault scanning certain HTML files. Reported with sample
+by Kai Risku.
+ * Improve detections within xar/pkg files.
+ * Improvements to PDF processing: decryption, escape sequence
+handling, and file property collection.
+ * Scanning/analysis of additional Microsoft Office 2003 XML
+format.
+
+---
Old:
clamav-0.98.6.tar.gz
clamav-0.98.6.tar.gz.sig
New:
clamav-0.98.7.tar.gz
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.sFQLql/_old 2015-05-07 08:29:25.0 +0200
+++ /var/tmp/diff_new_pack.sFQLql/_new 2015-05-07 08:29:25.0 +0200
@@ -1,7 +1,7 @@
#
# spec file for package clamav
#
-# Copyright (c) 2015 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -48,7 +48,7 @@
Summary:Antivirus Toolkit
License:GPL-2.0
Group: Productivity/Security
-Version:0.98.6
+Version:0.98.7
Release:0
Url:http://www.clamav.net
Requires: latex2html-pngicons
@@ -56,7 +56,6 @@
PreReq: %_sbindir/groupadd %_sbindir/useradd %_sbindir/usermod
PreReq: /usr/bin/awk /bin/sed /bin/tar
Source0:
http://downloads.sourceforge.net/clamav/%{name}-%{version}.tar.gz
-Source10:
http://downloads.sourceforge.net/clamav/%{name}-%{version}.tar.gz.sig
Source11: clamav.keyring
Source3:clamav-updateclamconf
Source4:clamav-rpmlintrc
++ clamav-0.98.6.tar.gz -> clamav-0.98.7.tar.gz ++
/work/SRC/openSUSE:Factory/clamav/clamav-0.98.6.tar.gz
/work/SRC/openSUSE:Factory/.clamav.new/clamav-0.98.7.tar.gz differ: char 5,
line 1
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2015-02-06 22:38:06
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new (New)
Package is "clamav"
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2015-01-30
20:31:52.0 +0100
+++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2015-02-06
22:38:09.0 +0100
@@ -1,0 +2,14 @@
+Thu Feb 5 10:29:02 UTC 2015 - m...@suse.com
+
+- Version 0.98.6 fixes several security issues:
+ * bsc#916217, CVE-2015-1461: Remote attackers can have
+unspecified impact via Yoda's crypter or mew packer files.
+ * bsc#916214, CVE-2015-1462: Unspecified impact via acrafted upx
+packer file.
+ * bsc#916215, CVE-2015-1463: Remote attackers can cause a denial
+of service via a crafted petite packer file.
+ * bsc#915512, CVE-2014-9328: heap out of bounds condition with
+crafted upack packer files.
+- Obsoletes clamav-soname.patch
+
+---
Old:
clamav-0.98.5.tar.gz
clamav-0.98.5.tar.gz.sig
clamav-soname.patch
New:
clamav-0.98.6.tar.gz
clamav-0.98.6.tar.gz.sig
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.qYPVDN/_old 2015-02-06 22:38:10.0 +0100
+++ /var/tmp/diff_new_pack.qYPVDN/_new 2015-02-06 22:38:10.0 +0100
@@ -48,7 +48,7 @@
Summary:Antivirus Toolkit
License:GPL-2.0
Group: Productivity/Security
-Version:0.98.5
+Version:0.98.6
Release:0
Url:http://www.clamav.net
Requires: latex2html-pngicons
@@ -67,7 +67,6 @@
Patch1: clamav-conf.patch
Patch2: clamav-sles9.patch
Patch3: clamav-gcc47.patch
-Patch4: clamav-soname.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-build
BuildRequires: systemd
%systemd_requires
@@ -90,7 +89,6 @@
%patch2
%endif
%patch3 -p1
-%patch4 -p1
%build
%if 0%{?suse_version} >= 1010
++ clamav-0.98.5.tar.gz -> clamav-0.98.6.tar.gz ++
/work/SRC/openSUSE:Factory/clamav/clamav-0.98.5.tar.gz
/work/SRC/openSUSE:Factory/.clamav.new/clamav-0.98.6.tar.gz differ: char 5,
line 1
--
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2015-01-30 20:31:51
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new (New)
Package is "clamav"
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2015-01-03
22:01:24.0 +0100
+++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2015-01-30
20:31:52.0 +0100
@@ -1,0 +2,16 @@
+Fri Jan 30 15:19:34 UTC 2015 - m...@suse.com
+
+- Don't need sendmail for building clamav-milter anymore,
+ sendmail-devel is enough (bnc#915414).
+
+---
+Fri Jan 23 14:03:18 UTC 2015 - m...@suse.com
+
+- bnc#914505: Config file merging and temp file creation got moved
+ to %pre by mistake. Put them back to %post.
+- Restore the updateclamconf script (bnc#908731).
+- Fix a step backwards in the soname version from 0.98.4 to 0.98.5
+ (https://bugzilla.clamav.net/show_bug.cgi?id=11193,
+ clamav-soname.patch).
+
+---
New:
clamav-soname.patch
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.30oXX1/_old 2015-01-30 20:31:53.0 +0100
+++ /var/tmp/diff_new_pack.30oXX1/_new 2015-01-30 20:31:53.0 +0100
@@ -21,7 +21,6 @@
Name: clamav
BuildRequires: ncurses-devel
BuildRequires: sed
-BuildRequires: sendmail
BuildRequires: sendmail-devel
%define llvm --disable-llvm
%if 0%{?suse_version} >= 1010
@@ -68,6 +67,7 @@
Patch1: clamav-conf.patch
Patch2: clamav-sles9.patch
Patch3: clamav-gcc47.patch
+Patch4: clamav-soname.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-build
BuildRequires: systemd
%systemd_requires
@@ -90,6 +90,7 @@
%patch2
%endif
%patch3 -p1
+%patch4 -p1
%build
%if 0%{?suse_version} >= 1010
@@ -130,6 +131,7 @@
%install
%makeinstall
+install -m755 %SOURCE3 %buildroot%_sbindir/updateclamconf
install -d -m755 %buildroot/var/lib/clamav
install -d -m755 %buildroot/%_tmpfilesdir
install -m644 %SOURCE6 %buildroot%_tmpfilesdir/clamav.conf
@@ -195,8 +197,13 @@
%_sbindir/groupadd -r vscan 2> /dev/null || :
%_sbindir/useradd -r -o -g vscan -u 65 -s /bin/false -c "Vscan account" -d
/var/spool/amavis vscan 2> /dev/null || :
%_sbindir/usermod vscan -g vscan 2> /dev/null || :
+%service_add_pre clamd.service freshclam.service clamav-milter.service
+%post
/sbin/ldconfig
+systemd-tmpfiles --create %_tmpfilesdir/clamav.conf
+%service_add_post clamd.service freshclam.service clamav-milter.service
+
# merge config files on update
test "0$1" -lt 2 && exit 0
umask 022
@@ -212,11 +219,6 @@
fi
fi
done
-systemd-tmpfiles --create %_tmpfilesdir/clamav.conf
-%service_add_pre clamd.service freshclam.service clamav-milter.service
-
-%post
-%service_add_post clamd.service freshclam.service clamav-milter.service
%preun
%service_del_preun clamd.service freshclam.service clamav-milter.service
++ clamav-soname.patch ++
diff --git a/configure b/configure
index 95168bb..c31f831 100755
--- a/configure
+++ b/configure
@@ -5090,7 +5090,7 @@ $as_echo "$ac_cv_safe_to_define___extensions__" >&6; }
VERSION="0.98.5"
LC_CURRENT=7
-LC_REVISION=22
+LC_REVISION=24
LC_AGE=1
LIBCLAMAV_VERSION="$LC_CURRENT":"$LC_REVISION":"$LC_AGE"
diff --git a/m4/reorganization/version.m4 b/m4/reorganization/version.m4
index ea263b2..f4fe8b1 100644
--- a/m4/reorganization/version.m4
+++ b/m4/reorganization/version.m4
@@ -3,7 +3,7 @@ dnl VERSION="devel-`date +%Y%m%d`"
VERSION="0.98.5"
LC_CURRENT=7
-LC_REVISION=22
+LC_REVISION=24
LC_AGE=1
LIBCLAMAV_VERSION="$LC_CURRENT":"$LC_REVISION":"$LC_AGE"
AC_SUBST([LIBCLAMAV_VERSION])
--
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2015-01-03 22:01:06
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new (New)
Package is "clamav"
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2014-11-28
08:44:38.0 +0100
+++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2015-01-03
22:01:24.0 +0100
@@ -1,0 +2,5 @@
+Thu Jan 1 21:34:01 UTC 2015 - meiss...@suse.com
+
+- build with PIE
+
+---
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.GvnLSl/_old 2015-01-03 22:01:26.0 +0100
+++ /var/tmp/diff_new_pack.GvnLSl/_new 2015-01-03 22:01:26.0 +0100
@@ -1,7 +1,7 @@
#
# spec file for package clamav
#
-# Copyright (c) 2014 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2015 SUSE LINUX Products GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -96,8 +96,9 @@
CFLAGS="-fstack-protector"
CXXFLAGS="-fstack-protector"
%endif
-export CFLAGS="%optflags $CFLAGS"
-export CXXFLAGS="%optflags $CXXFLAGS"
+export CFLAGS="%optflags $CFLAGS -fPIE"
+export CXXFLAGS="%optflags $CXXFLAGS -fPIE"
+export LDFLAGS="-pie"
%if 0%{?suse_version} == 0910
# SLES9 needs this macro to enable the quarantine feature in libmilter
CFLAGS="$CFLAGS -D_FFR_QUARANTINE -D_FFR_SMFI_OPENSOCKET"
--
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2014-11-28 08:44:36
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new (New)
Package is "clamav"
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2014-11-10
17:29:16.0 +0100
+++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2014-11-28
08:44:38.0 +0100
@@ -1,0 +2,24 @@
+Wed Nov 19 14:54:58 UTC 2014 - m...@suse.com
+
+- Version 0.98.5:
+ * Support for the XDP file format and extracting, decoding, and
+scanning PDF files within XDP files.
+ * Addition of shared library support for LLVM versions 3.1 - 3.5
+for the purpose of just-in-time(JIT) compilation of ClamAV
+bytecode signatures.
+ * Enhancements to the clambc command line utility to assist
+ClamAV bytecode signature authors by providing introspection
+into compiled bytecode programs.
+ * Resolution of many of the warning messages from ClamAV
+compilation.
+ * Improved detection of malicious PE files.
+ * Security fix for ClamAV crash when using 'clamscan -a'.
+ * Security fix for ClamAV crash when scanning maliciously
+crafted yoda's crypter files (bnc#906077, CVE-2013-6497).
+ * ClamAV 0.98.5 now works with OpenSSL in FIPS compliant
+mode (bnc#904207).
+ * Fix server socket setup code in clamd (bnc#903489).
+- Change updateclamconf to prefer the state of the old config
+ file even for commented-out options (bnc#903719).
+
+---
Old:
clamav-0.98.4.tar.gz
clamav-0.98.4.tar.gz.sig
New:
clamav-0.98.5.tar.gz
clamav-0.98.5.tar.gz.sig
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.iRx4st/_old 2014-11-28 08:44:39.0 +0100
+++ /var/tmp/diff_new_pack.iRx4st/_new 2014-11-28 08:44:39.0 +0100
@@ -49,7 +49,7 @@
Summary:Antivirus Toolkit
License:GPL-2.0
Group: Productivity/Security
-Version:0.98.4
+Version:0.98.5
Release:0
Url:http://www.clamav.net
Requires: latex2html-pngicons
++ clamav-0.98.4.tar.gz -> clamav-0.98.5.tar.gz ++
/work/SRC/openSUSE:Factory/clamav/clamav-0.98.4.tar.gz
/work/SRC/openSUSE:Factory/.clamav.new/clamav-0.98.5.tar.gz differ: char 5,
line 1
++ clamav-updateclamconf ++
--- /var/tmp/diff_new_pack.iRx4st/_old 2014-11-28 08:44:39.0 +0100
+++ /var/tmp/diff_new_pack.iRx4st/_new 2014-11-28 08:44:39.0 +0100
@@ -56,25 +56,28 @@
pass++
}
# collect options from the first file
-pass == 1 && $0 ~ /^[[:space:]]*[^#]/ {
+pass == 1 && $0 ~ /^[[:space:]]*#?[^[:space:]]/ {
if (NF == 1) {
$2 = "yes"
}
-if (!($1 in options)) {
- options[$1] = $0
+# copy $1, so that sub() doesn't modify $0
+o = $1
+sub("^#", "", o)
+if (!(o in options)) {
+ options[o] = $0
}
}
# merge options into the content of the second file
pass == 2 {
# copy $1, so that sub() doesn't modify $0
o = $1
-sub("^#", "", o)
+sub("^[[:space:]]*#", "", o)
if (o in options) {
-if (o == "NotifyClamd" && options[o] ~ / yes$/) {
-sub("^#", "")
-options[o] = $0
+if (options[o] ~ /^[[:space:]]*#/ && $0 ~ /^[[:space:]]*#/) {
+print
+} else {
+print options[o]
}
-print options[o]
delete options[o]
} else {
print
@@ -85,7 +88,7 @@
for (o in options) {
print "\n# These options weren't found in the new config file"
for (o in options) {
- print "# " o, options[o]
+ print "# " options[o]
}
break
}
--
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2014-11-10 17:28:56 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2014-07-04 09:35:03.0 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2014-11-10 17:29:16.0 +0100 @@ -1,0 +2,5 @@ +Sun Nov 09 02:31:00 UTC 2014 - Led + +- fix bashism in pre script + +--- Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.WxB888/_old 2014-11-10 17:29:17.0 +0100 +++ /var/tmp/diff_new_pack.WxB888/_new 2014-11-10 17:29:17.0 +0100 @@ -203,7 +203,7 @@ if test -e $f.rpmnew; then echo "Merging $f and $f.rpmnew" %_sbindir/updateclamconf -v override="$OVERRIDE" $f $f.rpmnew > $f.tmp -if test $? == 0; then +if test $? = 0; then mv $f $f.old mv $f.tmp $f else -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2014-07-04 09:34:55 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2014-06-23 09:23:58.0 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2014-07-04 09:35:03.0 +0200 @@ -1,0 +2,10 @@ +Thu Jun 26 15:25:33 UTC 2014 - m...@suse.com + +- Version 0.98.4: + * Fix infinite loop in clamdscan when clamd is not running. + * Fix buffer underruns when handling multi-part MIME email +attachments. + * Fix onfiguration of OpenSSL on various platforms. + * Fix linking issues with libclamunrar. + +--- Old: clamav-0.98.3.tar.gz clamav-0.98.3.tar.gz.sig New: clamav-0.98.4.tar.gz clamav-0.98.4.tar.gz.sig Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.UzVUJu/_old 2014-07-04 09:35:04.0 +0200 +++ /var/tmp/diff_new_pack.UzVUJu/_new 2014-07-04 09:35:04.0 +0200 @@ -49,7 +49,7 @@ Summary:Antivirus Toolkit License:GPL-2.0 Group: Productivity/Security -Version:0.98.3 +Version:0.98.4 Release:0 Url:http://www.clamav.net Requires: latex2html-pngicons ++ clamav-0.98.3.tar.gz -> clamav-0.98.4.tar.gz ++ /work/SRC/openSUSE:Factory/clamav/clamav-0.98.3.tar.gz /work/SRC/openSUSE:Factory/.clamav.new/clamav-0.98.4.tar.gz differ: char 5, line 1 -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2014-06-23 09:23:52
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new (New)
Package is "clamav"
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2014-05-09
20:30:15.0 +0200
+++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2014-06-23
09:23:58.0 +0200
@@ -1,0 +2,7 @@
+Thu Jun 12 13:30:02 UTC 2014 - m...@suse.com
+
+- Fix dangling symlink in documentation (bnc#872682).
+- Remove init scripts and complete systemd integration.
+- Remove %ghost entry for /var/run/clamav.
+
+---
Old:
clamav-rcclamd
clamav-rcfreshclam
clamav-rcmilter
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.XhY4gk/_old 2014-06-23 09:24:00.0 +0200
+++ /var/tmp/diff_new_pack.XhY4gk/_new 2014-06-23 09:24:00.0 +0200
@@ -56,15 +56,11 @@
Obsoletes: clamav-db < 0.88.3
PreReq: %_sbindir/groupadd %_sbindir/useradd %_sbindir/usermod
PreReq: /usr/bin/awk /bin/sed /bin/tar
-PreReq: %insserv_prereq
Source0:
http://downloads.sourceforge.net/clamav/%{name}-%{version}.tar.gz
Source10:
http://downloads.sourceforge.net/clamav/%{name}-%{version}.tar.gz.sig
Source11: clamav.keyring
-Source1:clamav-rcclamd
-Source2:clamav-rcfreshclam
Source3:clamav-updateclamconf
Source4:clamav-rpmlintrc
-Source5:clamav-rcmilter
Source6:clamav-tmpfiles.conf
Source7:service.clamd
Source8:service.freshclam
@@ -73,9 +69,8 @@
Patch2: clamav-sles9.patch
Patch3: clamav-gcc47.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-build
-%if 0%{?suse_version} >= 1210
BuildRequires: systemd
-%endif
+%systemd_requires
%description
ClamAV is an open source (GPL) antivirus engine designed for detecting
@@ -134,16 +129,7 @@
%install
%makeinstall
-ln -sf docs/html/{clamdoc,index}.html
-mkdir -p %buildroot/etc/init.d
-install -m755 %SOURCE1 %buildroot/etc/init.d/clamd
-ln -s /etc/init.d/clamd %buildroot%_sbindir/rcclamd
-install -m755 %SOURCE2 %buildroot/etc/init.d/freshclam
-ln -s /etc/init.d/freshclam %buildroot%_sbindir/rcfreshclam
-install -m755 %SOURCE5 %buildroot/etc/init.d/clamav-milter
-ln -s /etc/init.d/clamav-milter %buildroot%_sbindir/rcclamav-milter
-install -m755 %SOURCE3 %buildroot%_sbindir/updateclamconf
-install -d -m755 %buildroot/var/{lib,run}/clamav
+install -d -m755 %buildroot/var/lib/clamav
install -d -m755 %buildroot/%_tmpfilesdir
install -m644 %SOURCE6 %buildroot%_tmpfilesdir/clamav.conf
mkdir -p %buildroot/var/spool/amavis
@@ -170,7 +156,7 @@
# use it at all on systems without mandatory systemd
%if 0%{?suse_version} >= 1230
for srvname in clamd freshclam clamav-milter;do
-(export PATH=/sbin:/usr/sbin:$PATH ;ln -sf $(which service)
%{buildroot}/%{_sbindir}/rc${srvname})
+(export PATH=/usr/sbin:/sbin:$PATH ;ln -sf $(which service)
%{buildroot}/%{_sbindir}/rc${srvname})
done
%endif
%endif
@@ -185,7 +171,6 @@
%files
%defattr(-,root,root,-)
%config(noreplace) %_sysconfdir/*.conf
-%config %attr(744,root,root)/etc/init.d/*
#systemd...
%if 0%{?suse_version} >= 1210
%{_unitdir}/clamd.service
@@ -204,17 +189,12 @@
%defattr(-,vscan,vscan)
%dir %attr(750,vscan,vscan) /var/spool/amavis
%dir /var/lib/clamav
-%ghost %dir %attr(755,vscan,vscan) /var/run/clamav
%pre
%_sbindir/groupadd -r vscan 2> /dev/null || :
%_sbindir/useradd -r -o -g vscan -u 65 -s /bin/false -c "Vscan account" -d
/var/spool/amavis vscan 2> /dev/null || :
%_sbindir/usermod vscan -g vscan 2> /dev/null || :
-%post
-%{fillup_and_insserv clamd}
-%{fillup_and_insserv freshclam}
-#%%{fillup_and_insserv clamav-filter}
/sbin/ldconfig
# merge config files on update
test "0$1" -lt 2 && exit 0
@@ -231,16 +211,17 @@
fi
fi
done
-%if 0%{?suse_version} >= 1210
systemd-tmpfiles --create %_tmpfilesdir/clamav.conf
-%endif
+%service_add_pre clamd.service freshclam.service clamav-milter.service
+
+%post
+%service_add_post clamd.service freshclam.service clamav-milter.service
%preun
-%stop_on_removal clamd freshclam clamav-milter
+%service_del_preun clamd.service freshclam.service clamav-milter.service
%postun
/sbin/ldconfig
-%restart_on_update clamd freshclam clamav-milter
-%insserv_cleanup
+%service_del_postun clamd.service freshclam.service clamav-milter.service
%changelog
--
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2014-05-09 20:30:13
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new (New)
Package is "clamav"
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2014-05-02
09:51:39.0 +0200
+++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2014-05-09
20:30:15.0 +0200
@@ -1,0 +2,37 @@
+Thu May 8 15:02:40 UTC 2014 - m...@suse.com
+
+- Version 0.98.3:
+ * Support for common raw disk image formats using 512 byte
+sectors, specifically GPT, APM, and MBR partitioning.
+ * Experimental support of OpenIOC files. ClamAV will now extract
+file hashes from OpenIOC files residing in the signature
+database location, and generate ClamAV hash signatures. ClamAV
+uses no other OpenIOC features at this time. No OpenIOC files
+will be delivered through freshclam. See openioc.org and
+iocbucket.com for additional information about OpenIOC.
+ * All ClamAV sockets (clamd, freshclam, clamav-milter, clamdscan,
+clamdtop) now support IPV6 addresses and configuration
+parameters.
+ * Use OpenSSL file hash functions for improved performance.
+OpenSSL is now prerequisite software for ClamAV 0.98.3.
+ * Improved detection of malware scripts within image files.
+ * Change to circumvent possible denial of service when processing
+icons within specially crafted PE files. Icon limits are now in
+place with corresponding clamd and clamscan configuration
+parameters. This issue was reported by Joxean Koret.
+ * Improvements to the fidelity of the ClamAV pattern matcher, an
+issue reported by Christian Blichmann.
+ * Opt-in collection of statistics. Statistics collected are:
+sizes and MD5 hashes of files, PE file section counts and
+section MD5 hashes, and names and counts of detected
+viruses. Enable statistics collection with the --enable-stats
+clamscan flag or StatsEnabled clamd configuration parameter.
+ * Improvements to ClamAV build process, unit tests, and platform
+support.
+ * Improve error handling in freshclam.
+ * ClamAV 0.98.3 also includes miscellaneous bug fixes and
+documentation improvements.
+- clamav-fan-syscalls.patch isn't needed anymore because ClamAV
+ now uses sys/fanotify.h .
+
+---
Old:
clamav-0.98.1.tar.gz
clamav-0.98.1.tar.gz.sig
clamav-fan-syscalls.patch
New:
clamav-0.98.3.tar.gz
clamav-0.98.3.tar.gz.sig
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.UW6G0m/_old 2014-05-09 20:30:16.0 +0200
+++ /var/tmp/diff_new_pack.UW6G0m/_new 2014-05-09 20:30:16.0 +0200
@@ -37,6 +37,8 @@
%if 0%{?suse_version} >= 1030
BuildRequires: check-devel
BuildRequires: libbz2-devel
+BuildRequires: libopenssl-devel
+BuildRequires: libxml2-devel
BuildRequires: pwdutils
BuildRequires: python-devel
%define clamav_check --enable-check
@@ -47,7 +49,7 @@
Summary:Antivirus Toolkit
License:GPL-2.0
Group: Productivity/Security
-Version:0.98.1
+Version:0.98.3
Release:0
Url:http://www.clamav.net
Requires: latex2html-pngicons
@@ -70,7 +72,6 @@
Patch1: clamav-conf.patch
Patch2: clamav-sles9.patch
Patch3: clamav-gcc47.patch
-Patch4: clamav-fan-syscalls.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-build
%if 0%{?suse_version} >= 1210
BuildRequires: systemd
@@ -94,7 +95,6 @@
%patch2
%endif
%patch3 -p1
-%patch4 -p1
%build
%if 0%{?suse_version} >= 1010
++ clamav-0.98.1.tar.gz -> clamav-0.98.3.tar.gz ++
/work/SRC/openSUSE:Factory/clamav/clamav-0.98.1.tar.gz
/work/SRC/openSUSE:Factory/.clamav.new/clamav-0.98.3.tar.gz differ: char 5,
line 1
++ clamav-conf.patch ++
--- /var/tmp/diff_new_pack.UW6G0m/_old 2014-05-09 20:30:16.0 +0200
+++ /var/tmp/diff_new_pack.UW6G0m/_new 2014-05-09 20:30:16.0 +0200
@@ -1,7 +1,7 @@
-Index: clamav-0.98.1/etc/clamav-milter.conf.sample
+Index: clamav-0.98.3/etc/clamav-milter.conf.sample
===
clamav-0.98.1.orig/etc/clamav-milter.conf.sample 2014-01-13
18:02:18.0 +0100
-+++ clamav-0.98.1/etc/clamav-milter.conf.sample2014-01-24
16:26:53.379053521 +0100
+--- clamav-0.98.3.orig/etc/clamav-milter.conf.sample 2014-05-06
20:39:56.0 +0200
clamav-0.98.3/etc/clamav-milter.conf.sample2014-05-08
16:42:14.865949467 +0200
@@ -2,10 +2,6 @@
## Example config file for clamav-milter
##
@@ -66,10 +66,10 @@
# Enable
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2014-05-02 09:51:38
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new (New)
Package is "clamav"
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2014-03-30
12:10:06.0 +0200
+++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2014-05-02
09:51:39.0 +0200
@@ -1,0 +2,7 @@
+Wed Apr 23 10:59:43 UTC 2014 - dmuel...@suse.com
+
+- do not disable security checks in configure. That would be
+ insecure
+- use DFP_64bit also for aarch64
+
+---
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.upgLIv/_old 2014-05-02 09:51:41.0 +0200
+++ /var/tmp/diff_new_pack.upgLIv/_new 2014-05-02 09:51:41.0 +0200
@@ -107,7 +107,7 @@
# SLES9 needs this macro to enable the quarantine feature in libmilter
CFLAGS="$CFLAGS -D_FFR_QUARANTINE -D_FFR_SMFI_OPENSOCKET"
%endif
-%ifarch ppc64 ppc64le
+%if "%_lib" == "lib64"
# tomsfastmath needs this for correct operation on 64-bit platforms
CFLAGS="$CFLAGS -DFP_64BIT"
%endif
@@ -124,7 +124,9 @@
--enable-milter \
%clamav_check \
%llvm \
+%if 0%{?suse_version} == 0910
--disable-zlib-vcheck \
+%endif
--enable-clamdtop \
--disable-timestamps
--
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2014-03-30 07:58:39
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new (New)
Package is "clamav"
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2014-02-22
18:07:15.0 +0100
+++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2014-03-30
12:10:06.0 +0200
@@ -1,0 +2,5 @@
+Thu Mar 13 15:41:18 UTC 2014 - bo...@steki.net
+
+- initial systemd support unit files
+
+---
New:
service.clamav-milter
service.clamd
service.freshclam
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.SZGPvX/_old 2014-03-30 12:10:08.0 +0200
+++ /var/tmp/diff_new_pack.SZGPvX/_new 2014-03-30 12:10:08.0 +0200
@@ -64,11 +64,17 @@
Source4:clamav-rpmlintrc
Source5:clamav-rcmilter
Source6:clamav-tmpfiles.conf
+Source7:service.clamd
+Source8:service.freshclam
+Source9:service.clamav-milter
Patch1: clamav-conf.patch
Patch2: clamav-sles9.patch
Patch3: clamav-gcc47.patch
Patch4: clamav-fan-syscalls.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-build
+%if 0%{?suse_version} >= 1210
+BuildRequires: systemd
+%endif
%description
ClamAV is an open source (GPL) antivirus engine designed for detecting
@@ -152,6 +158,21 @@
mv freshclam.conf.sample freshclam.conf
popd
+# Systemd...
+%if 0%{?suse_version} >= 1210
+install -d -m 0755 %buildroot/%{_unitdir}
+install -m 0644 %{SOURCE7} %buildroot/%{_unitdir}/clamd.service
+install -m 0644 %{SOURCE8} %buildroot/%{_unitdir}/freshclam.service
+install -m 0644 %{SOURCE9} %buildroot/%{_unitdir}/clamav-milter.service
+# this is broken if system does not have systemd so don't
+# use it at all on systems without mandatory systemd
+%if 0%{?suse_version} >= 1230
+for srvname in clamd freshclam clamav-milter;do
+(export PATH=/sbin:/usr/sbin:$PATH ;ln -sf $(which service)
%{buildroot}/%{_sbindir}/rc${srvname})
+done
+%endif
+%endif
+
%check
# regression tests
@@ -163,6 +184,12 @@
%defattr(-,root,root,-)
%config(noreplace) %_sysconfdir/*.conf
%config %attr(744,root,root)/etc/init.d/*
+#systemd...
+%if 0%{?suse_version} >= 1210
+%{_unitdir}/clamd.service
+%{_unitdir}/freshclam.service
+%{_unitdir}/clamav-milter.service
+%endif
%_tmpfilesdir
%doc AUTHORS BUGS ChangeLog COPYING FAQ NEWS README UPGRADE
%doc docs/*.pdf docs/html
@@ -183,6 +210,9 @@
%_sbindir/usermod vscan -g vscan 2> /dev/null || :
%post
+%{fillup_and_insserv clamd}
+%{fillup_and_insserv freshclam}
+#%%{fillup_and_insserv clamav-filter}
/sbin/ldconfig
# merge config files on update
test "0$1" -lt 2 && exit 0
@@ -199,14 +229,16 @@
fi
fi
done
+%if 0%{?suse_version} >= 1210
systemd-tmpfiles --create %_tmpfilesdir/clamav.conf
+%endif
%preun
-%stop_on_removal clamd freshclam
+%stop_on_removal clamd freshclam clamav-milter
%postun
/sbin/ldconfig
-%restart_on_update clamd freshclam
+%restart_on_update clamd freshclam clamav-milter
%insserv_cleanup
%changelog
++ service.clamav-milter ++
[Unit]
Description=Clamav antivirus milter daemon
After=syslog.target network.target
[Service]
Type=forking
ExecStart=/usr/sbin/clamav-milter
; it will switch to vscan user
;User=vscan
;Group=vscan
;PrivateTmp=yes
[Install]
WantedBy=multi-user.target
++ service.clamd ++
[Unit]
Description=Clamav antivirus Deamon
After=syslog.target network.target
[Service]
Type=forking
ExecStart=/usr/sbin/clamd
;User=vscan
;Group=vscan
;PrivateTmp=yes
[Install]
WantedBy=multi-user.target
++ service.freshclam ++
[Unit]
Description=Freshclam virus definitions downloader
After=syslog.target network.target
[Service]
Type=forking
ExecStart=/usr/bin/freshclam -d
;User=vscan
;Group=vscan
;PrivateTmp=yes
[Install]
WantedBy=multi-user.target
--
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2014-02-22 18:07:14
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new (New)
Package is "clamav"
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2014-02-06
06:47:15.0 +0100
+++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2014-02-22
18:07:15.0 +0100
@@ -1,0 +2,5 @@
+Wed Feb 19 07:02:06 UTC 2014 - meiss...@suse.com
+
+- add fanotify systemcalls for power, s390 and arm
+
+---
@@ -9 +14 @@
-- Version 0.98.1:
+- Version 0.98.1 (bnc#841815):
@@ -23,0 +29 @@
+- Rediff clamav-conf.patch
New:
clamav-fan-syscalls.patch
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.PPyhy8/_old 2014-02-22 18:07:16.0 +0100
+++ /var/tmp/diff_new_pack.PPyhy8/_new 2014-02-22 18:07:16.0 +0100
@@ -57,6 +57,7 @@
PreReq: %insserv_prereq
Source0:
http://downloads.sourceforge.net/clamav/%{name}-%{version}.tar.gz
Source10:
http://downloads.sourceforge.net/clamav/%{name}-%{version}.tar.gz.sig
+Source11: clamav.keyring
Source1:clamav-rcclamd
Source2:clamav-rcfreshclam
Source3:clamav-updateclamconf
@@ -66,6 +67,7 @@
Patch1: clamav-conf.patch
Patch2: clamav-sles9.patch
Patch3: clamav-gcc47.patch
+Patch4: clamav-fan-syscalls.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-build
%description
@@ -86,6 +88,7 @@
%patch2
%endif
%patch3 -p1
+%patch4 -p1
%build
%if 0%{?suse_version} >= 1010
@@ -115,9 +118,6 @@
--enable-milter \
%clamav_check \
%llvm \
-%ifnarch %ix86 x86_64
- --disable-fanotify \
-%endif
--disable-zlib-vcheck \
--enable-clamdtop \
--disable-timestamps
++ clamav-fan-syscalls.patch ++
Index: clamav-0.98.1/clamd/fan-syscalllib.h
===
--- clamav-0.98.1.orig/clamd/fan-syscalllib.h
+++ clamav-0.98.1/clamd/fan-syscalllib.h
@@ -10,6 +10,16 @@
#elif defined(__i386__)
# define __NR_fanotify_init338
# define __NR_fanotify_mark339
+#elif defined(__s390__) || defined(__s390x__)
+# define __NR_fanotify_init 332
+# define __NR_fanotify_mark 333
+#elif defined(__powerpc__) || defined(__powerpc64__)
+# define __NR_fanotify_init 323
+# define __NR_fanotify_mark 324
+#elif defined(__arm__) || defined(__aarch64__)
+/* check ... base offset 0 */
+# define __NR_fanotify_init 367
+# define __NR_fanotify_mark 368
#else
# error "System call numbers not defined for this architecture"
#endif
--
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2014-02-06 06:47:14
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new (New)
Package is "clamav"
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2014-02-01
08:43:19.0 +0100
+++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2014-02-06
06:47:15.0 +0100
@@ -0,0 +1,6 @@
+---
+Tue Feb 4 14:19:01 UTC 2014 - m...@suse.com
+
+- Improve handling of /var/run/clamav.
+
+---
@@ -18,0 +25 @@
+---
@@ -24,0 +32 @@
+---
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.donEAJ/_old 2014-02-06 06:47:16.0 +0100
+++ /var/tmp/diff_new_pack.donEAJ/_new 2014-02-06 06:47:16.0 +0100
@@ -16,6 +16,8 @@
#
+%{!?_tmpfilesdir:%global _tmpfilesdir /usr/lib/tmpfiles.d}
+
Name: clamav
BuildRequires: ncurses-devel
BuildRequires: sed
@@ -134,8 +136,8 @@
ln -s /etc/init.d/clamav-milter %buildroot%_sbindir/rcclamav-milter
install -m755 %SOURCE3 %buildroot%_sbindir/updateclamconf
install -d -m755 %buildroot/var/{lib,run}/clamav
-install -d -m755 %buildroot/usr/lib/tmpfiles.d
-install -m644 %SOURCE6 %buildroot/usr/lib/tmpfiles.d/clamav.conf
+install -d -m755 %buildroot/%_tmpfilesdir
+install -m644 %SOURCE6 %buildroot%_tmpfilesdir/clamav.conf
mkdir -p %buildroot/var/spool/amavis
%if 0%{?suse_version} > 1020
rm %buildroot/%_libdir/*.la
@@ -161,8 +163,7 @@
%defattr(-,root,root,-)
%config(noreplace) %_sysconfdir/*.conf
%config %attr(744,root,root)/etc/init.d/*
-%dir /usr/lib/tmpfiles.d
-/usr/lib/tmpfiles.d/clamav.conf
+%_tmpfilesdir
%doc AUTHORS BUGS ChangeLog COPYING FAQ NEWS README UPGRADE
%doc docs/*.pdf docs/html
%doc %_mandir/*/*
@@ -174,7 +175,7 @@
%defattr(-,vscan,vscan)
%dir %attr(750,vscan,vscan) /var/spool/amavis
%dir /var/lib/clamav
-%dir %attr(755,vscan,vscan) /var/run/clamav
+%ghost %dir %attr(755,vscan,vscan) /var/run/clamav
%pre
%_sbindir/groupadd -r vscan 2> /dev/null || :
@@ -198,6 +199,7 @@
fi
fi
done
+systemd-tmpfiles --create %_tmpfilesdir/clamav.conf
%preun
%stop_on_removal clamd freshclam
--
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2014-02-01 08:43:18 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2013-12-30 09:49:52.0 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2014-02-01 08:43:19.0 +0100 @@ -1 +1,18 @@ +Fri Jan 24 15:40:03 UTC 2014 - m...@suse.com + +- Version 0.98.1: + * remove copy of wxWidgets (halves the size of the tarball). + * Decompression and scanning of files in "Xz" compression +format. + * Extraction, decompression, and scanning of files within Apple +Disk Image (DMG) format. + * Extraction, decompression, and scanning of files within +Extensible Archive (XAR) format. XAR format is commonly used +for software packaging, such as PKG and RPM, as well as +general archival. + * Improvements and fixes to extraction and scanning of ole +formats. + * Option to force all scanned data to disk. + * Various improvements to ClamAV configuration, support of third +party libraries, and unit tests. + @@ -8 +24,0 @@ Old: clamav-0.98.tar.gz clamav-0.98.tar.gz.sig New: clamav-0.98.1.tar.gz clamav-0.98.1.tar.gz.sig Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.GN1tW4/_old 2014-02-01 08:43:20.0 +0100 +++ /var/tmp/diff_new_pack.GN1tW4/_new 2014-02-01 08:43:20.0 +0100 @@ -1,7 +1,7 @@ # # spec file for package clamav # -# Copyright (c) 2013 SUSE LINUX Products GmbH, Nuernberg, Germany. +# Copyright (c) 2014 SUSE LINUX Products GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -45,7 +45,7 @@ Summary:Antivirus Toolkit License:GPL-2.0 Group: Productivity/Security -Version:0.98 +Version:0.98.1 Release:0 Url:http://www.clamav.net Requires: latex2html-pngicons ++ clamav-0.98.tar.gz -> clamav-0.98.1.tar.gz ++ /work/SRC/openSUSE:Factory/clamav/clamav-0.98.tar.gz /work/SRC/openSUSE:Factory/.clamav.new/clamav-0.98.1.tar.gz differ: char 5, line 1 ++ clamav-conf.patch ++ --- /var/tmp/diff_new_pack.GN1tW4/_old 2014-02-01 08:43:20.0 +0100 +++ /var/tmp/diff_new_pack.GN1tW4/_new 2014-02-01 08:43:20.0 +0100 @@ -1,6 +1,7 @@ -diff -burNE clamav-0.98_orig/etc/clamav-milter.conf.sample clamav-0.98/etc/clamav-milter.conf.sample clamav-0.98_orig/etc/clamav-milter.conf.sample 2013-09-27 20:10:07.805516478 +0200 -+++ clamav-0.98/etc/clamav-milter.conf.sample 2013-09-27 20:10:23.890676403 +0200 +Index: clamav-0.98.1/etc/clamav-milter.conf.sample +=== +--- clamav-0.98.1.orig/etc/clamav-milter.conf.sample 2014-01-13 18:02:18.0 +0100 clamav-0.98.1/etc/clamav-milter.conf.sample2014-01-24 16:26:53.379053521 +0100 @@ -2,10 +2,6 @@ ## Example config file for clamav-milter ## @@ -65,9 +66,10 @@ # Enable verbose logging. # -diff -burNE clamav-0.98_orig/etc/clamd.conf.sample clamav-0.98/etc/clamd.conf.sample clamav-0.98_orig/etc/clamd.conf.sample 2013-09-27 20:10:07.805516478 +0200 -+++ clamav-0.98/etc/clamd.conf.sample 2013-09-27 20:10:23.891676413 +0200 +Index: clamav-0.98.1/etc/clamd.conf.sample +=== +--- clamav-0.98.1.orig/etc/clamd.conf.sample 2014-01-13 18:02:34.0 +0100 clamav-0.98.1/etc/clamd.conf.sample2014-01-24 16:26:53.380053533 +0100 @@ -1,12 +1,8 @@ ## -## Example config file for the Clam AV daemon @@ -142,19 +144,20 @@ # Initialize supplementary group access (clamd must be started by root). # Default: no @@ -501,6 +497,10 @@ - # Enable Clamuko. Dazuko must be configured and running. Clamuko supports - # both Dazuko (/dev/dazuko) and DazukoFS (/dev/dazukofs.ctrl). DazukoFS - # is the preferred option. For more information please visit www.dazuko.org + ## + ## On-access Scan Settings + ## +# +# When enabling this, you most probably have to set "User root" above, +# so that clamav can access the files to be scanned. +# - # Default: no - #ClamukoScanOnAccess yes -diff -burNE clamav-0.98_orig/etc/freshclam.conf.sample clamav-0.98/etc/freshclam.conf.sample clamav-0.98_orig/etc/freshclam.conf.sample 2013-09-27 20:10:07.805516478 +0
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2013-12-30 09:49:51 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2013-09-30 17:51:30.0 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2013-12-30 09:49:52.0 +0100 @@ -1,0 +2,7 @@ +Sun Dec 15 16:03:46 UTC 2013 - uweig...@de.ibm.com + +- fix build failures on ppc64le: + * fanotify is only supported on x86 platforms + * building tomsfastmath on (non-x86) 64-bit platforms requires -DFP_64BIT + +--- Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.DC4Jiq/_old 2013-12-30 09:49:53.0 +0100 +++ /var/tmp/diff_new_pack.DC4Jiq/_new 2013-12-30 09:49:53.0 +0100 @@ -96,6 +96,10 @@ # SLES9 needs this macro to enable the quarantine feature in libmilter CFLAGS="$CFLAGS -D_FFR_QUARANTINE -D_FFR_SMFI_OPENSOCKET" %endif +%ifarch ppc64 ppc64le +# tomsfastmath needs this for correct operation on 64-bit platforms +CFLAGS="$CFLAGS -DFP_64BIT" +%endif ./configure \ --prefix=%_prefix \ --libdir=%_libdir \ @@ -109,6 +113,9 @@ --enable-milter \ %clamav_check \ %llvm \ +%ifnarch %ix86 x86_64 + --disable-fanotify \ +%endif --disable-zlib-vcheck \ --enable-clamdtop \ --disable-timestamps -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2013-09-30 17:51:28
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new (New)
Package is "clamav"
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2013-05-02
12:34:02.0 +0200
+++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2013-09-30
17:51:30.0 +0200
@@ -1,0 +2,13 @@
+Sat Sep 28 07:35:34 UTC 2013 - meiss...@suse.com
+
+- Version 0.98 (bnc#841815)
+ * code quality fixes on libclamav, clamd, sigtool, clamav-milter, clamconf
and clamdtop
+ * code quality fixes on libclamav, libclamunrar and freshclam
+ * valgrind suppression rules for dl_catch_error complaints
+ * bb #8385: PDF ASCII85Decode zero-length fix
+ * libclamav: SCAN_ALL mode fixes
+ * bb #7436: elf64 header early exit
+ * iso9660: iso_scan_file rewrite
+- use source urls, add gpg signature retrieval.
+
+---
Old:
clamav-0.97.8.tar.gz
New:
clamav-0.98.tar.gz
clamav-0.98.tar.gz.sig
clamav.keyring
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.sy7HWm/_old 2013-09-30 17:51:34.0 +0200
+++ /var/tmp/diff_new_pack.sy7HWm/_new 2013-09-30 17:51:34.0 +0200
@@ -45,7 +45,7 @@
Summary:Antivirus Toolkit
License:GPL-2.0
Group: Productivity/Security
-Version:0.97.8
+Version:0.98
Release:0
Url:http://www.clamav.net
Requires: latex2html-pngicons
@@ -53,7 +53,8 @@
PreReq: %_sbindir/groupadd %_sbindir/useradd %_sbindir/usermod
PreReq: /usr/bin/awk /bin/sed /bin/tar
PreReq: %insserv_prereq
-Source0:%{name}-%{version}.tar.gz
+Source0:
http://downloads.sourceforge.net/clamav/%{name}-%{version}.tar.gz
+Source10:
http://downloads.sourceforge.net/clamav/%{name}-%{version}.tar.gz.sig
Source1:clamav-rcclamd
Source2:clamav-rcfreshclam
Source3:clamav-updateclamconf
@@ -77,7 +78,7 @@
%prep
%setup -q
-%patch1
+%patch1 -p1
%if 0%{?suse_version} == 0910
# SLES9's libmilter doesn't have smfi_insheader()
%patch2
@@ -112,7 +113,7 @@
--enable-clamdtop \
--disable-timestamps
-make %{?jobs:-j%jobs}
+make V=1 %{?jobs:-j%jobs}
%install
%makeinstall
@@ -135,9 +136,16 @@
# Remove bogus dependencies from libclamav.pc
sed -i 's/^Libs: .*/Libs: -lclamav/' %buildroot%_libdir/pkgconfig/libclamav.pc
+# fix the new config file names
+pushd %buildroot/etc
+mv clamd.conf.sample clamd.conf
+mv clamav-milter.conf.sample clamav-milter.conf
+mv freshclam.conf.sample freshclam.conf
+popd
+
%check
-# regressoin tests
+# regression tests
%if !0%{?qemu_user_space_build:1}
VALGRIND_GENSUP=1 make check
%endif
++ clamav-0.97.8.tar.gz -> clamav-0.98.tar.gz ++
/work/SRC/openSUSE:Factory/clamav/clamav-0.97.8.tar.gz
/work/SRC/openSUSE:Factory/.clamav.new/clamav-0.98.tar.gz differ: char 5, line 1
++ clamav-conf.patch ++
--- /var/tmp/diff_new_pack.sy7HWm/_old 2013-09-30 17:51:34.0 +0200
+++ /var/tmp/diff_new_pack.sy7HWm/_new 2013-09-30 17:51:34.0 +0200
@@ -1,7 +1,6 @@
-Index: etc/clamav-milter.conf
-===
etc/clamav-milter.conf.orig2012-06-12 14:36:05.0 +0100
-+++ etc/clamav-milter.conf 2012-06-18 22:49:23.0 +0100
+diff -burNE clamav-0.98_orig/etc/clamav-milter.conf.sample
clamav-0.98/etc/clamav-milter.conf.sample
+--- clamav-0.98_orig/etc/clamav-milter.conf.sample 2013-09-27
20:10:07.805516478 +0200
clamav-0.98/etc/clamav-milter.conf.sample 2013-09-27 20:10:23.890676403
+0200
@@ -2,10 +2,6 @@
## Example config file for clamav-milter
##
@@ -13,7 +12,7 @@
##
## Main options
##
-@@ -17,8 +13,7 @@ Example
+@@ -17,8 +13,7 @@
# inet6:port@[hostname|ip-address] - to specify an ipv6 socket
#
# Default: no default
@@ -23,7 +22,7 @@
# Define the group ownership for the (unix) milter socket.
# Default: disabled (the primary group of the user running clamd)
-@@ -36,7 +31,7 @@ Example
+@@ -36,7 +31,7 @@
# Run as another user (clamav-milter must be started by root for this option
to work)
#
# Default: unset (don't drop privileges)
@@ -32,7 +31,7 @@
# Initialize supplementary group access (clamav-milter must be started by
root).
#
-@@ -64,7 +59,7 @@ Example
+@@ -64,7 +59,7 @@
# daemon (main thread).
#
# Default: disabled
@@ -41,7 +40,7 @@
# Optional path to the global temporary directory.
# Default: system specific (usually /tmp or /var/tmp).
-@@ -90,7 +85,7 @@ Example
+@@ -90,7 +85,7
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2013-05-02 12:34:00 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2013-03-21 10:37:13.0 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2013-05-02 12:34:02.0 +0200 @@ -1,0 +2,11 @@ +Mon Apr 29 14:32:07 UTC 2013 - meiss...@suse.com + +- mirror the amavisd-new change of /var/spool/amavis bnc#663726 + +--- +Sun Apr 28 08:08:14 UTC 2013 - ec...@schirra.net + +- Version 0.97.8 (bnc#816865) + * libclamav: Bugs reported by Felix Groebert of the Google Security Team + +--- Old: clamav-0.97.7.tar.gz New: clamav-0.97.8.tar.gz Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.sC4REo/_old 2013-05-02 12:34:05.0 +0200 +++ /var/tmp/diff_new_pack.sC4REo/_new 2013-05-02 12:34:05.0 +0200 @@ -45,7 +45,7 @@ Summary:Antivirus Toolkit License:GPL-2.0 Group: Productivity/Security -Version:0.97.7 +Version:0.97.8 Release:0 Url:http://www.clamav.net Requires: latex2html-pngicons @@ -157,7 +157,7 @@ %_libdir/lib* %_libdir/pkgconfig/libclamav.pc %defattr(-,vscan,vscan) -%dir %attr(700,vscan,root) /var/spool/amavis +%dir %attr(750,vscan,vscan) /var/spool/amavis %dir /var/lib/clamav %dir %attr(755,vscan,vscan) /var/run/clamav ++ clamav-0.97.7.tar.gz -> clamav-0.97.8.tar.gz ++ /work/SRC/openSUSE:Factory/clamav/clamav-0.97.7.tar.gz /work/SRC/openSUSE:Factory/.clamav.new/clamav-0.97.8.tar.gz differ: char 5, line 1 -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2013-03-21 10:37:11 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav", Maintainer is "m...@suse.com" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2013-01-17 09:37:24.0 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2013-03-21 10:37:13.0 +0100 @@ -1,0 +2,6 @@ +Wed Mar 20 17:32:19 UTC 2013 - m...@suse.com + +- Version 0.97.7 (bnc#809945) + * several hardening fixes. + +--- Old: clamav-0.97.6.tar.gz New: clamav-0.97.7.tar.gz Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.HxUtLU/_old 2013-03-21 10:37:16.0 +0100 +++ /var/tmp/diff_new_pack.HxUtLU/_new 2013-03-21 10:37:16.0 +0100 @@ -45,7 +45,7 @@ Summary:Antivirus Toolkit License:GPL-2.0 Group: Productivity/Security -Version:0.97.6 +Version:0.97.7 Release:0 Url:http://www.clamav.net Requires: latex2html-pngicons ++ clamav-0.97.6.tar.gz -> clamav-0.97.7.tar.gz ++ /work/SRC/openSUSE:Factory/clamav/clamav-0.97.6.tar.gz /work/SRC/openSUSE:Factory/.clamav.new/clamav-0.97.7.tar.gz differ: char 5, line 1 -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2013-01-17 09:37:23
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new (New)
Package is "clamav", Maintainer is "m...@suse.com"
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2013-01-07
15:01:34.0 +0100
+++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2013-01-17
09:37:24.0 +0100
@@ -1,0 +2,18 @@
+Mon Jan 14 14:42:03 UTC 2013 - mmeis...@suse.com
+
+- pids and sockets of clamd and freshclam now reside in /var/run
+ instead of /var/lib (bnc#770395)
+- modified pid path in clamd's, freshclam's and clamav-milter's
+ init scripts
+
+---
+Mon Jan 7 13:40:31 UTC 2013 - m...@suse.com
+
+- Remove the clamav-db subpackage. ClamAV installations should
+ fetch current versions of the virus database directly from
+ upstream. If there really is need for a packaged database, it
+ should be in a separate package.
+- Remove scripts do deal with very old (before 2008) config and
+ database file formats.
+
+---
Old:
daily-16364.cvd
main-54.cvd
New:
clamav-tmpfiles.conf
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.rUE9z7/_old 2013-01-17 09:37:27.0 +0100
+++ /var/tmp/diff_new_pack.rUE9z7/_new 2013-01-17 09:37:27.0 +0100
@@ -45,7 +45,6 @@
Summary:Antivirus Toolkit
License:GPL-2.0
Group: Productivity/Security
-# version updates should also fetch the current cvd files for the db subpackage
Version:0.97.6
Release:0
Url:http://www.clamav.net
@@ -60,12 +59,7 @@
Source3:clamav-updateclamconf
Source4:clamav-rpmlintrc
Source5:clamav-rcmilter
-# http://db.local.clamav.net/main.cvd
-%define main_cvd_version 54
-Source6:main-%{main_cvd_version}.cvd
-# http://db.local.clamav.net/daily.cvd
-%define daily_cvd_version 16364
-Source7:daily-%{daily_cvd_version}.cvd
+Source6:clamav-tmpfiles.conf
Patch1: clamav-conf.patch
Patch2: clamav-sles9.patch
Patch3: clamav-gcc47.patch
@@ -81,29 +75,6 @@
format detection mechanisms, file unpacking support, archive support,
and multiple signature languages for detecting threats.
-%package db
-Summary:Virus Database for ClamAV
-License:BSD-3-Clause and GPL-2.0+ and LGPL-2.1+ and SUSE-Public-Domain
and MIT
-Group: Productivity/Security
-PreReq: clamav sed /bin/cp /usr/bin/awk /bin/rm
-%if 0%{?suse_version} > 1120
-BuildArch: noarch
-%endif
-Version:%{version}
-Release:%{main_cvd_version}.%{daily_cvd_version}..
-
-%description db
-This package contains a snapshot of the virus description database for
-ClamAV. It is not needed if you use freshclam to keep your virus
-database up to date.
-
-
-
-Authors:
-
-Tomasz Kojm
-Nigel Horne
-
%prep
%setup -q
%patch1
@@ -154,15 +125,9 @@
install -m755 %SOURCE5 %buildroot/etc/init.d/clamav-milter
ln -s /etc/init.d/clamav-milter %buildroot%_sbindir/rcclamav-milter
install -m755 %SOURCE3 %buildroot%_sbindir/updateclamconf
-install -d -m755 %buildroot/var/lib/clamav
-touch %buildroot/var/lib/clamav/{clamd,freshclam}.pid
-install -m755 %SOURCE6 %buildroot/var/lib/clamav/main.cvd
-install -m755 %SOURCE7 %buildroot/var/lib/clamav/daily.cvd
-for f in %buildroot/var/lib/clamav/*.cvd; do
- mv $f $f.dist
- touch $f
-done
-touch %buildroot/var/lib/clamav/{main,daily}.cld
+install -d -m755 %buildroot/var/{lib,run}/clamav
+install -d -m755 %buildroot/usr/lib/tmpfiles.d
+install -m644 %SOURCE6 %buildroot/usr/lib/tmpfiles.d/clamav.conf
mkdir -p %buildroot/var/spool/amavis
%if 0%{?suse_version} > 1020
rm %buildroot/%_libdir/*.la
@@ -172,14 +137,6 @@
%check
-# signature check using installed clamav sigtool
-LD_LIBRARY_PATH="%buildroot%{_libdir}" "%buildroot%{_bindir}/sigtool" --info
%buildroot/var/lib/clamav/main.cvd.dist
-LD_LIBRARY_PATH="%buildroot%{_libdir}" "%buildroot%{_bindir}/sigtool" --info
%buildroot/var/lib/clamav/daily.cvd.dist
-
-# Check that cvd version matches versions declared in package
-test "$(head -c512 %SOURCE6 | cut -d: -f3)" = "%{main_cvd_version}"
-test "$(head -c512 %SOURCE7 | cut -d: -f3)" = "%{daily_cvd_version}"
-
# regressoin tests
%if !0%{?qemu_user_space_build:1}
VALGRIND_GENSUP=1 make check
@@ -189,6 +146,8 @@
%defattr(-,root,root,-)
%config(noreplace) %_sysconfdir/*.conf
%config %attr(744,root,root)/etc/init.d/*
+%dir /usr/lib/tmpfiles.d
+/usr/lib/tmpfiles.d/clamav.conf
%doc AU
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2013-01-07 15:01:33
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new (New)
Package is "clamav", Maintainer is "m...@suse.com"
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2012-10-07
18:54:35.0 +0200
+++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2013-01-07
15:01:34.0 +0100
@@ -1,0 +2,8 @@
+Sat Jan 5 01:53:56 UTC 2013 - andreas.stie...@gmx.de
+
+- update daily.cvd to ver. 16364
+ released on 04 Jan 2013 20:37 :0500 (sig count: 492103)
+- add cvd signature verification to %check section
+- make Release field of clamav-db package contain cvd file versions
+
+---
Old:
daily-15055.cvd
New:
daily-16364.cvd
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.sCGgXd/_old 2013-01-07 15:01:38.0 +0100
+++ /var/tmp/diff_new_pack.sCGgXd/_new 2013-01-07 15:01:38.0 +0100
@@ -1,7 +1,7 @@
#
# spec file for package clamav
#
-# Copyright (c) 2012 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2013 SUSE LINUX Products GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -45,6 +45,7 @@
Summary:Antivirus Toolkit
License:GPL-2.0
Group: Productivity/Security
+# version updates should also fetch the current cvd files for the db subpackage
Version:0.97.6
Release:0
Url:http://www.clamav.net
@@ -60,9 +61,11 @@
Source4:clamav-rpmlintrc
Source5:clamav-rcmilter
# http://db.local.clamav.net/main.cvd
-Source6:main-54.cvd
+%define main_cvd_version 54
+Source6:main-%{main_cvd_version}.cvd
# http://db.local.clamav.net/daily.cvd
-Source7:daily-15055.cvd
+%define daily_cvd_version 16364
+Source7:daily-%{daily_cvd_version}.cvd
Patch1: clamav-conf.patch
Patch2: clamav-sles9.patch
Patch3: clamav-gcc47.patch
@@ -86,6 +89,8 @@
%if 0%{?suse_version} > 1120
BuildArch: noarch
%endif
+Version:%{version}
+Release:%{main_cvd_version}.%{daily_cvd_version}..
%description db
This package contains a snapshot of the virus description database for
@@ -138,11 +143,6 @@
make %{?jobs:-j%jobs}
-%check
-%if !0%{?qemu_user_space_build:1}
-VALGRIND_GENSUP=1 make check
-%endif
-
%install
%makeinstall
ln -sf docs/html/{clamdoc,index}.html
@@ -170,6 +170,21 @@
# Remove bogus dependencies from libclamav.pc
sed -i 's/^Libs: .*/Libs: -lclamav/' %buildroot%_libdir/pkgconfig/libclamav.pc
+%check
+
+# signature check using installed clamav sigtool
+LD_LIBRARY_PATH="%buildroot%{_libdir}" "%buildroot%{_bindir}/sigtool" --info
%buildroot/var/lib/clamav/main.cvd.dist
+LD_LIBRARY_PATH="%buildroot%{_libdir}" "%buildroot%{_bindir}/sigtool" --info
%buildroot/var/lib/clamav/daily.cvd.dist
+
+# Check that cvd version matches versions declared in package
+test "$(head -c512 %SOURCE6 | cut -d: -f3)" = "%{main_cvd_version}"
+test "$(head -c512 %SOURCE7 | cut -d: -f3)" = "%{daily_cvd_version}"
+
+# regressoin tests
+%if !0%{?qemu_user_space_build:1}
+VALGRIND_GENSUP=1 make check
+%endif
+
%files
%defattr(-,root,root,-)
%config(noreplace) %_sysconfdir/*.conf
--
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2012-10-07 18:54:33
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new (New)
Package is "clamav", Maintainer is "m...@suse.com"
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2012-09-21
14:37:39.0 +0200
+++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2012-10-07
18:54:35.0 +0200
@@ -1,0 +2,5 @@
+Fri Sep 28 09:30:25 UTC 2012 - m...@suse.com
+
+- 0.97.6 also fixes bnc#780181.
+
+---
@@ -11,0 +17,5 @@
+
+---
+Thu Jun 21 16:09:25 UTC 2012 - m...@suse.com
+
+- The CVEs below correspont to: bnc#753611, bnc#753613, bnc#753610.
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.3gbgkz/_old 2012-10-07 18:54:37.0 +0200
+++ /var/tmp/diff_new_pack.3gbgkz/_new 2012-10-07 18:54:37.0 +0200
@@ -69,42 +69,14 @@
BuildRoot: %{_tmppath}/%{name}-%{version}-build
%description
-Clam AntiVirus is an open source (GPL) anti-virus toolkit for UNIX,
-designed especially for e-mail scanning on mail gateways. It provides a
-number of utilities including a flexible and scalable multi-threaded
-daemon, a command line scanner and advanced tool for automatic database
-updates. The core of the package is an anti-virus engine available in a
-form of shared library.
-
-Here is a list of the main features:
-
-* command-line scanner
-
-* fast, multi-threaded daemon with support for on-access scanning
-
-* milter interface for sendmail
-
-* advanced database updater with support for scripted updates and
- digital signatures
-
-* virus scanner C library
-
-* on-access scanning (Linux and FreeBSD)
-
-* virus database updated multiple times per day (see home page for
- total number of signatures)
-
-* built-in support for various archive formats, including Zip, RAR,
- Tar, Gzip, Bzip2, OLE2, Cabinet, CHM, BinHex, SIS and others
-
-* built-in support for almost all mail file formats
-
-* built-in support for ELF executables and Portable Executable files
- compressed with UPX, FSG, Petite, NsPack, wwpack32, MEW, Upack
- and obfuscated with SUE, Y0da Cryptor and others
-
-* built-in support for popular document formats including MS Office and
-MacOffice files, HTML, RTF and PDF
+ClamAV is an open source (GPL) antivirus engine designed for detecting
+Trojans, viruses, malware and other malicious threats. It is the de
+facto standard for mail gateway scanning. It provides a high
+performance mutli-threaded scanning daemon, command line utilities for
+on demand file scanning, and an intelligent tool for automatic
+signature updates. The core ClamAV library provides numerous file
+format detection mechanisms, file unpacking support, archive support,
+and multiple signature languages for detecting threats.
%package db
Summary:Virus Database for ClamAV
--
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2012-09-21 14:37:36
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new (New)
Package is "clamav", Maintainer is "m...@suse.com"
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2012-08-22
12:11:47.0 +0200
+++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2012-09-21
14:37:39.0 +0200
@@ -1,0 +2,7 @@
+Wed Sep 19 08:07:55 UTC 2012 - tog...@opensuse.org
+
+- update to 0.97.6
+ * libclamav: bb#5751 - cl_scansis() may returan a file descriptor
+instead of a valid return code
+
+---
Old:
clamav-0.97.5.tar.gz
New:
clamav-0.97.6.tar.gz
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.yKIrhf/_old 2012-09-21 14:37:43.0 +0200
+++ /var/tmp/diff_new_pack.yKIrhf/_new 2012-09-21 14:37:43.0 +0200
@@ -45,7 +45,7 @@
Summary:Antivirus Toolkit
License:GPL-2.0
Group: Productivity/Security
-Version:0.97.5
+Version:0.97.6
Release:0
Url:http://www.clamav.net
Requires: latex2html-pngicons
@@ -108,7 +108,7 @@
%package db
Summary:Virus Database for ClamAV
-License:BSD-3-Clause ; GPL-2.0+ ; LGPL-2.1+ ; SUSE-Public-Domain ; MIT
+License:BSD-3-Clause and GPL-2.0+ and LGPL-2.1+ and SUSE-Public-Domain
and MIT
Group: Productivity/Security
PreReq: clamav sed /bin/cp /usr/bin/awk /bin/rm
%if 0%{?suse_version} > 1120
++ clamav-0.97.5.tar.gz -> clamav-0.97.6.tar.gz ++
/work/SRC/openSUSE:Factory/clamav/clamav-0.97.5.tar.gz
/work/SRC/openSUSE:Factory/.clamav.new/clamav-0.97.6.tar.gz differ: char 5,
line 1
--
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2012-08-22 12:11:45
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new (New)
Package is "clamav", Maintainer is "m...@suse.com"
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2012-06-25
12:22:42.0 +0200
+++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2012-08-22
12:11:47.0 +0200
@@ -1,0 +2,5 @@
+Thu Jul 26 11:41:02 UTC 2012 - dmuel...@suse.com
+
+- avoid make check on qemu build
+
+---
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.i28Rht/_old 2012-08-22 12:11:50.0 +0200
+++ /var/tmp/diff_new_pack.i28Rht/_new 2012-08-22 12:11:50.0 +0200
@@ -167,7 +167,9 @@
make %{?jobs:-j%jobs}
%check
+%if !0%{?qemu_user_space_build:1}
VALGRIND_GENSUP=1 make check
+%endif
%install
%makeinstall
--
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2012-06-25 12:22:39
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new (New)
Package is "clamav", Maintainer is "m...@suse.com"
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2012-03-20
13:28:56.0 +0100
+++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2012-06-25
12:22:42.0 +0200
@@ -1,0 +2,17 @@
+Tue Jun 19 00:31:03 UTC 2012 - andreas.stie...@gmx.de
+
+- update to 0.95.5 [bnc#767574]
+- addresses possible evasion cases in some archive formats
+- CVE-2012-1457: allows to bypass malware detection via a TAR archive
+ entry with a length field that exceeds the total TAR file size
+- CVE-2012-1458: allows to bypass malware detection via a crafted
+ reset interval in the LZXC header of a CHM file
+- CVE-2012-1459: allows to bypass malware detection via a TAR archive
+ entry with a length field corresponding to that entire entry, plus
+ part of the header of the next entry
+- also addresses stability issues in portions of the bytecode engine
+- update clamav-conf.patch for moved lines
+- add a definitions snapshot as {main,daily}.cvd no longer in tarball
+- fix file-contains-date-and-time rpmlint warning
+
+---
Old:
clamav-0.97.4.tar.gz
New:
clamav-0.97.5.tar.gz
daily-15055.cvd
main-54.cvd
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.WCyavo/_old 2012-06-25 12:22:46.0 +0200
+++ /var/tmp/diff_new_pack.WCyavo/_new 2012-06-25 12:22:46.0 +0200
@@ -45,7 +45,7 @@
Summary:Antivirus Toolkit
License:GPL-2.0
Group: Productivity/Security
-Version:0.97.4
+Version:0.97.5
Release:0
Url:http://www.clamav.net
Requires: latex2html-pngicons
@@ -59,6 +59,10 @@
Source3:clamav-updateclamconf
Source4:clamav-rpmlintrc
Source5:clamav-rcmilter
+# http://db.local.clamav.net/main.cvd
+Source6:main-54.cvd
+# http://db.local.clamav.net/daily.cvd
+Source7:daily-15055.cvd
Patch1: clamav-conf.patch
Patch2: clamav-sles9.patch
Patch3: clamav-gcc47.patch
@@ -157,7 +161,8 @@
%clamav_check \
%llvm \
--disable-zlib-vcheck \
- --enable-clamdtop
+ --enable-clamdtop \
+ --disable-timestamps
make %{?jobs:-j%jobs}
@@ -175,7 +180,10 @@
install -m755 %SOURCE5 %buildroot/etc/init.d/clamav-milter
ln -s /etc/init.d/clamav-milter %buildroot%_sbindir/rcclamav-milter
install -m755 %SOURCE3 %buildroot%_sbindir/updateclamconf
+install -d -m755 %buildroot/var/lib/clamav
touch %buildroot/var/lib/clamav/{clamd,freshclam}.pid
+install -m755 %SOURCE6 %buildroot/var/lib/clamav/main.cvd
+install -m755 %SOURCE7 %buildroot/var/lib/clamav/daily.cvd
for f in %buildroot/var/lib/clamav/*.cvd; do
mv $f $f.dist
touch $f
++ clamav-0.97.4.tar.gz -> clamav-0.97.5.tar.gz ++
/work/SRC/openSUSE:Factory/clamav/clamav-0.97.4.tar.gz
/work/SRC/openSUSE:Factory/.clamav.new/clamav-0.97.5.tar.gz differ: char 5,
line 1
++ clamav-conf.patch ++
--- /var/tmp/diff_new_pack.WCyavo/_old 2012-06-25 12:22:46.0 +0200
+++ /var/tmp/diff_new_pack.WCyavo/_new 2012-06-25 12:22:46.0 +0200
@@ -1,7 +1,7 @@
Index: etc/clamav-milter.conf
===
etc/clamav-milter.conf.orig
-+++ etc/clamav-milter.conf
+--- etc/clamav-milter.conf.orig2012-06-12 14:36:05.0 +0100
etc/clamav-milter.conf 2012-06-18 22:49:23.0 +0100
@@ -2,10 +2,6 @@
## Example config file for clamav-milter
##
@@ -68,8 +68,8 @@
#
Index: etc/clamd.conf
===
etc/clamd.conf.orig
-+++ etc/clamd.conf
+--- etc/clamd.conf.orig2012-06-12 14:03:26.0 +0100
etc/clamd.conf 2012-06-18 22:49:23.0 +0100
@@ -1,12 +1,8 @@
##
-## Example config file for the Clam AV daemon
@@ -134,7 +134,7 @@
# Maximum length the queue of pending connections may grow to.
# Default: 200
-@@ -187,7 +183,7 @@ Example
+@@ -186,7 +182,7 @@ Example
# Run as another user (clamd must be started by root for this option to work)
# Default: don't drop privileges
@@ -143,7 +143,7 @@
# Initialize supplementary group access (clamd must be started by root).
# Default: no
-@@ -428,6 +424,10 @@ Example
+@@ -440,6 +436,10 @@ Example
# Enable Clamuko. Dazuko must be configured and running. Clamuko supports
# both Dazuko (/dev/dazuko) and DazukoFS (/dev/d
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2012-03-20 13:28:55
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new (New)
Package is "clamav", Maintainer is "m...@suse.com"
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2012-03-20
01:58:54.0 +0100
+++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2012-03-20
13:28:56.0 +0100
@@ -1,0 +2,5 @@
+Sat Mar 17 19:36:17 UTC 2012 - dims...@opensuse.org
+
+- Add clamav-gcc47.patch: Fix build with gcc 4.7.
+
+---
New:
clamav-gcc47.patch
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.GBd5Vk/_old 2012-03-20 13:28:59.0 +0100
+++ /var/tmp/diff_new_pack.GBd5Vk/_new 2012-03-20 13:28:59.0 +0100
@@ -61,6 +61,7 @@
Source5:clamav-rcmilter
Patch1: clamav-conf.patch
Patch2: clamav-sles9.patch
+Patch3: clamav-gcc47.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-build
%description
@@ -129,6 +130,7 @@
# SLES9's libmilter doesn't have smfi_insheader()
%patch2
%endif
+%patch3 -p1
%build
%if 0%{?suse_version} >= 1010
++ clamav-gcc47.patch ++
Index: clamav-0.97.3/libclamav/c++/llvm/lib/ExecutionEngine/JIT/Intercept.cpp
===
--- clamav-0.97.3.orig/libclamav/c++/llvm/lib/ExecutionEngine/JIT/Intercept.cpp
+++ clamav-0.97.3/libclamav/c++/llvm/lib/ExecutionEngine/JIT/Intercept.cpp
@@ -15,6 +15,7 @@
//
//===--===//
+#include
#include "JIT.h"
#include "llvm/Support/ErrorHandling.h"
#include "llvm/System/DynamicLibrary.h"
--
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community,
here is the log from the commit of package clamav for openSUSE:Factory checked
in at 2012-03-20 01:58:51
Comparing /work/SRC/openSUSE:Factory/clamav (Old)
and /work/SRC/openSUSE:Factory/.clamav.new (New)
Package is "clamav", Maintainer is "m...@suse.com"
Changes:
--- /work/SRC/openSUSE:Factory/clamav/clamav.changes2011-10-21
16:27:42.0 +0200
+++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2012-03-20
01:58:54.0 +0100
@@ -1,0 +2,22 @@
+Sat Mar 17 14:18:48 UTC 2012 - tog...@opensuse.org
+
+- New version 0.97.4
+ * libclamav/bytecode.c: reset to BYTECODE_AUTO mode at db reload
+ so that we don't fail to re-enable or re-disable it again
+ (bb#3789)
+ * misc: performance improvement for HP-UX PA-RISC - patch from
+ Michael Pelletier
+ (bb#3926)
+ * libclamav/pe.c: parse vinfo where varfileinfo occours before
+ stringfileinfo (bb#3062)
+ * clamd: add support for on-access scanning on OS X with ClamAuth
+ (beta)
+ * libclamav/bytecode_api*: Fix Sparc crash (bb #4324)
+ * libclamav: fix bytecode whitelisting
+ * libclamav: fix macro detection in OLE2BlockMacros (bb#4269)
+ * libclamav/readdb.c: allow comments in all db files (bb#3930)
+ * libclamav/scanners.c: use lsigs when scanning vba data (bb#3922)
+ * libclamav/matcher-hash.c: Fix SIGBUS on PA-RISC (big-endian)
+ architectures (bb #3894).
+
+---
Old:
clamav-0.97.3.tar.gz
New:
clamav-0.97.4.tar.gz
Other differences:
--
++ clamav.spec ++
--- /var/tmp/diff_new_pack.UNYmL6/_old 2012-03-20 01:58:59.0 +0100
+++ /var/tmp/diff_new_pack.UNYmL6/_new 2012-03-20 01:58:59.0 +0100
@@ -1,7 +1,7 @@
#
# spec file for package clamav
#
-# Copyright (c) 2011 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2012 SUSE LINUX Products GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -16,12 +16,16 @@
#
-
Name: clamav
-BuildRequires: ncurses-devel sed sendmail sendmail-devel
+BuildRequires: ncurses-devel
+BuildRequires: sed
+BuildRequires: sendmail
+BuildRequires: sendmail-devel
%define llvm --disable-llvm
%if 0%{?suse_version} >= 1010
-BuildRequires: bc pkgconfig zlib-devel
+BuildRequires: bc
+BuildRequires: pkgconfig
+BuildRequires: zlib-devel
%ifarch %ix86 x86_64
%define llvm --enable-llvm
# Needed for compiling LLVM.
@@ -29,17 +33,20 @@
%endif
%endif
%if 0%{?suse_version} >= 1030
-BuildRequires: check-devel libbz2-devel pwdutils python-devel
+BuildRequires: check-devel
+BuildRequires: libbz2-devel
+BuildRequires: pwdutils
+BuildRequires: python-devel
%define clamav_check --enable-check
%else
BuildRequires: bzip2
%define clamav_check --disable-check
%endif
Summary:Antivirus Toolkit
-Version:0.97.3
-Release:1
License:GPL-2.0
Group: Productivity/Security
+Version:0.97.4
+Release:0
Url:http://www.clamav.net
Requires: latex2html-pngicons
Obsoletes: clamav-db < 0.88.3
@@ -95,9 +102,9 @@
MacOffice files, HTML, RTF and PDF
%package db
+Summary:Virus Database for ClamAV
License:BSD-3-Clause ; GPL-2.0+ ; LGPL-2.1+ ; SUSE-Public-Domain ; MIT
Group: Productivity/Security
-Summary:Virus Database for ClamAV
PreReq: clamav sed /bin/cp /usr/bin/awk /bin/rm
%if 0%{?suse_version} > 1120
BuildArch: noarch
++ clamav-0.97.3.tar.gz -> clamav-0.97.4.tar.gz ++
/work/SRC/openSUSE:Factory/clamav/clamav-0.97.3.tar.gz
/work/SRC/openSUSE:Factory/.clamav.new/clamav-0.97.4.tar.gz differ: char 5,
line 1
--
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2011-12-06 18:03:07 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav", Maintainer is "m...@suse.com" Changes: Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.3KuJlN/_old 2011-12-06 18:05:07.0 +0100 +++ /var/tmp/diff_new_pack.3KuJlN/_new 2011-12-06 18:05:07.0 +0100 @@ -38,7 +38,7 @@ Summary:Antivirus Toolkit Version:0.97.3 Release:1 -License:GPLv2 +License:GPL-2.0 Group: Productivity/Security Url:http://www.clamav.net Requires: latex2html-pngicons @@ -95,7 +95,7 @@ MacOffice files, HTML, RTF and PDF %package db -License:BSD3c(or similar) ; GPLv2+ ; LGPLv2.1+ ; Public Domain, Freeware ; MIT License (or similar) +License:BSD-3-Clause ; GPL-2.0+ ; LGPL-2.1+ ; SUSE-Public-Domain ; MIT Group: Productivity/Security Summary:Virus Database for ClamAV PreReq: clamav sed /bin/cp /usr/bin/awk /bin/rm -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at Thu Jul 28 16:54:20 CEST 2011. --- clamav/clamav.changes 2011-06-09 12:36:51.0 +0200 +++ /mounts/work_src_done/STABLE/clamav/clamav.changes 2011-07-28 15:15:16.0 +0200 @@ -1,0 +2,15 @@ +Tue Jul 26 08:55:27 UTC 2011 - m...@novell.com + +- New version 0.97.2 (bnc#708263): + * libclamav/matcher-hash.c: off by one read in cli_hm_scan +(bb#2818, CVE-2011-2721). + * libclamav/pdf.c: fix encrypted pdf detection (bb #2988) + * clamav-milter/clamfi.c: fix typo in error message (bb#3040) + * libclamav/lzma_iface.c: shut up huge alloc warns for 7z/lzma +(bb#2913) + * libclamav/c++/bytecode2llvm.cpp: fix use of unaddressable data +in bytecode_watchdog. + * libclamav/phishcheck.c: fix safebrowsing detection on certain +URLs + +--- @@ -4 +19 @@ -- New version 0.97.1: +- New version 0.97.1 (bnc#698999): calling whatdependson for head-i586 Old: clamav-0.97.1.tar.bz2 New: clamav-0.97.2.tar.bz2 Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.miTkqj/_old 2011-07-28 16:52:59.0 +0200 +++ /var/tmp/diff_new_pack.miTkqj/_new 2011-07-28 16:52:59.0 +0200 @@ -36,7 +36,7 @@ %define clamav_check --disable-check %endif Summary:Antivirus Toolkit -Version:0.97.1 +Version:0.97.2 Release:1 License:GPLv2 Group: Productivity/Security ++ clamav-0.97.1.tar.bz2 -> clamav-0.97.2.tar.bz2 ++ clamav/clamav-0.97.1.tar.bz2 /mounts/work_src_done/STABLE/clamav/clamav-0.97.2.tar.bz2 differ: char 11, line 1 Remember to have fun... -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at Fri Jun 10 11:44:56 CEST 2011. --- clamav/clamav.changes 2011-02-09 10:24:31.0 +0100 +++ /mounts/work_src_done/STABLE/clamav/clamav.changes 2011-06-09 12:36:51.0 +0200 @@ -1,0 +2,43 @@ +Thu Jun 9 10:04:22 UTC 2011 - m...@novell.com + +- New version 0.97.1: + * libclamav/mew.c: harden boundary check on e8/e9 fixup + * libclamav/matcher-hash.c: in hm_sort don't swap an item with +itself (bb#2818) + * freshclam/manager.c: fix return code of Rfc2822DateTime() +(bb#2809) + * libclamav/pdf.c: better detection for encrypted PDFs +(bb #2448) + * libclamav/c++: add support for building with external LLVM 2.9, +and drop external 2.8 support + * clamd: log request ip address for instream scans #bb2592 + * libclamav/c++/llvm/lib/Target/X86/X86InstrInfo.td: bb #2763 +don't assert on AVX chips (Intel Core i5 and i7) + * sigtool: properly normalize html files (bb#2764) + * sigtool/sigtool.c: fix formatting of hash dbs (bb#2765) + * freshclam: add mirror statistics mechanism + * libclamav/pe_icons.c: don't sigbus on sparc (bb#2695) + * libclamav/pe.c: reset corrupted status before bytecode +hooks (bb#2544) + * sigtool, freshclam: put .info on top of container to speed +up loading + * sigtool: fix --verify-cdiff + * sigtool: allow arbitrary names for --build + * clamdscan: fix file exclusion (bb#2579) + * clamd: add new option ClamukoExcludeUID (bb#2260) + * libclamav/elf.c: fix incorrect detection of Broken.Executable +(bb#2580) + * shared/output.c: fix empty lines in syslog (bb#2578) + * clamd: update description of ReadTimeout (bb#2565) + * clamd: add new config option BytecodeUnsigned (bb#2537); +drop "None" from BytecodeSecurity + * clamscan: add new switch --bytecode-unsigned and drop +--bytecode-trust-all + * sigtool/sigtool.c: improve handling of bytecode.info (bb#2292) + * libclamav/others.c: make sure TLS key is initializer +(bb #2588). + * configure: check for enable_extended_FILE_stdio (bb #2542) + * sigtool/sigtool.c: handle all signature formats with +--(list|find)-sigs (bb#2534) + +--- @@ -4 +47 @@ -- New version 0.97: +- Security update 0.9.7 (bnc#673753): calling whatdependson for head-i586 Old: clamav-0.97.tar.bz2 New: clamav-0.97.1.tar.bz2 Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.3YwlDl/_old 2011-06-10 11:41:26.0 +0200 +++ /var/tmp/diff_new_pack.3YwlDl/_new 2011-06-10 11:41:26.0 +0200 @@ -36,7 +36,7 @@ %define clamav_check --disable-check %endif Summary:Antivirus Toolkit -Version:0.97 +Version:0.97.1 Release:1 License:GPLv2 Group: Productivity/Security ++ clamav-0.97.tar.bz2 -> clamav-0.97.1.tar.bz2 ++ clamav/clamav-0.97.tar.bz2 /mounts/work_src_done/STABLE/clamav/clamav-0.97.1.tar.bz2 differ: char 11, line 1 Remember to have fun... -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
