commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2020-09-21 17:33:23 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new.4249 (New) Package is "clamav" Mon Sep 21 17:33:23 2020 rev:109 rq:835433 version:0.103.0 Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2020-07-17 20:54:52.901172603 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new.4249/clamav.changes 2020-09-21 17:42:01.160833651 +0200 @@ -1,0 +2,15 @@ +Mon Sep 14 17:39:16 UTC 2020 - Arjen de Korte + +- Update to 0.103.0 + * clamd can now reload the signature database without blocking +scanning. This multi-threaded database reload improvement was made +possible thanks to a community effort. +- Non-blocking database reloads are now the default behavior. Some + systems that are more constrained on RAM may need to disable + non-blocking reloads as it will temporarily consume two times as + much memory. We added a new clamd config option + ConcurrentDatabaseReload, which may be set to no. + * Dropped clamav-str-h.patch (no longer needed) + * Fix clamav-milter.service (requires clamd.service to run) + +--- Old: clamav-0.102.4.tar.gz clamav-0.102.4.tar.gz.sig clamav-str-h.patch New: clamav-0.103.0.tar.gz clamav-0.103.0.tar.gz.sig Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.MKV6jC/_old 2020-09-21 17:42:07.180839324 +0200 +++ /var/tmp/diff_new_pack.MKV6jC/_new 2020-09-21 17:42:07.180839324 +0200 @@ -19,7 +19,7 @@ %define clamav_check --enable-check %bcond_with clammspack Name: clamav -Version:0.102.4 +Version:0.103.0 Release:0 Summary:Antivirus Toolkit License:GPL-2.0-only @@ -37,14 +37,13 @@ Patch4: clamav-disable-timestamps.patch Patch5: clamav-obsolete-config.patch Patch6: clamav-disable-yara.patch -Patch7: clamav-str-h.patch BuildRequires: autoconf BuildRequires: automake BuildRequires: bc BuildRequires: check-devel BuildRequires: gcc-c++ BuildRequires: libbz2-devel -BuildRequires: libcurl-devel +BuildRequires: libcurl-devel >= 7.45 BuildRequires: libjson-c-devel BuildRequires: libopenssl-devel BuildRequires: libtool @@ -56,6 +55,7 @@ BuildRequires: sed BuildRequires: sendmail-devel BuildRequires: systemd-rpm-macros +#BuildRequires: valgrind BuildRequires: zlib-devel BuildRequires: pkgconfig(libsystemd) Requires(pre): %_bindir/awk @@ -125,7 +125,6 @@ %patch4 %patch5 %patch6 -%patch7 %build CFLAGS="-fstack-protector" @@ -181,6 +180,7 @@ install -m 0644 %SOURCE7 %buildroot/%_unitdir/clamd.service install -m 0644 %SOURCE8 %buildroot/%_unitdir/freshclam.service install -m 0644 %SOURCE9 %buildroot/%_unitdir/clamav-milter.service +rm -f %buildroot/%_unitdir/clamav-clamonacc.service rm -f %buildroot/%_unitdir/clamav-daemon.service rm -f %buildroot/%_unitdir/clamav-daemon.socket rm -f %buildroot/%_unitdir/clamav-freshclam.service @@ -194,7 +194,7 @@ # regression tests %if !0%{?qemu_user_space_build:1} -VALGRIND_GENSUP=1 make check +make check VG=1 %endif %post -n libclamav9 -p /sbin/ldconfig ++ clamav-0.102.4.tar.gz -> clamav-0.103.0.tar.gz ++ /work/SRC/openSUSE:Factory/clamav/clamav-0.102.4.tar.gz /work/SRC/openSUSE:Factory/.clamav.new.4249/clamav-0.103.0.tar.gz differ: char 5, line 1 ++ clamav-conf.patch ++ --- /var/tmp/diff_new_pack.MKV6jC/_old 2020-09-21 17:42:07.232839373 +0200 +++ /var/tmp/diff_new_pack.MKV6jC/_new 2020-09-21 17:42:07.232839373 +0200 @@ -31,7 +31,7 @@ # Waiting for data from clamd will timeout after this time (seconds). # Value of 0 disables the timeout. @@ -61,7 +56,7 @@ Example - # daemon (main thread). + # also owned by root to keep other users from tampering with it. # # Default: disabled -#PidFile /var/run/clamav-milter.pid @@ -96,8 +96,8 @@ # Enable verbose logging. # Default: no @@ -71,7 +67,7 @@ Example - # This option allows you to save a process identifier of the listening - # daemon (main thread). + # It is recommended that the directory where this file is stored is + # also owned by root to keep other users from tampering with it. # Default: disabled -#PidFile /var/run/clamd.pid +PidFile /run/clamav/clamd.pid @@ -172,8 +172,8 @@ # Enable log rotation. Always enabled when LogFileMaxSize is enabled. # Default: no @@ -48,12 +44,12 @@ Example - - # This option allows you to save the process identifier of the daemon + # It is recommended that the directory where this file is stored is + # also owned by root to keep other users
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2020-07-17 20:54:14 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new.3592 (New) Package is "clamav" Fri Jul 17 20:54:14 2020 rev:108 rq:821532 version:0.102.4 Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2020-05-12 22:39:37.132781774 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new.3592/clamav.changes 2020-07-17 20:54:52.901172603 +0200 @@ -1,0 +2,24 @@ +Thu Jul 16 20:02:03 UTC 2020 - Arjen de Korte + +- Update to 0.102.4 + * CVE-2020-3350: Fix a vulnerability wherein a malicious user could +replace a scan target's directory with a symlink to another path +to trick clamscan, clamdscan, or clamonacc into removing or moving +a different file (eg. a critical system file). The issue would +affect users that use the --move or --remove options for clamscan, +clamdscan, and clamonacc. + * CVE-2020-3327: Fix a vulnerability in the ARJ archive parsing +module in ClamAV 0.102.3 that could cause a Denial-of-Service +(DoS) condition. Improper bounds checking results in an +out-of-bounds read which could cause a crash. The previous fix for +this CVE in 0.102.3 was incomplete. This fix correctly resolves +the issue. + * CVE-2020-3481: Fix a vulnerability in the EGG archive module in +ClamAV 0.102.0 - 0.102.3 could cause a Denial-of-Service (DoS) +condition. Improper error handling may result in a crash due to a +NULL pointer dereference. This vulnerability is mitigated for +those using the official ClamAV signature databases because the +file type signatures in daily.cvd will not enable the EGG archive +parser in versions affected by the vulnerability. + +--- Old: clamav-0.102.3.tar.gz clamav-0.102.3.tar.gz.sig New: clamav-0.102.4.tar.gz clamav-0.102.4.tar.gz.sig Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.LwE1tu/_old 2020-07-17 20:54:54.125173880 +0200 +++ /var/tmp/diff_new_pack.LwE1tu/_new 2020-07-17 20:54:54.125173880 +0200 @@ -19,7 +19,7 @@ %define clamav_check --enable-check %bcond_with clammspack Name: clamav -Version:0.102.3 +Version:0.102.4 Release:0 Summary:Antivirus Toolkit License:GPL-2.0-only @@ -153,7 +153,7 @@ --with-system-libmspack %endif -make V=1 %?_smp_mflags +%make_build %install %make_install @@ -247,7 +247,7 @@ %service_add_pre clamd.service freshclam.service clamav-milter.service %post -systemd-tmpfiles --create %_tmpfilesdir/clamav.conf +%tmpfiles_create %_tmpfilesdir/clamav.conf %service_add_post clamd.service freshclam.service clamav-milter.service %preun ++ clamav-0.102.3.tar.gz -> clamav-0.102.4.tar.gz ++ /work/SRC/openSUSE:Factory/clamav/clamav-0.102.3.tar.gz /work/SRC/openSUSE:Factory/.clamav.new.3592/clamav-0.102.4.tar.gz differ: char 5, line 1 ++ clamav-disable-timestamps.patch ++ --- /var/tmp/diff_new_pack.LwE1tu/_old 2020-07-17 20:54:54.181173939 +0200 +++ /var/tmp/diff_new_pack.LwE1tu/_new 2020-07-17 20:54:54.181173939 +0200 @@ -82,4 +82,4 @@ +_ACEOF - VERSION="0.102.3" + VERSION="0.102.4"
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2020-05-12 22:36:38 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new.2738 (New) Package is "clamav" Tue May 12 22:36:38 2020 rev:107 rq:803386 version:0.102.3 Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2020-04-16 23:04:38.671749080 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new.2738/clamav.changes 2020-05-12 22:39:37.132781774 +0200 @@ -1,0 +2,18 @@ +Tue May 12 17:31:15 UTC 2020 - Arjen de Korte + +- Update to 0.102.3 + * CVE-2020-3327: Fix a vulnerability in the ARJ archive parsing +module in ClamAV 0.102.2 that could cause a Denial-of-Service (DoS) +condition. Improper bounds checking of an unsigned variable results +in an out-of-bounds read which causes a crash. + * CVE-2020-3341: Fix a vulnerability in the PDF parsing module in +ClamAV 0.101 - 0.102.2 that could cause a Denial-of-Service (DoS) +condition. Improper size checking of a buffer used to initialize AES +decryption routines results in an out-of-bounds read which may cause +a crash. + * Fix "Attempt to allocate 0 bytes" error when parsing some PDF +documents. + * Fix a couple of minor memory leaks. + * Updated libclamunrar to UnRAR 5.9.2. + +--- Old: clamav-0.102.2.tar.gz clamav-0.102.2.tar.gz.sig New: clamav-0.102.3.tar.gz clamav-0.102.3.tar.gz.sig Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.KYbdv3/_old 2020-05-12 22:39:44.564797284 +0200 +++ /var/tmp/diff_new_pack.KYbdv3/_new 2020-05-12 22:39:44.572797301 +0200 @@ -19,7 +19,7 @@ %define clamav_check --enable-check %bcond_with clammspack Name: clamav -Version:0.102.2 +Version:0.102.3 Release:0 Summary:Antivirus Toolkit License:GPL-2.0-only ++ clamav-0.102.2.tar.gz -> clamav-0.102.3.tar.gz ++ /work/SRC/openSUSE:Factory/clamav/clamav-0.102.2.tar.gz /work/SRC/openSUSE:Factory/.clamav.new.2738/clamav-0.102.3.tar.gz differ: char 5, line 1 ++ clamav-conf.patch ++ --- /var/tmp/diff_new_pack.KYbdv3/_old 2020-05-12 22:39:44.628797418 +0200 +++ /var/tmp/diff_new_pack.KYbdv3/_new 2020-05-12 22:39:44.628797418 +0200 @@ -17,7 +17,7 @@ # Default: no default -#MilterSocket /tmp/clamav-milter.socket -#MilterSocket inet:7357 -+MilterSocket /var/run/clamav/clamav-milter-socket ++MilterSocket /run/clamav/clamav-milter-socket # Define the group ownership for the (unix) milter socket. # Default: disabled (the primary group of the user running clamd) @@ -35,7 +35,7 @@ # # Default: disabled -#PidFile /var/run/clamav-milter.pid -+PidFile /var/run/clamav/clamav-milter.pid ++PidFile /run/clamav/clamav-milter.pid # Optional path to the global temporary directory. # Default: system specific (usually /tmp or /var/tmp). @@ -44,7 +44,7 @@ # # Default: no default -#ClamdSocket tcp:scanner.mydomain:7357 -+ClamdSocket unix:/var/run/clamav/clamd-socket ++ClamdSocket unix:/run/clamav/clamd-socket ## @@ -100,7 +100,7 @@ # daemon (main thread). # Default: disabled -#PidFile /var/run/clamd.pid -+PidFile /var/run/clamav/clamd.pid ++PidFile /run/clamav/clamd.pid # Optional path to the global temporary directory. # Default: system specific (usually /tmp or /var/tmp). @@ -109,7 +109,7 @@ # Path to a local socket file the daemon will listen on. # Default: disabled (must be specified by a user) -#LocalSocket /tmp/clamd.socket -+LocalSocket /var/run/clamav/clamd-socket ++LocalSocket /run/clamav/clamd-socket # Sets the group ownership on the unix socket. # Default: disabled (the primary group of the user running clamd) @@ -176,7 +176,7 @@ # This option allows you to save the process identifier of the daemon # Default: disabled -#PidFile /var/run/freshclam.pid -+PidFile /var/run/clamav/freshclam.pid ++PidFile /run/clamav/freshclam.pid # By default when started freshclam drops privileges and switches to the # "clamav" user. This directive allows you to change the database owner. ++ clamav-disable-timestamps.patch ++ --- /var/tmp/diff_new_pack.KYbdv3/_old 2020-05-12 22:39:44.640797443 +0200 +++ /var/tmp/diff_new_pack.KYbdv3/_new 2020-05-12 22:39:44.640797443 +0200 @@ -82,4 +82,4 @@ +_ACEOF - VERSION="0.102.2" + VERSION="0.102.3" ++ service.clamd ++ --- /var/tmp/diff_new_pack.KYbdv3/_old 2020-05-12 22:39:44.720797609 +0200 +++ /var/tmp/diff_new_pack.KYbdv3/_new 2020-05-12 22:39:44.724797618 +0200 @@ -7,6 +7,7 @@ Type=forking ExecStart=/usr/sbin/clamd TimeoutStartSec=5min +ExecReload=/bin/ki
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2020-04-16 23:04:37 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new.2738 (New) Package is "clamav" Thu Apr 16 23:04:37 2020 rev:106 rq:794379 version:0.102.2 Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2020-02-07 15:56:25.263574437 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new.2738/clamav.changes 2020-04-16 23:04:38.671749080 +0200 @@ -1,0 +2,5 @@ +Wed Apr 1 10:01:36 UTC 2020 - Martin Pluskal + +- Drop python build dependency as it is not needed + +--- Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.0JZM9v/_old 2020-04-16 23:04:40.455750668 +0200 +++ /var/tmp/diff_new_pack.0JZM9v/_new 2020-04-16 23:04:40.459750672 +0200 @@ -16,9 +16,8 @@ # -%bcond_with clammspack - %define clamav_check --enable-check +%bcond_with clammspack Name: clamav Version:0.102.2 Release:0 @@ -47,9 +46,6 @@ BuildRequires: libbz2-devel BuildRequires: libcurl-devel BuildRequires: libjson-c-devel -%if %{without clammspack} -BuildRequires: libmspack-devel -%endif BuildRequires: libopenssl-devel BuildRequires: libtool BuildRequires: libxml2-devel @@ -57,7 +53,6 @@ BuildRequires: pcre2-devel BuildRequires: pkgconfig BuildRequires: pwdutils -BuildRequires: python-devel BuildRequires: sed BuildRequires: sendmail-devel BuildRequires: systemd-rpm-macros @@ -73,6 +68,9 @@ Provides: clamav-nodb = %version Obsoletes: clamav-nodb <= 0.98.4 %systemd_requires +%if %{without clammspack} +BuildRequires: libmspack-devel +%endif %description ClamAV is an antivirus engine designed for detecting trojans, @@ -142,7 +140,7 @@ %configure \ --disable-clamav \ --disable-static \ - --with-dbdir=/var/lib/clamav \ + --with-dbdir=%{_localstatedir}/lib/clamav \ --with-user=vscan \ --with-group=vscan \ --enable-milter \ @@ -159,10 +157,10 @@ %install %make_install -install -d -m755 %buildroot/var/lib/clamav +install -d -m755 %buildroot%{_localstatedir}/lib/clamav install -d -m755 %buildroot/%_tmpfilesdir install -m644 %SOURCE6 %buildroot%_tmpfilesdir/clamav.conf -mkdir -p %buildroot/var/spool/amavis +mkdir -p %buildroot%{_localstatedir}/spool/amavis mkdir -p -m 0755 %buildroot/run/clamav find %buildroot -type f -name "*.la" -delete -print @@ -219,8 +217,8 @@ %_bindir/* %_sbindir/* %defattr(-,vscan,vscan) -%dir %attr(750,vscan,vscan) /var/spool/amavis -%dir /var/lib/clamav +%dir %attr(750,vscan,vscan) %{_localstatedir}/spool/amavis +%dir %{_localstatedir}/lib/clamav %ghost %attr(755,vscan,vscan) /run/clamav %files -n libclamav9 @@ -244,7 +242,7 @@ getent group vscan >/dev/null || %_sbindir/groupadd -r vscan getent passwd vscan >/dev/null || \ %_sbindir/useradd -r -o -g vscan -u 65 -s /bin/false \ - -c "Vscan account" -d /var/spool/amavis vscan + -c "Vscan account" -d %{_localstatedir}/spool/amavis vscan %_sbindir/usermod vscan -g vscan %service_add_pre clamd.service freshclam.service clamav-milter.service
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2020-02-07 15:54:44 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new.26092 (New) Package is "clamav" Fri Feb 7 15:54:44 2020 rev:105 rq:770647 version:0.102.2 Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2019-12-30 12:35:09.911815280 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new.26092/clamav.changes 2020-02-07 15:56:25.263574437 +0100 @@ -1,0 +2,36 @@ +Wed Feb 5 18:31:17 UTC 2020 - Arjen de Korte + +- update to 0.102.2 + * CVE-2020-3123: A denial-of-service (DoS) condition may occur when +using the optional credit card data-loss-prevention (DLP) feature. +Improper bounds checking of an unsigned variable resulted in an +out-of-bounds read, which causes a crash. + * Significantly improved the scan speed of PDF files on Windows. + * Re-applied a fix to alleviate file access issues when scanning RAR +files in downstream projects that use libclamav where the scanning +engine is operating in a low-privilege process. This bug was originally +fixed in 0.101.2 and the fix was mistakenly omitted from 0.102.0. + * Fixed an issue where freshclam failed to update if the database version +downloaded is one version older than advertised. This situation may +occur after a new database version is published. The issue affected +users downloading the whole CVD database file. + * Changed the default freshclam ReceiveTimeout setting to 0 (infinite). +The ReceiveTimeout had caused needless database update failures for +users with slower internet connections. + * Correctly display the number of kilobytes (KiB) in progress bar and +reduced the size of the progress bar to accommodate 80-character width +terminals. + * Fixed an issue where running freshclam manually causes a daemonized +freshclam process to fail when it updates because the manual instance +deletes the temporary download directory. The freshclam temporary files +will now download to a unique directory created at the time of an update +instead of using a hardcoded directory created/destroyed at the program +start/exit. + * Fix for freshclam's OnOutdatedExecute config option. + * Fixes a memory leak in the error condition handling for the email +parser. + * Improved bound checking and error handling in ARJ archive parser. + * Improved error handling in PDF parser. + * Fix for memory leak in byte-compare signature handler. + +--- Old: clamav-0.102.1.tar.gz clamav-0.102.1.tar.gz.sig New: clamav-0.102.2.tar.gz clamav-0.102.2.tar.gz.sig Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.COobvR/_old 2020-02-07 15:56:26.631575135 +0100 +++ /var/tmp/diff_new_pack.COobvR/_new 2020-02-07 15:56:26.635575137 +0100 @@ -1,7 +1,7 @@ # # spec file for package clamav # -# Copyright (c) 2019 SUSE LLC +# Copyright (c) 2020 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -20,7 +20,7 @@ %define clamav_check --enable-check Name: clamav -Version:0.102.1 +Version:0.102.2 Release:0 Summary:Antivirus Toolkit License:GPL-2.0-only @@ -60,9 +60,9 @@ BuildRequires: python-devel BuildRequires: sed BuildRequires: sendmail-devel -BuildRequires: pkgconfig(libsystemd) BuildRequires: systemd-rpm-macros BuildRequires: zlib-devel +BuildRequires: pkgconfig(libsystemd) Requires(pre): %_bindir/awk Requires(pre): %_sbindir/groupadd Requires(pre): %_sbindir/useradd ++ clamav-0.102.1.tar.gz -> clamav-0.102.2.tar.gz ++ /work/SRC/openSUSE:Factory/clamav/clamav-0.102.1.tar.gz /work/SRC/openSUSE:Factory/.clamav.new.26092/clamav-0.102.2.tar.gz differ: char 5, line 1 ++ clamav-disable-timestamps.patch ++ --- /var/tmp/diff_new_pack.COobvR/_old 2020-02-07 15:56:26.683575162 +0100 +++ /var/tmp/diff_new_pack.COobvR/_new 2020-02-07 15:56:26.691575166 +0100 @@ -37,8 +37,8 @@ LIBCLAMAV_VERSION +ENABLE_TIMESTAMPS PACKAGE_VERSION_NUM - EGREP - GREP + ac_ct_AR + AR @@ -924,6 +925,7 @@ ac_user_opts=' enable_mmap_for_cross_compiling enable_dependency_tracking @@ -58,8 +58,8 @@ optimize for fast installation [default=yes] @@ -5927,6 +5931,26 @@ $as_echo "$ac_cv_safe_to_define___extens - $as_echo "#define _TANDEM_SOURCE 1" >>confdefs.h + $as_echo "#define PACKAGE PACKAGE_NAME" >>confdefs.h +# Check whether --enable-timestamps was given. +if test "${ena
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2019-12-30 12:35:04 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new.6675 (New) Package is "clamav" Mon Dec 30 12:35:04 2019 rev:104 rq:759922 version:0.102.1 Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2019-12-27 13:50:42.640545410 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new.6675/clamav.changes 2019-12-30 12:35:09.911815280 +0100 @@ -1,0 +2,6 @@ +Tue Dec 24 10:49:25 UTC 2019 - Arjen de Korte + +- The freshclam.service should not be started before the network is + online (it checks for updates immediately upon service start) + +--- Other differences: -- ++ service.freshclam ++ --- /var/tmp/diff_new_pack.Y91v9I/_old 2019-12-30 12:35:11.771816278 +0100 +++ /var/tmp/diff_new_pack.Y91v9I/_new 2019-12-30 12:35:11.775816280 +0100 @@ -1,6 +1,7 @@ [Unit] Description=Freshclam virus definitions downloader -After=network.target +After=network-online.target +Wants=network-online.target [Service] Type=forking
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2019-12-27 13:50:27 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new.6675 (New) Package is "clamav" Fri Dec 27 13:50:27 2019 rev:103 rq:759585 version:0.102.1 Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2019-12-21 12:31:35.131369061 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new.6675/clamav.changes 2019-12-27 13:50:42.640545410 +0100 @@ -5 +5 @@ - Aloow OBS to shortcut through the -mini flavors. + Allow OBS to shortcut through the -mini flavors. Other differences: --
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2019-12-21 12:31:08 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new.6675 (New) Package is "clamav" Sat Dec 21 12:31:08 2019 rev:102 rq:758279 version:0.102.1 Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2019-11-26 17:03:29.700025095 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new.6675/clamav.changes 2019-12-21 12:31:35.131369061 +0100 @@ -1,0 +2,6 @@ +Thu Dec 19 15:31:58 UTC 2019 - Dominique Leuenberger + +- BuildRequire pkgconfig(libsystemd) instead of systemd-devel: + Aloow OBS to shortcut through the -mini flavors. + +--- Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.YmWaXV/_old 2019-12-21 12:31:36.403369666 +0100 +++ /var/tmp/diff_new_pack.YmWaXV/_new 2019-12-21 12:31:36.407369668 +0100 @@ -60,7 +60,7 @@ BuildRequires: python-devel BuildRequires: sed BuildRequires: sendmail-devel -BuildRequires: systemd-devel +BuildRequires: pkgconfig(libsystemd) BuildRequires: systemd-rpm-macros BuildRequires: zlib-devel Requires(pre): %_bindir/awk
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2019-11-26 17:02:30 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new.26869 (New) Package is "clamav" Tue Nov 26 17:02:30 2019 rev:101 rq:750886 version:0.102.1 Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2019-10-27 13:41:06.277273539 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new.26869/clamav.changes 2019-11-26 17:03:29.700025095 +0100 @@ -1,0 +2,53 @@ +Wed Nov 20 19:01:10 UTC 2019 - Arjen de Korte + +- update to 0.102.1 + * CVE-2019-15961: A Denial-of-Service (DoS) vulnerability may +occur when scanning a specially crafted email file as a result +of excessively long scan times. The issue is resolved by +implementing several maximums in parsing MIME messages and by +optimizing use of memory allocation. + * Build system fixes to build clamav-milter, to correctly link +with libxml2 when detected, and to correctly detect fanotify +for on-access scanning feature support. + * Signature load time is significantly reduced by changing to a +more efficient algorithm for loading signature patterns and +allocating the AC trie. Patch courtesy of Alberto Wu. + * Introduced a new configure option to statically link libjson-c +with libclamav. Static linking with libjson is highly +recommended to prevent crashes in applications that use +libclamav alongside another JSON parsing library. + * Null-dereference fix in email parser when using the +--gen-json metadata option. + * Fixes for Authenticode parsing and certificate signature +(.crb database) bugs. +- dropped clamav-fix_building_milter.patch (upstreamed) + +--- +Fri Nov 1 09:46:17 UTC 2019 - Arjen de Korte + +- update to 0.102.0 + * The On-Access Scanning feature has been migrated out of clamd +and into a brand new utility named clamonacc. This utility is +similar to clamdscan and clamav-milter in that it acts as a +client to clamd. This separation from clamd means that clamd no +longer needs to run with root privileges while scanning potentially +malicious files. Instead, clamd may drop privileges to run under an +account that does not have super-user. In addition to improving the +security posture of running clamd with On-Access enabled, this +update fixed a few outstanding defects: +- On-Access scanning for created and moved files (Extra-Scanning) + is fixed. +- VirusEvent for On-Access scans is fixed. +- With clamonacc, it is now possible to copy, move, or remove a + file if the scan triggered an alert, just like with clamdscan. + * The freshclam database update utility has undergone a significant +update. This includes: +- Added support for HTTPS. +- Support for database mirrors hosted on ports other than 80. +- Removal of the mirror management feature (mirrors.dat). +- An all new libfreshclam library API. +- created new subpackage libfreshclam2 +- dropped clamav-max_patch.patch (upstreamed) +- added clamav-fix_building_milter.patch to fix build of milter + +--- Old: clamav-0.101.4.tar.gz clamav-0.101.4.tar.gz.sig clamav-max_patch.patch New: clamav-0.102.1.tar.gz clamav-0.102.1.tar.gz.sig Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.TqPYRa/_old 2019-11-26 17:03:34.948023282 +0100 +++ /var/tmp/diff_new_pack.TqPYRa/_new 2019-11-26 17:03:34.948023282 +0100 @@ -1,7 +1,7 @@ # # spec file for package clamav # -# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2019 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -20,12 +20,12 @@ %define clamav_check --enable-check Name: clamav -Version:0.101.4 +Version:0.102.1 Release:0 Summary:Antivirus Toolkit License:GPL-2.0-only Group: Productivity/Security -Url:http://www.clamav.net +URL:http://www.clamav.net Source0: http://www.clamav.net/downloads/production/%name-%version.tar.gz Source1: http://www.clamav.net/downloads/production/%name-%version.tar.gz.sig Source4:clamav-rpmlintrc @@ -39,8 +39,6 @@ Patch5: clamav-obsolete-config.patch Patch6: clamav-disable-yara.patch Patch7: clamav-str-h.patch -#PATCH-FIX-UPSTREAM clamav-max_patch.patch -Patch8: clamav-max_patch.patch BuildRequires: autoconf BuildRequ
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2019-10-27 13:40:55 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new.2990 (New) Package is "clamav" Sun Oct 27 13:40:55 2019 rev:100 rq:742982 version:0.101.4 Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2019-09-09 23:59:41.697222794 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new.2990/clamav.changes 2019-10-27 13:41:06.277273539 +0100 @@ -1,0 +2,8 @@ +Fri Oct 25 14:53:06 UTC 2019 - Reinhard Max + +- bsc#1151839: Increase the startup timeout of clamd to 5 minutes + to cater for the grown virus database as a workaround until + clamd has learned to talk to systemd to extend the timeout as + long as needed. + +--- Other differences: -- ++ service.clamd ++ --- /var/tmp/diff_new_pack.suucuu/_old 2019-10-27 13:41:07.989275604 +0100 +++ /var/tmp/diff_new_pack.suucuu/_new 2019-10-27 13:41:07.989275604 +0100 @@ -6,6 +6,7 @@ [Service] Type=forking ExecStart=/usr/sbin/clamd +TimeoutStartSec=5min ;User=vscan ;Group=vscan ;PrivateTmp=yes
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2019-09-09 23:59:38 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new.7948 (New) Package is "clamav" Mon Sep 9 23:59:38 2019 rev:99 rq:729457 version:0.101.4 Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2019-08-09 16:54:14.505456365 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new.7948/clamav.changes 2019-09-09 23:59:41.697222794 +0200 @@ -1,0 +2,11 @@ +Wed Sep 4 19:12:01 UTC 2019 - Andreas Stieger + +- update to 0.101.4: + * CVE-2019-12900: An out of bounds write in the NSIS bzip2 +(boo#1149458) + * CVE-2019-12625: Introduce a configurable time limit to mitigate +zip bomb vulnerability completely. Default is 2 minutes, +configurable useing the clamscan --max-scantime and for clamd +using the MaxScanTime config option (boo#1144504) + +--- Old: clamav-0.101.3.tar.gz clamav-0.101.3.tar.gz.sig New: clamav-0.101.4.tar.gz clamav-0.101.4.tar.gz.sig Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.XALD63/_old 2019-09-09 23:59:42.853222716 +0200 +++ /var/tmp/diff_new_pack.XALD63/_new 2019-09-09 23:59:42.857222715 +0200 @@ -20,7 +20,7 @@ %define clamav_check --enable-check Name: clamav -Version:0.101.3 +Version:0.101.4 Release:0 Summary:Antivirus Toolkit License:GPL-2.0-only ++ clamav-0.101.3.tar.gz -> clamav-0.101.4.tar.gz ++ /work/SRC/openSUSE:Factory/clamav/clamav-0.101.3.tar.gz /work/SRC/openSUSE:Factory/.clamav.new.7948/clamav-0.101.4.tar.gz differ: char 5, line 1 ++ clamav-disable-timestamps.patch ++ --- /var/tmp/diff_new_pack.XALD63/_old 2019-09-09 23:59:42.897222713 +0200 +++ /var/tmp/diff_new_pack.XALD63/_new 2019-09-09 23:59:42.897222713 +0200 @@ -1,3 +1,5 @@ +Index: libclamav/tomsfastmath/misc/fp_ident.c +=== --- libclamav/tomsfastmath/misc/fp_ident.c.orig +++ libclamav/tomsfastmath/misc/fp_ident.c @@ -15,7 +15,11 @@ const char *fp_ident(void) @@ -25,9 +27,11 @@ if (sizeof(fp_digit) == sizeof(fp_word)) { strncat(buf, "WARNING: sizeof(fp_digit) == sizeof(fp_word), this build is likely to not work properly.\n", +Index: configure +=== --- configure.orig +++ configure -@@ -812,6 +812,7 @@ FGREP +@@ -814,6 +814,7 @@ FGREP SED LIBTOOL LIBCLAMAV_VERSION @@ -35,7 +39,7 @@ EGREP GREP CPP -@@ -922,6 +923,7 @@ ac_user_opts=' +@@ -924,6 +925,7 @@ ac_user_opts=' enable_option_checking enable_dependency_tracking enable_silent_rules @@ -43,7 +47,7 @@ enable_static enable_shared with_pic -@@ -1641,6 +1643,8 @@ Optional Features: +@@ -1644,6 +1646,8 @@ Optional Features: --enable-silent-rules less verbose build output (undo: "make V=1") --disable-silent-rules verbose build output (undo: "make V=0") --enable-static[=PKGS] build static libraries [default=no] @@ -52,7 +56,7 @@ --enable-shared[=PKGS] build shared libraries [default=yes] --enable-fast-install[=PKGS] optimize for fast installation [default=yes] -@@ -5923,6 +5927,26 @@ $as_echo "$ac_cv_safe_to_define___extens +@@ -5927,6 +5931,26 @@ $as_echo "$ac_cv_safe_to_define___extens $as_echo "#define _TANDEM_SOURCE 1" >>confdefs.h @@ -78,4 +82,4 @@ +_ACEOF - VERSION="0.101.3" + VERSION="0.101.4"
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2019-08-09 16:54:09 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new.9556 (New) Package is "clamav" Fri Aug 9 16:54:09 2019 rev:98 rq:721852 version:0.101.3 Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2019-04-04 15:27:39.818903976 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new.9556/clamav.changes 2019-08-09 16:54:14.505456365 +0200 @@ -1,0 +2,6 @@ +Tue Aug 6 15:34:08 UTC 2019 - Reinhard Max + +- Update to version 0.101.3: + * bsc#1144504: ZIP bomb causes extreme CPU spikes + +--- Old: clamav-0.101.2.tar.gz clamav-0.101.2.tar.gz.sig New: clamav-0.101.3.tar.gz clamav-0.101.3.tar.gz.sig Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.yOwazY/_old 2019-08-09 16:54:15.457456137 +0200 +++ /var/tmp/diff_new_pack.yOwazY/_new 2019-08-09 16:54:15.461456136 +0200 @@ -20,7 +20,7 @@ %define clamav_check --enable-check Name: clamav -Version:0.101.2 +Version:0.101.3 Release:0 Summary:Antivirus Toolkit License:GPL-2.0-only ++ clamav-0.101.2.tar.gz -> clamav-0.101.3.tar.gz ++ /work/SRC/openSUSE:Factory/clamav/clamav-0.101.2.tar.gz /work/SRC/openSUSE:Factory/.clamav.new.9556/clamav-0.101.3.tar.gz differ: char 5, line 1 ++ clamav-disable-timestamps.patch ++ --- /var/tmp/diff_new_pack.yOwazY/_old 2019-08-09 16:54:15.497456127 +0200 +++ /var/tmp/diff_new_pack.yOwazY/_new 2019-08-09 16:54:15.497456127 +0200 @@ -78,4 +78,4 @@ +_ACEOF - VERSION="0.101.2" + VERSION="0.101.3"
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2019-04-04 15:22:20 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new.3908 (New) Package is "clamav" Thu Apr 4 15:22:20 2019 rev:97 rq:689824 version:0.101.2 Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2018-10-04 19:03:39.787066400 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new.3908/clamav.changes 2019-04-04 15:27:39.818903976 +0200 @@ -1,0 +2,38 @@ +Wed Mar 27 17:30:05 UTC 2019 - Andrey Karepin + +- Update to version 0.101.2 (bsc#1130721) + * CVE-2019-1787: +An out-of-bounds heap read condition may occur when scanning PDF +documents. The defect is a failure to correctly keep track of the number +of bytes remaining in a buffer when indexing file data. + * CVE-2019-1789: +An out-of-bounds heap read condition may occur when scanning PE files +(i.e. Windows EXE and DLL files) that have been packed using Aspack as a +result of inadequate bound-checking. + * CVE-2019-1788: +An out-of-bounds heap write condition may occur when scanning OLE2 files +such as Microsoft Office 97-2003 documents. The invalid write happens when +an invalid pointer is mistakenly used to initialize a 32bit integer to +zero. This is likely to crash the application. + * CVE-2019-1786: +An out-of-bounds heap read condition may occur when scanning malformed +PDF documents as a result of improper bounds-checking. + * CVE-2019-1785: +A path-traversal write condition may occur as a result of improper +input validation when scanning RAR archives. + * CVE-2019-1798: +A use-after-free condition may occur as a result of improper error +handling when scanning nested RAR archives. + +- added clamav-max_patch.patch to fix build +- dropped clamav-freshclam-exit.patch + +--- +Mon Jan 21 17:30:15 UTC 2019 - Reinhard Max + +- Update to version 0.101.1: + * Add missing headers to fix build of packages against libclamav. +- Add missing include for str.h to libclamav/others_common.c + (clamav-str-h.patch) + +--- Old: clamav-0.100.2.tar.gz clamav-0.100.2.tar.gz.sig clamav-freshclam-exit.patch New: clamav-0.101.2.tar.gz clamav-0.101.2.tar.gz.sig clamav-max_patch.patch clamav-str-h.patch Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.XithNk/_old 2019-04-04 15:27:43.422905362 +0200 +++ /var/tmp/diff_new_pack.XithNk/_new 2019-04-04 15:27:43.422905362 +0200 @@ -1,7 +1,7 @@ # # spec file for package clamav # -# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -16,14 +16,16 @@ # +%bcond_with clammspack + %define clamav_check --enable-check Name: clamav -Version:0.100.2 +Version:0.101.2 Release:0 Summary:Antivirus Toolkit License:GPL-2.0-only Group: Productivity/Security -URL:http://www.clamav.net +Url:http://www.clamav.net Source0: http://www.clamav.net/downloads/production/%name-%version.tar.gz Source1: http://www.clamav.net/downloads/production/%name-%version.tar.gz.sig Source4:clamav-rpmlintrc @@ -36,14 +38,20 @@ Patch4: clamav-disable-timestamps.patch Patch5: clamav-obsolete-config.patch Patch6: clamav-disable-yara.patch -Patch7: clamav-freshclam-exit.patch +Patch7: clamav-str-h.patch +#PATCH-FIX-UPSTREAM clamav-max_patch.patch +Patch8: clamav-max_patch.patch BuildRequires: autoconf BuildRequires: automake BuildRequires: bc BuildRequires: check-devel +BuildRequires: gcc-c++ BuildRequires: libbz2-devel BuildRequires: libcurl-devel BuildRequires: libjson-c-devel +%if %{without clammspack} +BuildRequires: libmspack-devel +%endif BuildRequires: libopenssl-devel BuildRequires: libtool BuildRequires: libxml2-devel @@ -78,11 +86,11 @@ support, archive support, and multiple signature languages for detecting threats. -%package -n libclamav7 +%package -n libclamav9 Summary:ClamAV antivirus engine runtime Group: System/Libraries -%description -n libclamav7 +%description -n libclamav9 ClamAV is an antivirus engine designed for detecting trojans, viruses, malware and other malicious threats. @@ -97,7 +105,7 @@ %package devel Summary:Development files f
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2018-10-04 19:03:24 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Thu Oct 4 19:03:24 2018 rev:96 rq:639958 version:0.100.2 Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2018-08-02 14:58:47.708343329 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2018-10-04 19:03:39.787066400 +0200 @@ -1,0 +2,23 @@ +Thu Oct 4 09:04:01 UTC 2018 - Reinhard Max + +- Update to version 0.100.2: + * bsc#1110723, CVE-2018-15378: Vulnerability in ClamAV's MEW +unpacking feature that could allow an unauthenticated, remote +attacker to cause a denial of service (DoS) condition on an +affected device. + * bsc#1103040, CVE-2018-14680, CVE-2018-14681, CVE-2018-14682: +more fixes for embedded libmspack. + * Make freshclam more robust against lagging signature mirrors. + * On-Access "Extra Scanning", an opt-in minor feature of +OnAccess scanning on Linux systems, has been disabled due to a +known issue with resource cleanup OnAccessExtraScanning will +be re-enabled in a future release when the issue is +resolved. In the mean-time, users who enabled the feature in +clamd.conf will see a warning informing them that the feature +is not active. For details, see: +https://bugzilla.clamav.net/show_bug.cgi?id=12048 +- Restore exit code compatibility of freshclam with versions before + 0.100.0 when the virus database is already up to date + (bsc#1104457, clamav-freshclam-exit.patch). + +--- Old: clamav-0.100.1.tar.gz clamav-0.100.1.tar.gz.sig New: clamav-0.100.2.tar.gz clamav-0.100.2.tar.gz.sig clamav-freshclam-exit.patch Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.aoYHXA/_old 2018-10-04 19:03:40.399065754 +0200 +++ /var/tmp/diff_new_pack.aoYHXA/_new 2018-10-04 19:03:40.399065754 +0200 @@ -12,13 +12,13 @@ # license that conforms to the Open Source Definition (Version 1.9) # published by the Open Source Initiative. -# Please submit bugfixes or comments via http://bugs.opensuse.org/ +# Please submit bugfixes or comments via https://bugs.opensuse.org/ # %define clamav_check --enable-check Name: clamav -Version:0.100.1 +Version:0.100.2 Release:0 Summary:Antivirus Toolkit License:GPL-2.0-only @@ -36,6 +36,7 @@ Patch4: clamav-disable-timestamps.patch Patch5: clamav-obsolete-config.patch Patch6: clamav-disable-yara.patch +Patch7: clamav-freshclam-exit.patch BuildRequires: autoconf BuildRequires: automake BuildRequires: bc @@ -111,6 +112,7 @@ %patch4 %patch5 %patch6 +%patch7 %build CFLAGS="-fstack-protector" ++ clamav-0.100.1.tar.gz -> clamav-0.100.2.tar.gz ++ /work/SRC/openSUSE:Factory/clamav/clamav-0.100.1.tar.gz /work/SRC/openSUSE:Factory/.clamav.new/clamav-0.100.2.tar.gz differ: char 5, line 1 ++ clamav-disable-timestamps.patch ++ --- /var/tmp/diff_new_pack.aoYHXA/_old 2018-10-04 19:03:40.439065711 +0200 +++ /var/tmp/diff_new_pack.aoYHXA/_new 2018-10-04 19:03:40.443065708 +0200 @@ -27,7 +27,7 @@ strncat(buf, "WARNING: sizeof(fp_digit) == sizeof(fp_word), this build is likely to not work properly.\n", --- configure.orig +++ configure -@@ -800,6 +800,7 @@ FGREP +@@ -801,6 +801,7 @@ FGREP SED LIBTOOL LIBCLAMAV_VERSION @@ -35,7 +35,7 @@ EGREP GREP CPP -@@ -902,6 +903,7 @@ ac_user_opts=' +@@ -903,6 +904,7 @@ ac_user_opts=' enable_option_checking enable_silent_rules enable_dependency_tracking @@ -43,7 +43,7 @@ enable_static enable_shared with_pic -@@ -1616,6 +1618,8 @@ Optional Features: +@@ -1619,6 +1621,8 @@ Optional Features: --disable-dependency-tracking speeds up one-time build --enable-static[=PKGS] build static libraries [default=no] @@ -52,7 +52,7 @@ --enable-shared[=PKGS] build shared libraries [default=yes] --enable-fast-install[=PKGS] optimize for fast installation [default=yes] -@@ -5211,6 +5215,26 @@ $as_echo "$ac_cv_safe_to_define___extens +@@ -5219,6 +5223,26 @@ $as_echo "$ac_cv_safe_to_define___extens $as_echo "#define _TANDEM_SOURCE 1" >>confdefs.h @@ -78,4 +78,4 @@ +_ACEOF - VERSION="0.100.1" + VERSION="0.100.2" ++ clamav-freshclam-exit.patch ++ --- freshclam/freshclam.c.orig +++ freshclam/freshclam.c @@ -714,6 +714,12 @@ main (int argc, char **argv) execute ("OnErrorExecute", opt->strarg, opts); } +if (ret == FC_U
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2018-08-02 14:58:41 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Thu Aug 2 14:58:41 2018 rev:95 rq:626690 version:0.100.1 Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2018-04-29 19:37:31.238033752 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2018-08-02 14:58:47.708343329 +0200 @@ -1,0 +2,35 @@ +Tue Jul 31 08:43:39 UTC 2018 - m...@suse.com + +- bsc#1101654: Disable YARA support for licensing reasons + (clamav-disable-yara.patch). +- Do not ignore errors from useradd et al. +- Unclutter the spec file. + +--- +Wed Jul 25 16:23:09 UTC 2018 - mplus...@suse.com + +- Update dendencies (pcre2, libjson-c and systemd) +- Modernise spec file with spec-cleaner + +--- +Tue Jul 17 14:21:35 UTC 2018 - secur...@suse.com + +- fix library-without-ldconfig warnings on libclammspack + +--- +Tue Jul 10 08:06:33 UTC 2018 - egdf...@opensuse.org + +- Update to version 0.100.1 + * CVE-2018-0360: HWP integer overflow, infinite loop +vulnerability (bsc#1101410) + * CVE-2018-0361: PDF object length check, unreasonably long time +to parse relatively small file (bsc#1101412) + * Buffer over-read in unRAR code due to missing max value checks +in table initialization + * Libmspack heap buffer over-read in CHM parser + * PDF parser bugs + * Add HTTPS support for clamsubmit + * Fix for DNS resolution for users on IPv4-only machines where +IPv6 is not available or is link-local only + +--- Old: clamav-0.100.0.tar.gz clamav-0.100.0.tar.gz.sig New: clamav-0.100.1.tar.gz clamav-0.100.1.tar.gz.sig clamav-disable-yara.patch Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.NZAwNQ/_old 2018-08-02 14:58:48.684344974 +0200 +++ /var/tmp/diff_new_pack.NZAwNQ/_new 2018-08-02 14:58:48.692344987 +0200 @@ -16,49 +16,55 @@ # +%define clamav_check --enable-check Name: clamav +Version:0.100.1 +Release:0 +Summary:Antivirus Toolkit +License:GPL-2.0-only +Group: Productivity/Security +URL:http://www.clamav.net +Source0: http://www.clamav.net/downloads/production/%name-%version.tar.gz +Source1: http://www.clamav.net/downloads/production/%name-%version.tar.gz.sig +Source4:clamav-rpmlintrc +Source6:clamav-tmpfiles.conf +Source7:service.clamd +Source8:service.freshclam +Source9:service.clamav-milter +Source11: clamav.keyring +Patch1: clamav-conf.patch +Patch4: clamav-disable-timestamps.patch +Patch5: clamav-obsolete-config.patch +Patch6: clamav-disable-yara.patch BuildRequires: autoconf BuildRequires: automake BuildRequires: bc BuildRequires: check-devel BuildRequires: libbz2-devel BuildRequires: libcurl-devel +BuildRequires: libjson-c-devel BuildRequires: libopenssl-devel BuildRequires: libtool BuildRequires: libxml2-devel BuildRequires: ncurses-devel -BuildRequires: pcre-devel +BuildRequires: pcre2-devel BuildRequires: pkgconfig BuildRequires: pwdutils BuildRequires: python-devel BuildRequires: sed BuildRequires: sendmail-devel +BuildRequires: systemd-devel +BuildRequires: systemd-rpm-macros BuildRequires: zlib-devel -%define clamav_check --enable-check -Summary:Antivirus Toolkit -License:GPL-2.0-only -Group: Productivity/Security -Version:0.100.0 -Release:0 -Url:http://www.clamav.net +Requires(pre): %_bindir/awk +Requires(pre): %_sbindir/groupadd +Requires(pre): %_sbindir/useradd +Requires(pre): %_sbindir/usermod +Requires(pre): /bin/sed +Requires(pre): /bin/tar Obsoletes: clamav-db < 0.88.3 -Provides: clamav-nodb = %{version} +Provides: clamav-nodb = %version Obsoletes: clamav-nodb <= 0.98.4 -Requires(pre): %_sbindir/groupadd %_sbindir/useradd %_sbindir/usermod -Requires(pre): /usr/bin/awk /bin/sed /bin/tar -Source0: http://www.clamav.net/downloads/production/%{name}-%{version}.tar.gz -Source1: http://www.clamav.net/downloads/production/%{name}-%{version}.tar.gz.sig -Source11: clamav.keyring -Source4:clamav-rpmlintrc -Source6:clamav-tmpfiles.conf -Source7:service.clamd -Source8:service.freshclam -Source9:service.clamav-milte
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2018-04-29 19:37:28 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Sun Apr 29 19:37:28 2018 rev:94 rq:601641 version:0.100.0 Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2018-03-08 10:59:25.953143356 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2018-04-29 19:37:31.238033752 +0200 @@ -1,0 +2,44 @@ +Thu Apr 26 15:35:15 UTC 2018 - m...@suse.com + +- Update to version 0.100.0 (bsc#1089502): + * Add interfaces to the Prelude SIEM open source package for +collecting ClamAV virus events. + * Support libmspack internal code or as a shared object +library. The internal library is the default and includes +modifications to enable parsing of CAB files that do not +entirely adhere to the CAB file format. + * Link with OpenSSL 1.1.0. + * Deprecate of the AllowSupplementaryGroups parameter +statement in clamd, clamav-milter, and freshclam. +Use of supplementary is now in effect by default. + * Deprecate internal LLVM code support. + * Compute and check PE import table hash (a.k.a. "imphash") +signatures. + * Support file property collection and analysis for MHTML files. + * Raw scanning of PostScript files. + * Fix clamsubmit to use the new virus and false positive +submission web interface. + * Optionally, flag files with the virus +"Heuristic.Limits.Exceeded" when size limitations are exceeded. + * Improved decoders for PDF files. + * Reduced number of compile time warnings. + * Improved support for C++11. + * Improved detection of system installed libraries. + * Fixes to ClamAV's Container system and the introduction of +Intermediates for more descriptive signatures. + * Improvements to clamd's On-Access scanning capabilities +for Linux. + * Obsoletes clamav-fix_newer_zlib.patch +- Update key ring and add signature file. +- Turn off LLVM for now, because the bundled copy is deprecated, + the versions we have are too new and the performance gain over + the byte code interpreter are negligable, according to upstream. +- Move pkgconfig stuff from main to devel package. +- Re-introduce removed options as deprecated, so that clamd and + freshclam don't exit on startup with an old config file + (clamav-obsolete-config.patch). +- Put libclammspack0 into its own subpackage to follow the letter + of the shlib packaging policy, even though it really makes no + sense here. + +--- Old: clamav-0.99.4.tar.gz clamav-fix_newer_zlib.patch New: clamav-0.100.0.tar.gz clamav-0.100.0.tar.gz.sig clamav-obsolete-config.patch Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.ge0bTj/_old 2018-04-29 19:37:32.062003537 +0200 +++ /var/tmp/diff_new_pack.ge0bTj/_new 2018-04-29 19:37:32.066003390 +0200 @@ -17,34 +17,28 @@ Name: clamav -BuildRequires: ncurses-devel -BuildRequires: sed -BuildRequires: sendmail-devel -%define llvm --disable-llvm -BuildRequires: bc -BuildRequires: pkgconfig -BuildRequires: zlib-devel -%ifarch %ix86 x86_64 -%define llvm --enable-llvm -# Needed for compiling LLVM. -BuildRequires: gcc-c++ -%endif BuildRequires: autoconf BuildRequires: automake +BuildRequires: bc BuildRequires: check-devel BuildRequires: libbz2-devel BuildRequires: libcurl-devel BuildRequires: libopenssl-devel BuildRequires: libtool BuildRequires: libxml2-devel +BuildRequires: ncurses-devel BuildRequires: pcre-devel +BuildRequires: pkgconfig BuildRequires: pwdutils BuildRequires: python-devel +BuildRequires: sed +BuildRequires: sendmail-devel +BuildRequires: zlib-devel %define clamav_check --enable-check Summary:Antivirus Toolkit -License:GPL-2.0 +License:GPL-2.0-only Group: Productivity/Security -Version:0.99.4 +Version:0.100.0 Release:0 Url:http://www.clamav.net Obsoletes: clamav-db < 0.88.3 @@ -53,6 +47,7 @@ Requires(pre): %_sbindir/groupadd %_sbindir/useradd %_sbindir/usermod Requires(pre): /usr/bin/awk /bin/sed /bin/tar Source0: http://www.clamav.net/downloads/production/%{name}-%{version}.tar.gz +Source1: http://www.clamav.net/downloads/production/%{name}-%{version}.tar.gz.sig Source11: clamav.keyring Source4:clamav-rpmlintrc Source6:clamav-tmpfiles.conf @@ -61,7 +56,7 @@ Source9:service.clamav-milter Patch1: clamav-conf.patch Patch4: clamav-disable-timestamps.patch -Patch5: clamav-fix_newer_zlib
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2018-03-08 10:59:17 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Thu Mar 8 10:59:17 2018 rev:93 rq:583965 version:0.99.4 Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2018-02-22 15:01:18.744450764 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2018-03-08 10:59:25.953143356 +0100 @@ -1,0 +2,13 @@ +Wed Mar 7 13:15:11 UTC 2018 - m...@suse.com + +- Update to security release 0.99.4 (bsc#1083915): + * CVE-2012-6706 + * CVE-2017-6419 + * CVE-2017-11423 + * CVE-2018-185 (bsc#1082858) + * CVE-2018-0202 +- Obsolete patches: + * clamav-CVE-2012-6706.patch + * clamav-gcc47.patch + +--- Old: clamav-0.99.3.tar.gz clamav-CVE-2012-6706.patch clamav-gcc47.patch New: clamav-0.99.4.tar.gz Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.P2AUWr/_old 2018-03-08 10:59:27.045103888 +0100 +++ /var/tmp/diff_new_pack.P2AUWr/_new 2018-03-08 10:59:27.049103742 +0100 @@ -44,7 +44,7 @@ Summary:Antivirus Toolkit License:GPL-2.0 Group: Productivity/Security -Version:0.99.3 +Version:0.99.4 Release:0 Url:http://www.clamav.net Obsoletes: clamav-db < 0.88.3 @@ -60,10 +60,8 @@ Source8:service.freshclam Source9:service.clamav-milter Patch1: clamav-conf.patch -Patch3: clamav-gcc47.patch Patch4: clamav-disable-timestamps.patch Patch5: clamav-fix_newer_zlib.patch -Patch6: clamav-CVE-2012-6706.patch BuildRequires: systemd BuildRequires: systemd-rpm-macros %systemd_requires @@ -101,10 +99,8 @@ %prep %setup -q %patch1 -p1 -%patch3 -p1 -%patch4 -p1 +%patch4 %patch5 -p1 -%patch6 %build CFLAGS="-fstack-protector" ++ clamav-0.99.3.tar.gz -> clamav-0.99.4.tar.gz ++ /work/SRC/openSUSE:Factory/clamav/clamav-0.99.3.tar.gz /work/SRC/openSUSE:Factory/.clamav.new/clamav-0.99.4.tar.gz differ: char 5, line 1 ++ clamav-disable-timestamps.patch ++ --- /var/tmp/diff_new_pack.P2AUWr/_old 2018-03-08 10:59:27.105101719 +0100 +++ /var/tmp/diff_new_pack.P2AUWr/_new 2018-03-08 10:59:27.109101574 +0100 @@ -1,7 +1,5 @@ -Index: clamav-0.99.3/libclamav/tomsfastmath/misc/fp_ident.c -=== clamav-0.99.3.orig/libclamav/tomsfastmath/misc/fp_ident.c 2018-01-26 16:31:35.516009696 +0100 -+++ clamav-0.99.3/libclamav/tomsfastmath/misc/fp_ident.c 2018-01-26 16:31:36.912029598 +0100 +--- libclamav/tomsfastmath/misc/fp_ident.c.orig libclamav/tomsfastmath/misc/fp_ident.c @@ -15,7 +15,11 @@ const char *fp_ident(void) memset(buf, 0, sizeof(buf)); @@ -27,11 +25,9 @@ if (sizeof(fp_digit) == sizeof(fp_word)) { strncat(buf, "WARNING: sizeof(fp_digit) == sizeof(fp_word), this build is likely to not work properly.\n", -Index: clamav-0.99.3/configure -=== clamav-0.99.3.orig/configure 2018-01-26 16:31:35.532009924 +0100 -+++ clamav-0.99.3/configure2018-01-26 16:32:20.112645407 +0100 -@@ -783,6 +783,7 @@ FGREP +--- configure.orig configure +@@ -785,6 +785,7 @@ FGREP SED LIBTOOL LIBCLAMAV_VERSION @@ -39,7 +35,7 @@ EGREP GREP CPP -@@ -885,6 +886,7 @@ ac_user_opts=' +@@ -887,6 +888,7 @@ ac_user_opts=' enable_option_checking enable_silent_rules enable_dependency_tracking @@ -47,7 +43,7 @@ enable_static enable_shared with_pic -@@ -1591,6 +1593,8 @@ Optional Features: +@@ -1594,6 +1596,8 @@ Optional Features: --disable-dependency-tracking speeds up one-time build --enable-dependency-tracking do not reject slow dependency extractors --enable-static[=PKGS] build static libraries [default=no] @@ -56,7 +52,7 @@ --enable-shared[=PKGS] build shared libraries [default=yes] --enable-fast-install[=PKGS] optimize for fast installation [default=yes] -@@ -4967,6 +4971,26 @@ $as_echo "$ac_cv_safe_to_define___extens +@@ -4989,6 +4993,26 @@ $as_echo "$ac_cv_safe_to_define___extens $as_echo "#define _TANDEM_SOURCE 1" >>confdefs.h @@ -82,4 +78,4 @@ +_ACEOF - VERSION="0.99.3" + VERSION="0.99.4"
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2018-02-22 15:01:15 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Thu Feb 22 15:01:15 2018 rev:92 rq:578702 version:0.99.3 Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2018-02-14 10:52:46.283201713 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2018-02-22 15:01:18.744450764 +0100 @@ -1,0 +2,7 @@ +Wed Feb 14 12:21:39 UTC 2018 - m...@suse.com + +- bsc#1045490, CVE-2012-6706: VMSF_DELTA filter in libclamunrar + allows arbitrary memory write (clamav-CVE-2012-6706.patch). +- Buildrequire curl-devel to enable clamsubmit. + +--- New: clamav-CVE-2012-6706.patch Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.sm1hcT/_old 2018-02-22 15:01:20.120401264 +0100 +++ /var/tmp/diff_new_pack.sm1hcT/_new 2018-02-22 15:01:20.124401120 +0100 @@ -33,6 +33,7 @@ BuildRequires: automake BuildRequires: check-devel BuildRequires: libbz2-devel +BuildRequires: libcurl-devel BuildRequires: libopenssl-devel BuildRequires: libtool BuildRequires: libxml2-devel @@ -62,6 +63,7 @@ Patch3: clamav-gcc47.patch Patch4: clamav-disable-timestamps.patch Patch5: clamav-fix_newer_zlib.patch +Patch6: clamav-CVE-2012-6706.patch BuildRequires: systemd BuildRequires: systemd-rpm-macros %systemd_requires @@ -102,6 +104,7 @@ %patch3 -p1 %patch4 -p1 %patch5 -p1 +%patch6 %build CFLAGS="-fstack-protector" ++ clamav-CVE-2012-6706.patch ++ --- libclamunrar/unrarvm.c.orig +++ libclamunrar/unrarvm.c @@ -26,6 +26,13 @@ #include "libclamunrar/unrarvm.h" #include "libclamunrar/unrarcmd.h" +/* + * Limit maximum number of channels in RAR3 delta filter to some + * reasonable value to prevent too slow processing of corrupt archives + * with invalid channels number. + */ +#define MAX3_UNPACK_CHANNELS 1024 + #ifdef RAR_HIGH_DEBUG #define rar_dbgmsg printf #else @@ -340,8 +347,8 @@ static void filter_itanium_setbits(unsig static void execute_standard_filter(rarvm_data_t *rarvm_data, rarvm_standard_filters_t filter_type) { unsigned char *data, cmp_byte2, cur_byte, *src_data, *dest_data; - int i, j, data_size, channels, src_pos, dest_pos, border, width, PosR; - int op_type, cur_channel, byte_count, start_pos, pa, pb, pc; + int i, j, op_type, cur_channel, byte_count, start_pos, pa, pb, pc; + unsigned int data_size, channels, src_pos, dest_pos, border, width, PosR; unsigned int file_offset, cur_pos, predicted; int32_t offset, addr; const int file_size=0x100; @@ -426,7 +433,7 @@ static void execute_standard_filter(rarv border = data_size*2; SET_VALUE(FALSE, &rarvm_data->mem[VM_GLOBALMEMADDR+0x20], data_size); - if ((unsigned int)data_size >= VM_GLOBALMEMADDR/2) { + if ((unsigned int)data_size >= VM_GLOBALMEMADDR/2 || channels > MAX3_UNPACK_CHANNELS) { break; } for (cur_channel=0 ; cur_channel < channels ; cur_channel++) {
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2018-02-14 10:52:43 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Wed Feb 14 10:52:43 2018 rev:91 rq:576419 version:0.99.3 Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2018-01-28 20:33:26.978815999 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2018-02-14 10:52:46.283201713 +0100 @@ -1,0 +2,5 @@ +Tue Feb 13 08:50:55 UTC 2018 - vark...@suse.com + +- bsc=983938 `After=syslog.target` left-overs in several unit files + +--- Other differences: -- ++ service.clamav-milter ++ --- /var/tmp/diff_new_pack.xdSf5w/_old 2018-02-14 10:52:47.667151899 +0100 +++ /var/tmp/diff_new_pack.xdSf5w/_new 2018-02-14 10:52:47.671151755 +0100 @@ -1,6 +1,6 @@ [Unit] Description=Clamav antivirus milter daemon -After=syslog.target network.target freshclam.service +After=network.target freshclam.service Requires=freshclam.service [Service] ++ service.clamd ++ --- /var/tmp/diff_new_pack.xdSf5w/_old 2018-02-14 10:52:47.691151035 +0100 +++ /var/tmp/diff_new_pack.xdSf5w/_new 2018-02-14 10:52:47.691151035 +0100 @@ -1,6 +1,6 @@ [Unit] Description=Clamav antivirus Deamon -After=syslog.target network.target freshclam.service +After=network.target freshclam.service Requires=freshclam.service [Service] ++ service.freshclam ++ --- /var/tmp/diff_new_pack.xdSf5w/_old 2018-02-14 10:52:47.711150315 +0100 +++ /var/tmp/diff_new_pack.xdSf5w/_new 2018-02-14 10:52:47.711150315 +0100 @@ -1,6 +1,6 @@ [Unit] Description=Freshclam virus definitions downloader -After=syslog.target network.target +After=network.target [Service] Type=forking
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2018-01-28 20:32:09 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Sun Jan 28 20:32:09 2018 rev:90 rq:569980 version:0.99.3 Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2017-11-29 10:54:23.332886685 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2018-01-28 20:33:26.978815999 +0100 @@ -1,0 +2,32 @@ +Fri Jan 26 15:19:33 UTC 2018 - vci...@suse.com + +- Update to security release 0.99.3 (bsc#1077732) + * CVE-2017-12376 (ClamAV Buffer Overflow in handle_pdfname Vulnerability) + * CVE-2017-12377 (ClamAV Mew Packet Heap Overflow Vulnerability) + * CVE-2017-12379 (ClamAV Buffer Overflow in messageAddArgument Vulnerability) +- these vulnerabilities could have allowed an unauthenticated, + remote attacker to cause a denial of service (DoS) condition + or potentially execute arbitrary code on an affected device. + * CVE-2017-12374 (ClamAV use-after-free Vulnerabilities) + * CVE-2017-12375 (ClamAV Buffer Overflow Vulnerability) + * CVE-2017-12378 (ClamAV Buffer Over Read Vulnerability) + * CVE-2017-12380 (ClamAV Null Dereference Vulnerability) +- these vulnerabilities could have allowed an unauthenticated, + remote attacker to cause a denial of service (DoS) condition on an affected device. + * CVE-2017-6420 (bsc#1052448) +- this vulnerability allowed remote attackers to cause a denial of service + (use-after-free) via a crafted PE file with WWPack compression. + * CVE-2017-6419 (bsc#1052449) +- ClamAV allowed remote attackers to cause a denial of service + (heap-based buffer overflow and application crash) or possibly + have unspecified other impact via a crafted CHM file. + * CVE-2017-11423 (bsc#1049423) +- The cabd_read_string function in mspack/cabd.c in libmspack 0.5alpha + allowed remote attackers to cause a denial of service + (stack-based buffer over-read and application crash) via a crafted CAB file. + * CVE-2017-6418 (bsc#1052466) +- ClamAV 0.99.2 allowed remote attackers to cause a denial + of service (out-of-bounds read) via a crafted e-mail message. +- drop clamav-0.99.2-openssl-1.1.patch (upstream) + +--- Old: clamav-0.99.2-openssl-1.1.patch clamav-0.99.2.tar.gz New: clamav-0.99.3.tar.gz Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.t4kjQj/_old 2018-01-28 20:33:27.914772280 +0100 +++ /var/tmp/diff_new_pack.t4kjQj/_new 2018-01-28 20:33:27.918772093 +0100 @@ -1,7 +1,7 @@ # # spec file for package clamav # -# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -43,7 +43,7 @@ Summary:Antivirus Toolkit License:GPL-2.0 Group: Productivity/Security -Version:0.99.2 +Version:0.99.3 Release:0 Url:http://www.clamav.net Obsoletes: clamav-db < 0.88.3 @@ -62,8 +62,6 @@ Patch3: clamav-gcc47.patch Patch4: clamav-disable-timestamps.patch Patch5: clamav-fix_newer_zlib.patch -# https://raw.githubusercontent.com/patch-exchange/openssl-1.1-transition/master/clamav/clamav-0.99.2-openssl-1.1.patch -Patch6: clamav-0.99.2-openssl-1.1.patch BuildRequires: systemd BuildRequires: systemd-rpm-macros %systemd_requires @@ -104,10 +102,6 @@ %patch3 -p1 %patch4 -p1 %patch5 -p1 -if pkg-config --atleast-version=1.1.0 libssl; then -%patch6 -p1 -autoreconf -i -f -fi %build CFLAGS="-fstack-protector" ++ clamav-0.99.2.tar.gz -> clamav-0.99.3.tar.gz ++ /work/SRC/openSUSE:Factory/clamav/clamav-0.99.2.tar.gz /work/SRC/openSUSE:Factory/.clamav.new/clamav-0.99.3.tar.gz differ: char 5, line 1 ++ clamav-disable-timestamps.patch ++ --- /var/tmp/diff_new_pack.t4kjQj/_old 2018-01-28 20:33:27.962770038 +0100 +++ /var/tmp/diff_new_pack.t4kjQj/_new 2018-01-28 20:33:27.962770038 +0100 @@ -1,7 +1,7 @@ -Index: clamav-0.99.2/libclamav/tomsfastmath/misc/fp_ident.c +Index: clamav-0.99.3/libclamav/tomsfastmath/misc/fp_ident.c === clamav-0.99.2.orig/libclamav/tomsfastmath/misc/fp_ident.c -+++ clamav-0.99.2/libclamav/tomsfastmath/misc/fp_ident.c +--- clamav-0.99.3.orig/libclamav/tomsfastmath/misc/fp_ident.c 2018-01-26 16:31:35.516009696 +0100 clamav-0.99.3/libclamav/tomsfas
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2017-11-29 10:54:11 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Wed Nov 29 10:54:11 2017 rev:89 rq:546176 version:0.99.2 Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2017-10-09 19:47:37.781143634 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2017-11-29 10:54:23.332886685 +0100 @@ -1,0 +2,5 @@ +Tue Nov 28 08:30:04 UTC 2017 - meiss...@suse.com + +- clamav-0.99.2-openssl-1.1.patch: fixed build against openssl 1.1 + +--- New: clamav-0.99.2-openssl-1.1.patch Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.gbbhjH/_old 2017-11-29 10:54:24.292851857 +0100 +++ /var/tmp/diff_new_pack.gbbhjH/_new 2017-11-29 10:54:24.296851713 +0100 @@ -29,9 +29,12 @@ # Needed for compiling LLVM. BuildRequires: gcc-c++ %endif +BuildRequires: autoconf +BuildRequires: automake BuildRequires: check-devel BuildRequires: libbz2-devel BuildRequires: libopenssl-devel +BuildRequires: libtool BuildRequires: libxml2-devel BuildRequires: pcre-devel BuildRequires: pwdutils @@ -59,6 +62,8 @@ Patch3: clamav-gcc47.patch Patch4: clamav-disable-timestamps.patch Patch5: clamav-fix_newer_zlib.patch +# https://raw.githubusercontent.com/patch-exchange/openssl-1.1-transition/master/clamav/clamav-0.99.2-openssl-1.1.patch +Patch6: clamav-0.99.2-openssl-1.1.patch BuildRequires: systemd BuildRequires: systemd-rpm-macros %systemd_requires @@ -99,6 +104,10 @@ %patch3 -p1 %patch4 -p1 %patch5 -p1 +if pkg-config --atleast-version=1.1.0 libssl; then +%patch6 -p1 +autoreconf -i -f +fi %build CFLAGS="-fstack-protector" ++ clamav-0.99.2-openssl-1.1.patch ++ --- clamav-0.99.2/libclamav/crypto.c.omv~ 2016-09-18 18:11:34.723085234 +0200 +++ clamav-0.99.2/libclamav/crypto.c2016-09-18 18:11:48.296898159 +0200 @@ -121,7 +121,7 @@ time_t timegm(struct tm *t) int cl_initialize_crypto(void) { SSL_load_error_strings(); -SSL_library_init(); +OPENSSL_init_ssl(0, NULL); OpenSSL_add_all_digests(); OpenSSL_add_all_algorithms(); OpenSSL_add_all_ciphers(); --- clamav-0.99.2/m4/reorganization/libs/openssl.m4.omv~2016-09-18 18:11:11.071411211 +0200 +++ clamav-0.99.2/m4/reorganization/libs/openssl.m4 2016-09-18 18:11:22.872248566 +0200 @@ -41,7 +41,7 @@ fi have_ssl="no" have_crypto="no" -AC_CHECK_LIB([ssl], [SSL_library_init], [have_ssl="yes"], [AC_MSG_ERROR([Your OpenSSL installation is misconfigured or missing])], [-lcrypto -lz]) +AC_CHECK_LIB([ssl], [OPENSSL_init_ssl], [have_ssl="yes"], [AC_MSG_ERROR([Your OpenSSL installation is misconfigured or missing])], [-lcrypto -lz]) AC_CHECK_LIB([crypto], [EVP_EncryptInit], [have_crypto="yes"], [AC_MSG_ERROR([Your OpenSSL installation is misconfigured or missing])], [-lcrypto -lz]) --- clamav-0.99.2/libclamav/crypto.c.omv~ 2016-09-18 18:15:48.514588018 +0200 +++ clamav-0.99.2/libclamav/crypto.c2016-09-18 18:18:26.332413758 +0200 @@ -1110,7 +1110,7 @@ X509_CRL *cl_load_crl(const char *file) fclose(fp); if ((x)) { -tm = cl_ASN1_GetTimeT(x->crl->nextUpdate); +tm = cl_ASN1_GetTimeT(X509_CRL_get0_nextUpdate(x)); if (!(tm)) { X509_CRL_free(x); return NULL;
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2017-10-09 19:44:11 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Mon Oct 9 19:44:11 2017 rev:88 rq:532408 version:0.99.2 Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2017-09-07 22:15:51.964552542 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2017-10-09 19:47:37.781143634 +0200 @@ -1,0 +2,5 @@ +Tue Sep 5 23:30:39 UTC 2017 - jeng...@inai.de + +- Implement shared library guideline. + +--- Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.GITJP6/_old 2017-10-09 19:47:38.581108476 +0200 +++ /var/tmp/diff_new_pack.GITJP6/_new 2017-10-09 19:47:38.585108300 +0200 @@ -73,6 +73,26 @@ support, archive support, and multiple signature languages for detecting threats. +%package -n libclamav7 +Summary:ClamAV antivirus engine runtime +Group: System/Libraries + +%description -n libclamav7 +ClamAV is an antivirus engine designed for detecting trojans, +viruses, malware and other malicious threats. + +%package devel +Summary:Development files for libclamav, an antivirus engine +Group: Development/Libraries/C and C++ +Requires: libclamav7 = %version + +%description devel +ClamAV is an antivirus engine designed for detecting trojans, +viruses, malware and other malicious threats. + +This subpackage contains header files for developing applications +that want to make use of libclamav. + %prep %setup -q %patch1 -p1 @@ -106,7 +126,7 @@ make V=1 %{?_smp_mflags} %install -%makeinstall +%make_install install -d -m755 %buildroot/var/lib/clamav install -d -m755 %buildroot/%_tmpfilesdir install -m644 %{S:6} %buildroot%_tmpfilesdir/clamav.conf @@ -144,6 +164,9 @@ VALGRIND_GENSUP=1 make check %endif +%post -n libclamav7 -p /sbin/ldconfig +%postun -n libclamav7 -p /sbin/ldconfig + %files %defattr(-,root,root,-) %config(noreplace) %_sysconfdir/*.conf @@ -157,14 +180,21 @@ %doc %_mandir/*/* %_bindir/* %_sbindir/* -%_includedir/* -%_libdir/lib* %_libdir/pkgconfig/libclamav.pc %defattr(-,vscan,vscan) %dir %attr(750,vscan,vscan) /var/spool/amavis %dir /var/lib/clamav %ghost %attr(755,vscan,vscan) /run/clamav +%files -n libclamav7 +%defattr(-,root,root) +%_libdir/libclam*.so.7* + +%files devel +%defattr(-,root,root) +%_libdir/libclam*.so +%_includedir/* + %pre getent group vscan >/dev/null || %_sbindir/groupadd -r vscan || : getent passwd vscan >/dev/null || \ @@ -174,7 +204,6 @@ %service_add_pre clamd.service freshclam.service clamav-milter.service %post -/sbin/ldconfig systemd-tmpfiles --create %_tmpfilesdir/clamav.conf %service_add_post clamd.service freshclam.service clamav-milter.service @@ -182,7 +211,6 @@ %service_del_preun clamd.service freshclam.service clamav-milter.service %postun -/sbin/ldconfig %service_del_postun clamd.service freshclam.service clamav-milter.service %changelog
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2017-09-07 22:15:04 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Thu Sep 7 22:15:04 2017 rev:87 rq:521169 version:0.99.2 Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2016-11-14 20:13:45.0 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2017-09-07 22:15:51.964552542 +0200 @@ -1,0 +2,17 @@ +Mon Aug 21 13:41:14 UTC 2017 - fv...@suse.com + +- Add clamav-fix_newer_zlib.patch from ubuntu packages to fix build with + zlib 1.2.11 (boo#1041201) + +--- +Tue Aug 1 18:40:35 CEST 2017 - r...@suse.de + +- pass --disable-zlib-vcheck to fix build in factory + +--- +Mon May 29 14:25:26 UTC 2017 - astie...@suse.com + +- provide and obsolete clamav-nodb to trigger it's removal in Leap + bsc#1040662 + +--- New: clamav-fix_newer_zlib.patch Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.mpskeV/_old 2017-09-07 22:15:53.460341760 +0200 +++ /var/tmp/diff_new_pack.mpskeV/_new 2017-09-07 22:15:53.464341197 +0200 @@ -1,7 +1,7 @@ # # spec file for package clamav # -# Copyright (c) 2016 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -44,6 +44,8 @@ Release:0 Url:http://www.clamav.net Obsoletes: clamav-db < 0.88.3 +Provides: clamav-nodb = %{version} +Obsoletes: clamav-nodb <= 0.98.4 Requires(pre): %_sbindir/groupadd %_sbindir/useradd %_sbindir/usermod Requires(pre): /usr/bin/awk /bin/sed /bin/tar Source0: http://www.clamav.net/downloads/production/%{name}-%{version}.tar.gz @@ -56,6 +58,7 @@ Patch1: clamav-conf.patch Patch3: clamav-gcc47.patch Patch4: clamav-disable-timestamps.patch +Patch5: clamav-fix_newer_zlib.patch BuildRequires: systemd BuildRequires: systemd-rpm-macros %systemd_requires @@ -75,6 +78,7 @@ %patch1 -p1 %patch3 -p1 %patch4 -p1 +%patch5 -p1 %build CFLAGS="-fstack-protector" @@ -96,6 +100,7 @@ %clamav_check \ %llvm \ --enable-clamdtop \ + --disable-zlib-vcheck \ --disable-timestamps make V=1 %{?_smp_mflags} ++ clamav-fix_newer_zlib.patch ++ Description: fix compatibility with zlib 1.2.9 and newer Author: Marc Deslauriers Bug-Ubuntu: https://bugs.launchpad.net/ubuntu/+source/clamav/+bug/1692073 Index: clamav-0.99.2+dfsg/libclamav/bytecode_api.c === --- clamav-0.99.2+dfsg.orig/libclamav/bytecode_api.c2017-08-08 15:20:06.651685637 -0400 +++ clamav-0.99.2+dfsg/libclamav/bytecode_api.c 2017-08-15 15:45:14.645714766 -0400 @@ -811,8 +811,20 @@ int32_t cli_bcapi_inflate_init(struct cl cli_dbgmsg("bytecode api: inflate_init: invalid buffers!\n"); return -1; } -memset(&stream, 0, sizeof(stream)); -ret = inflateInit2(&stream, windowBits); + +b = cli_realloc(ctx->inflates, sizeof(*ctx->inflates)*n); +if (!b) { +return -1; +} +ctx->inflates = b; +ctx->ninflates = n; +b = &b[n-1]; + +b->from = from; +b->to = to; +b->needSync = 0; +memset(&b->stream, 0, sizeof(stream)); +ret = inflateInit2(&b->stream, windowBits); switch (ret) { case Z_MEM_ERROR: cli_dbgmsg("bytecode api: inflateInit2: out of memory!\n"); @@ -829,20 +841,6 @@ int32_t cli_bcapi_inflate_init(struct cl cli_dbgmsg("bytecode api: inflateInit2: unknown error %d\n", ret); return -1; } - -b = cli_realloc(ctx->inflates, sizeof(*ctx->inflates)*n); -if (!b) { -inflateEnd(&stream); -return -1; -} -ctx->inflates = b; -ctx->ninflates = n; -b = &b[n-1]; - -b->from = from; -b->to = to; -b->needSync = 0; -memcpy(&b->stream, &stream, sizeof(stream)); return n-1; }
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2016-11-14 20:13:44 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2016-08-05 18:17:19.0 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2016-11-14 20:13:45.0 +0100 @@ -1,0 +2,7 @@ +Thu Oct 13 07:56:56 UTC 2016 - fwe...@suse.com + +- Add enable-timestamps option to disable time + dependent macros if passed to configure. + (bsc#1001154, clamav-disable-timestamps.patch) + +--- New: clamav-disable-timestamps.patch Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.FMyKzT/_old 2016-11-14 20:13:47.0 +0100 +++ /var/tmp/diff_new_pack.FMyKzT/_new 2016-11-14 20:13:47.0 +0100 @@ -55,6 +55,7 @@ Source9:service.clamav-milter Patch1: clamav-conf.patch Patch3: clamav-gcc47.patch +Patch4: clamav-disable-timestamps.patch BuildRequires: systemd BuildRequires: systemd-rpm-macros %systemd_requires @@ -73,6 +74,7 @@ %setup -q %patch1 -p1 %patch3 -p1 +%patch4 -p1 %build CFLAGS="-fstack-protector" ++ clamav-disable-timestamps.patch ++ Index: clamav-0.99.2/libclamav/tomsfastmath/misc/fp_ident.c === --- clamav-0.99.2.orig/libclamav/tomsfastmath/misc/fp_ident.c +++ clamav-0.99.2/libclamav/tomsfastmath/misc/fp_ident.c @@ -15,7 +15,11 @@ const char *fp_ident(void) memset(buf, 0, sizeof(buf)); snprintf(buf, sizeof(buf)-1, -"TomsFastMath (%s)\n" +#if (ENABLE_TIMESTAMPS == 1) + "TomsFastMath (%s)\n" +#else + "TomsFastMath\n" +#endif "\n" "Sizeofs\n" "\tfp_digit = %llu\n" @@ -70,7 +74,11 @@ const char *fp_ident(void) #ifdef TFM_HUGE " TFM_HUGE " #endif +#if (ENABLE_TIMESTAMPS == 1) "\n", __DATE__, (long long unsigned)sizeof(fp_digit), (long long unsigned)sizeof(fp_word), FP_MAX_SIZE); +#else +"\n", (long long unsigned)sizeof(fp_digit), (long long unsigned)sizeof(fp_word), FP_MAX_SIZE); +#endif if (sizeof(fp_digit) == sizeof(fp_word)) { strncat(buf, "WARNING: sizeof(fp_digit) == sizeof(fp_word), this build is likely to not work properly.\n", Index: clamav-0.99.2/configure === --- clamav-0.99.2.orig/configure +++ clamav-0.99.2/configure @@ -783,6 +783,7 @@ FGREP SED LIBTOOL LIBCLAMAV_VERSION +ENABLE_TIMESTAMPS EGREP GREP CPP @@ -885,6 +886,7 @@ ac_user_opts=' enable_option_checking enable_silent_rules enable_dependency_tracking +enable_timestamps enable_static enable_shared with_pic @@ -1592,6 +1594,8 @@ Optional Features: do not reject slow dependency extractors --disable-dependency-tracking speeds up one-time build + --enable-timestamps Enable embedding timestamp information in build + (default is YES) --enable-static[=PKGS] build static libraries [default=no] --enable-shared[=PKGS] build shared libraries [default=yes] --enable-fast-install[=PKGS] @@ -5163,6 +5167,26 @@ $as_echo "$ac_cv_safe_to_define___extens $as_echo "#define _TANDEM_SOURCE 1" >>confdefs.h +# Check whether --enable-timestamps was given. +if test "${enable_timestamps+set}" = set; then : + enableval=$enable_timestamps; +else + enableval=default +fi + +case "$enableval" in + yes) ENABLE_TIMESTAMPS=1 + ;; + no) ENABLE_TIMESTAMPS=0 + ;; + default) ENABLE_TIMESTAMPS=1 + ;; + *) as_fn_error $? "Invalid setting for --enable-timestamps. Use \"yes\" or \"no\"" "$LINENO" 5 ;; +esac + +cat >>confdefs.h <<_ACEOF +#define ENABLE_TIMESTAMPS $ENABLE_TIMESTAMPS +_ACEOF VERSION="0.99.2"
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2016-08-05 18:17:11 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2016-07-24 19:53:21.0 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2016-08-05 18:17:19.0 +0200 @@ -1,0 +2,12 @@ +Wed Aug 3 08:46:11 UTC 2016 - m...@suse.com + +- boo#991812: Remove obsolete dependency on latex2html-pngicons. + +--- +Thu Jul 21 14:09:26 UTC 2016 - jeng...@inai.de + +- Trim useless words from description and fix spellos. + Test for user/group existence before adding and always show + errors when they occur. + +--- Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.XU6XK8/_old 2016-08-05 18:17:21.0 +0200 +++ /var/tmp/diff_new_pack.XU6XK8/_new 2016-08-05 18:17:21.0 +0200 @@ -43,7 +43,6 @@ Version:0.99.2 Release:0 Url:http://www.clamav.net -Requires: latex2html-pngicons Obsoletes: clamav-db < 0.88.3 Requires(pre): %_sbindir/groupadd %_sbindir/useradd %_sbindir/usermod Requires(pre): /usr/bin/awk /bin/sed /bin/tar @@ -61,14 +60,14 @@ %systemd_requires %description -ClamAV is an open source (GPL) antivirus engine designed for detecting -Trojans, viruses, malware and other malicious threats. It is the de -facto standard for mail gateway scanning. It provides a high -performance mutli-threaded scanning daemon, command line utilities for -on demand file scanning, and an intelligent tool for automatic -signature updates. The core ClamAV library provides numerous file -format detection mechanisms, file unpacking support, archive support, -and multiple signature languages for detecting threats. +ClamAV is an antivirus engine designed for detecting trojans, +viruses, malware and other malicious threats. It is the de-facto +standard for mail gateway scanning. It provides a multi-threaded +scanning daemon, command line utilities for on-demand file scanning, +and a tool for automatic signature updates. The core ClamAV library +provides numerous file format detection mechanisms, file unpacking +support, archive support, and multiple signature languages for +detecting threats. %prep %setup -q @@ -97,7 +96,7 @@ --enable-clamdtop \ --disable-timestamps -make V=1 %{?jobs:-j%jobs} +make V=1 %{?_smp_mflags} %install %makeinstall @@ -160,8 +159,10 @@ %ghost %attr(755,vscan,vscan) /run/clamav %pre -%_sbindir/groupadd -r vscan 2> /dev/null || : -%_sbindir/useradd -r -o -g vscan -u 65 -s /bin/false -c "Vscan account" -d /var/spool/amavis vscan 2> /dev/null || : +getent group vscan >/dev/null || %_sbindir/groupadd -r vscan || : +getent passwd vscan >/dev/null || \ + %_sbindir/useradd -r -o -g vscan -u 65 -s /bin/false \ + -c "Vscan account" -d /var/spool/amavis vscan || : %_sbindir/usermod vscan -g vscan 2> /dev/null || : %service_add_pre clamd.service freshclam.service clamav-milter.service
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2016-07-24 19:52:48 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2016-06-25 02:23:04.0 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2016-07-24 19:53:21.0 +0200 @@ -1,0 +2,8 @@ +Thu Jun 30 13:42:20 UTC 2016 - fwe...@suse.com + +- Added BuildRequires systemd-rpm-macros +- Added %ghost entry for /run/clamav +- Use /run instead of /var/run because it is a symlink nowadays + (clamav-tmpfiles.conf) + +--- Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.6ADdr9/_old 2016-07-24 19:53:22.0 +0200 +++ /var/tmp/diff_new_pack.6ADdr9/_new 2016-07-24 19:53:22.0 +0200 @@ -57,6 +57,7 @@ Patch1: clamav-conf.patch Patch3: clamav-gcc47.patch BuildRequires: systemd +BuildRequires: systemd-rpm-macros %systemd_requires %description @@ -102,8 +103,9 @@ %makeinstall install -d -m755 %buildroot/var/lib/clamav install -d -m755 %buildroot/%_tmpfilesdir -install -m644 %SOURCE6 %buildroot%_tmpfilesdir/clamav.conf +install -m644 %{S:6} %buildroot%_tmpfilesdir/clamav.conf mkdir -p %buildroot/var/spool/amavis +mkdir -p -m 0755 %buildroot/run/clamav rm %buildroot/%_libdir/*.la # Remove bogus dependencies from libclamav.pc sed -i 's/^Libs: .*/Libs: -lclamav/' %buildroot%_libdir/pkgconfig/libclamav.pc @@ -117,9 +119,12 @@ # Systemd... install -d -m 0755 %buildroot/%{_unitdir} -install -m 0644 %{SOURCE7} %buildroot/%{_unitdir}/clamd.service -install -m 0644 %{SOURCE8} %buildroot/%{_unitdir}/freshclam.service -install -m 0644 %{SOURCE9} %buildroot/%{_unitdir}/clamav-milter.service +install -m 0644 %{S:7} %buildroot/%{_unitdir}/clamd.service +install -m 0644 %{S:8} %buildroot/%{_unitdir}/freshclam.service +install -m 0644 %{S:9} %buildroot/%{_unitdir}/clamav-milter.service +rm -f %buildroot/%{_unitdir}/clamav-daemon.service +rm -f %buildroot/%{_unitdir}/clamav-daemon.socket +rm -f %buildroot/%{_unitdir}/clamav-freshclam.service # this is broken if system does not have systemd so don't # use it at all on systems without mandatory systemd for srvname in clamd freshclam clamav-milter;do @@ -152,6 +157,7 @@ %defattr(-,vscan,vscan) %dir %attr(750,vscan,vscan) /var/spool/amavis %dir /var/lib/clamav +%ghost %attr(755,vscan,vscan) /run/clamav %pre %_sbindir/groupadd -r vscan 2> /dev/null || : ++ clamav-tmpfiles.conf ++ --- /var/tmp/diff_new_pack.6ADdr9/_old 2016-07-24 19:53:22.0 +0200 +++ /var/tmp/diff_new_pack.6ADdr9/_new 2016-07-24 19:53:22.0 +0200 @@ -1,2 +1,2 @@ -# clamav needs a directory in /var/run: -d /var/run/clamav 0755 vscan vscan - +# clamav needs a directory in /run: +d /run/clamav 0755 vscan vscan -
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2016-06-25 02:22:48 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2016-06-19 12:52:59.0 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2016-06-25 02:23:04.0 +0200 @@ -1,0 +2,53 @@ +Thu Jun 23 07:30:49 UTC 2016 - fwe...@suse.com + +- Update to version 0.99.2 (bsc#978459) + * 7z: fix for FolderStartPackStreamIndex array index heck + * print all CDBNAME entries for a zip file when using the -z +flag. + * try to minimize the err cleanup path + * clamunrar: notice if unpacking comment failed + * signature manual update. + * use temp var for realloc to prevent pointer loss. + * fix debug VI hex truncation + * freshclam: avoid random data in mirrors.dat. + * libclamav: print raw certificate metadata + * freshclam manager check return code of strdup. + * additional suppress IP notification when using proxy + * fix download and verification of *.cld through PrivateMirrors + * suppress IP notification when using proxy + * remove redundant mempool assignment + * divide out dumpcerts output for better readability + * fix dconf and option handling for nocert and dumpcert + * patch by Jim Morris to increase clamd's soft file descriptor to +its potential maximum on 64-bit systems + * Move libfreshclam config to m4/reorganization. + * adding libfreshclam + * Add 'cdb' datafile to sigtools list of datafile types. + * NULL pointer check. + * malloc() NULL pointer check. + * clamscan 'block-macros' option. + * initialize cpio name buffer + * initialize mspack decompression buffers + * prevent memory allocations on used pointers (folder objects) + * prevent memory allocations on used pointers (boolvectors) + * initialize ARJ metadata structures + * change cli_malloc with cli_calloc + * check packSizes prior to dereference + * fixed inconsistent folder state on failure + * pre-check on (*unpackSizes) dereference + * fix on pre-checks on dereferenced array + * pre-checks on dereferenced array size values (not =0) + * adding sanity checks to 7z header parsing + * fixed mew source read issue + * documentation update on targets + * filetype consistency + * move llvm option flag handling to new m4 file + * hwp5.x: fix for streams without names + +- bsc#958451: Remove updateclamconf, because it breaks + configurations that have multiple occurances of the same keyword. + + Henceforth the configuration files have to be merged manually, if + a ClamAV update adds or removs options. + +--- Old: clamav-0.99.1.tar.gz clamav-updateclamconf New: clamav-0.99.2.tar.gz Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.zEvQGE/_old 2016-06-25 02:23:05.0 +0200 +++ /var/tmp/diff_new_pack.zEvQGE/_new 2016-06-25 02:23:05.0 +0200 @@ -40,16 +40,15 @@ Summary:Antivirus Toolkit License:GPL-2.0 Group: Productivity/Security -Version:0.99.1 +Version:0.99.2 Release:0 Url:http://www.clamav.net Requires: latex2html-pngicons Obsoletes: clamav-db < 0.88.3 Requires(pre): %_sbindir/groupadd %_sbindir/useradd %_sbindir/usermod Requires(pre): /usr/bin/awk /bin/sed /bin/tar -Source0: http://downloads.sourceforge.net/clamav/%{name}-%{version}.tar.gz +Source0: http://www.clamav.net/downloads/production/%{name}-%{version}.tar.gz Source11: clamav.keyring -Source3:clamav-updateclamconf Source4:clamav-rpmlintrc Source6:clamav-tmpfiles.conf Source7:service.clamd @@ -101,7 +100,6 @@ %install %makeinstall -install -m755 %SOURCE3 %buildroot%_sbindir/updateclamconf install -d -m755 %buildroot/var/lib/clamav install -d -m755 %buildroot/%_tmpfilesdir install -m644 %SOURCE6 %buildroot%_tmpfilesdir/clamav.conf @@ -166,22 +164,6 @@ systemd-tmpfiles --create %_tmpfilesdir/clamav.conf %service_add_post clamd.service freshclam.service clamav-milter.service -# merge config files on update -test "0$1" -lt 2 && exit 0 -umask 022 -for f in /etc/clamd.conf /etc/freshclam.conf /etc/clamav-milter.conf; do - if test -e $f.rpmnew; then -echo "Merging $f and $f.rpmnew" -%_sbindir/updateclamconf -v override="$OVERRIDE" $f $f.rpmnew > $f.tmp -if test $? = 0; then - mv $f $f.old - mv $f.tmp $f -else - echo "Merging $f with $f.rpmnew failed" -fi - fi -done - %preun %service_del_preun clamd.service freshclam.s
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2016-06-19 12:52:58 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2016-03-08 10:18:35.0 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2016-06-19 12:52:59.0 +0200 @@ -1,0 +2,5 @@ +Fri Jun 17 10:07:51 UTC 2016 - martin.li...@suse.com + +- Change default C++ std to -std=gnu++98. + +--- Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.g7XKRt/_old 2016-06-19 12:53:00.0 +0200 +++ /var/tmp/diff_new_pack.g7XKRt/_new 2016-06-19 12:53:00.0 +0200 @@ -79,7 +79,7 @@ CFLAGS="-fstack-protector" CXXFLAGS="-fstack-protector" export CFLAGS="%optflags $CFLAGS -fPIE -fno-strict-aliasing" -export CXXFLAGS="%optflags $CXXFLAGS -fPIE -fno-strict-aliasing" +export CXXFLAGS="%optflags $CXXFLAGS -fPIE -fno-strict-aliasing -std=gnu++98" export LDFLAGS="-pie" %if "%_lib" == "lib64" # tomsfastmath needs this for correct operation on 64-bit platforms
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2016-03-08 09:39:15 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2016-01-15 10:41:42.0 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2016-03-08 10:18:35.0 +0100 @@ -1,0 +2,55 @@ +Thu Mar 3 11:30:10 UTC 2016 - ec...@opensuse.org + +- Update to version 0.99.1 + * hwp5.x: fix for streams without names + * libclamav: yara: avoid unaliged access to 64bit variable + * patch by Mark Allan to add show-progress option to freshclam. + * added 'CustomXML' as trigger for likely OOXML + * ClamAV 0.99.1 beta1 release. + * add scanning options for scanning xml-based documents + (MSXML, OOXML, HWPML) and HWP3 + * add dconfs for XDP, MBR, GPT, APM, OOXML, MSXML, and HWP formats + * hwp: scan decompressed data on limits exceeded + * Fix for signature name length<3 in .ign & .ign2 CVD files. + * Change RTF file magic from '{\rtf' to '{\rt' + * zeroing out buffer at allocation to avoid writing uninitialized + bytes to a file + * adding check for compressed input stream + * clean up and boost accuracy to detecting OOXML documents + * Fix crash when using pcre statistics due to inconsistent memory + management function calls + * adding check to verify a valid number of rounds for rijndael aes + encryption/decryption + * fixing edge case revealed by unit testing + * let html be scanned raw when --scan-html=no is in effect. + * fix crash due to memory overlay with crafted 7z files. + * fixing off by one OOB write in htmlnorm + * fixing autoit OOB bufferread + * sigtool: adding support for decoding cdb sigs + * fix embedded http links. + * fix regression crash on sid 1005597703 due to uninitialzed + (i.e., garbage initialized) structure. + * corrects mso stream prefix value for big endian processors. + * ooxml_hwp: add support for filetyping and preclassification + * hwpole2: new filetype and handler for hwp embedded ole2 files + * fixing possible oob dereference when parsing mbox files + * adding explicit wwunpack oob checks + * fixing edge case where a null terminator was unintentionally + written into an adjacent buffer. + * hwpml: use msxml_parser callback scanner for binary data + * msxml_parser: add callback-based scanning mechanism + * HWPML: added hwpml_keys for hwpml parsing + * add HMPML filetype, tab fixes in filetype.c + * Hwp3.x: inflate compressed segment and offset tracking + * Hwp3.x file header parsing and preclass + * pcre: fixed minimum pcre version check + * fix detection of libcheck without pkg-config file + * add HWP5 filetype tracking to preclassification + * add HWP 3.x internal filetypes + * add hwp5 contents to preclass set + * proper identification of HWP file format + * strengthen file typing for OOXML. + * normalization of whitelist signatures + * github issue #9 - wrong length & offset. + +--- Old: clamav-0.99.tar.gz New: clamav-0.99.1.tar.gz Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.Y9gMVi/_old 2016-03-08 10:18:36.0 +0100 +++ /var/tmp/diff_new_pack.Y9gMVi/_new 2016-03-08 10:18:36.0 +0100 @@ -1,7 +1,7 @@ # # spec file for package clamav # -# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2016 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -40,7 +40,7 @@ Summary:Antivirus Toolkit License:GPL-2.0 Group: Productivity/Security -Version:0.99 +Version:0.99.1 Release:0 Url:http://www.clamav.net Requires: latex2html-pngicons ++ clamav-0.99.tar.gz -> clamav-0.99.1.tar.gz ++ /work/SRC/openSUSE:Factory/clamav/clamav-0.99.tar.gz /work/SRC/openSUSE:Factory/.clamav.new/clamav-0.99.1.tar.gz differ: char 5, line 1
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2016-01-15 10:41:40 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2015-12-16 17:43:28.0 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2016-01-15 10:41:42.0 +0100 @@ -1,0 +2,5 @@ +Fri Dec 25 19:22:23 UTC 2015 - meiss...@suse.com + +- now can handle regexp using signatures using pcre bsc#960237 + +--- Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.kxpayd/_old 2016-01-15 10:41:43.0 +0100 +++ /var/tmp/diff_new_pack.kxpayd/_new 2016-01-15 10:41:43.0 +0100 @@ -33,6 +33,7 @@ BuildRequires: libbz2-devel BuildRequires: libopenssl-devel BuildRequires: libxml2-devel +BuildRequires: pcre-devel BuildRequires: pwdutils BuildRequires: python-devel %define clamav_check --enable-check
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2015-12-16 17:42:46 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2015-12-06 07:41:05.0 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2015-12-16 17:43:28.0 +0100 @@ -1,0 +2,5 @@ +Thu Dec 3 14:17:02 UTC 2015 - m...@suse.com + +- Version 0.99 fixes bsc#957728. + +--- Other differences: --
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2015-12-06 07:41:03 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2015-07-03 00:02:31.0 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2015-12-06 07:41:05.0 +0100 @@ -1,0 +2,32 @@ +Wed Dec 2 13:23:40 UTC 2015 - p.drou...@gmail.com + +- Update to version 0.99 + * Processing of YARA rules(some limitations- see signatures.pdf). + * Support in ClamAV logical signatures for many of the features +added for YARA, such as Perl Compatible Regular Expressions, +alternate strings, and YARA string attributes. See signatures.pdf +for full details. + * New and improved on-access scanning for Linux. See the recent blog +post and clamdoc.pdf for details on the new on-access capabilities. + * A new ClamAV API callback function that is invoked when a virus +is found. This is intended primarily for applications running in +all-match mode. Any applications using all-match mode must use +the new callback function to record and report detected viruses. + * Configurable default password list to attempt zip file decryption. + * TIFF file support. + * Upgrade Windows pthread library to 2.9.1. + * A new signature target type for designating signatures to run +against files with unknown file types. + * Improved fidelity of the "data loss prevention" heuristic +algorithm. Code supplied by Bill Parker. + * Support for LZMA decompression within Adobe Flash files. + * Support for MSO attachments within Microsoft Office 2003 XML files. + * A new sigtool option(--ascii-normalize) allowing signature authors +to more easily generate normalized versions of ascii files. + * Windows installation directories changed from \Program Files\Sourcefire\ +ClamAV to \Program Files\ClamAV or \Program Files\ClamAV-x64. +- Refactor a little the specfile; remove some obsolete conditional + macros, as clamav doesn't build for SLE11 anyway +- Remove clamav-sles9.patch; sles9 is not supported for a while + +--- Old: clamav-0.98.7.tar.gz clamav-sles9.patch New: clamav-0.99.tar.gz Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.1GOPzm/_old 2015-12-06 07:41:07.0 +0100 +++ /var/tmp/diff_new_pack.1GOPzm/_new 2015-12-06 07:41:07.0 +0100 @@ -16,14 +16,11 @@ # -%{!?_tmpfilesdir:%global _tmpfilesdir /usr/lib/tmpfiles.d} - Name: clamav BuildRequires: ncurses-devel BuildRequires: sed BuildRequires: sendmail-devel %define llvm --disable-llvm -%if 0%{?suse_version} >= 1010 BuildRequires: bc BuildRequires: pkgconfig BuildRequires: zlib-devel @@ -32,8 +29,6 @@ # Needed for compiling LLVM. BuildRequires: gcc-c++ %endif -%endif -%if 0%{?suse_version} >= 1030 BuildRequires: check-devel BuildRequires: libbz2-devel BuildRequires: libopenssl-devel @@ -41,20 +36,16 @@ BuildRequires: pwdutils BuildRequires: python-devel %define clamav_check --enable-check -%else -BuildRequires: bzip2 -%define clamav_check --disable-check -%endif Summary:Antivirus Toolkit License:GPL-2.0 Group: Productivity/Security -Version:0.98.7 +Version:0.99 Release:0 Url:http://www.clamav.net Requires: latex2html-pngicons Obsoletes: clamav-db < 0.88.3 -PreReq: %_sbindir/groupadd %_sbindir/useradd %_sbindir/usermod -PreReq: /usr/bin/awk /bin/sed /bin/tar +Requires(pre): %_sbindir/groupadd %_sbindir/useradd %_sbindir/usermod +Requires(pre): /usr/bin/awk /bin/sed /bin/tar Source0: http://downloads.sourceforge.net/clamav/%{name}-%{version}.tar.gz Source11: clamav.keyring Source3:clamav-updateclamconf @@ -64,9 +55,7 @@ Source8:service.freshclam Source9:service.clamav-milter Patch1: clamav-conf.patch -Patch2: clamav-sles9.patch Patch3: clamav-gcc47.patch -BuildRoot: %{_tmppath}/%{name}-%{version}-build BuildRequires: systemd %systemd_requires @@ -83,33 +72,19 @@ %prep %setup -q %patch1 -p1 -%if 0%{?suse_version} == 0910 -# SLES9's libmilter doesn't have smfi_insheader() -%patch2 -%endif %patch3 -p1 %build -%if 0%{?suse_version} >= 1010 CFLAGS="-fstack-protector" CXXFLAGS="-fstack-protector" -%endif -export CFLAGS="%optflags $CFLAGS -fPIE" -export CXXFLAGS="%optflags $CXXFLAGS -fPIE" +export CFLAGS="%optflags $CFLAGS -fPIE -fno-strict-aliasing" +export CXXFLAGS="%optflags $CXX
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2015-07-02 22:50:45 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2015-05-07 08:29:24.0 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2015-07-03 00:02:31.0 +0200 @@ -1,0 +2,6 @@ +Wed Jul 1 12:17:04 UTC 2015 - mplus...@suse.com + +- Make clamd and clamav-milter services depend on freshclam as + they need it + +--- Other differences: -- ++ service.clamav-milter ++ --- /var/tmp/diff_new_pack.s24hZ6/_old 2015-07-03 00:02:32.0 +0200 +++ /var/tmp/diff_new_pack.s24hZ6/_new 2015-07-03 00:02:32.0 +0200 @@ -1,6 +1,7 @@ [Unit] Description=Clamav antivirus milter daemon -After=syslog.target network.target +After=syslog.target network.target freshclam.service +Requires=freshclam.service [Service] Type=forking ++ service.clamd ++ --- /var/tmp/diff_new_pack.s24hZ6/_old 2015-07-03 00:02:32.0 +0200 +++ /var/tmp/diff_new_pack.s24hZ6/_new 2015-07-03 00:02:32.0 +0200 @@ -1,6 +1,7 @@ [Unit] Description=Clamav antivirus Deamon -After=syslog.target network.target +After=syslog.target network.target freshclam.service +Requires=freshclam.service [Service] Type=forking
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2015-05-07 08:29:09 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2015-02-06 22:38:09.0 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2015-05-07 08:29:24.0 +0200 @@ -1,0 +2,33 @@ +Mon May 4 13:39:49 UTC 2015 - m...@suse.com + +- Version 0.98.7 fixes several security issues (bsc#929192) and + other bug fixes/improvements: + * Fix crash in upx decoder with crafted file. Discovered and +patch supplied by Sebastian Andrzej Siewior. CVE-2015-2170. + * Fix infinite loop condition on crafted y0da cryptor +file. Identified and patch suggested by Sebastian Andrzej +Siewior. CVE-2015-2221. + * Fix crash on crafted petite packed file. Reported and patch +supplied by Sebastian Andrzej Siewior. CVE-2015-. + * Fix an infinite loop condition on a crafted "xz" archive file. +This was reported by Dimitri Kirchner and Goulven Guiheux. +CVE-2015-2668. + * Apply upstream patch for possible heap overflow in Henry +Spencer's regex library. CVE-2015-2305. + * Fix false negatives on files within iso9660 containers. This +issue was reported by Minzhuan Gong. + * Fix a couple crashes on crafted upack packed file. Identified +and patches supplied by Sebastian Andrzej Siewior. + * Fix a crash during algorithmic detection on crafted PE file. +Identified and patch supplied by Sebastian Andrzej Siewior. + * Fix compilation error after ./configure --disable-pthreads. +Reported and fix suggested by John E. Krokes. + * Fix segfault scanning certain HTML files. Reported with sample +by Kai Risku. + * Improve detections within xar/pkg files. + * Improvements to PDF processing: decryption, escape sequence +handling, and file property collection. + * Scanning/analysis of additional Microsoft Office 2003 XML +format. + +--- Old: clamav-0.98.6.tar.gz clamav-0.98.6.tar.gz.sig New: clamav-0.98.7.tar.gz Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.sFQLql/_old 2015-05-07 08:29:25.0 +0200 +++ /var/tmp/diff_new_pack.sFQLql/_new 2015-05-07 08:29:25.0 +0200 @@ -1,7 +1,7 @@ # # spec file for package clamav # -# Copyright (c) 2015 SUSE LINUX Products GmbH, Nuernberg, Germany. +# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -48,7 +48,7 @@ Summary:Antivirus Toolkit License:GPL-2.0 Group: Productivity/Security -Version:0.98.6 +Version:0.98.7 Release:0 Url:http://www.clamav.net Requires: latex2html-pngicons @@ -56,7 +56,6 @@ PreReq: %_sbindir/groupadd %_sbindir/useradd %_sbindir/usermod PreReq: /usr/bin/awk /bin/sed /bin/tar Source0: http://downloads.sourceforge.net/clamav/%{name}-%{version}.tar.gz -Source10: http://downloads.sourceforge.net/clamav/%{name}-%{version}.tar.gz.sig Source11: clamav.keyring Source3:clamav-updateclamconf Source4:clamav-rpmlintrc ++ clamav-0.98.6.tar.gz -> clamav-0.98.7.tar.gz ++ /work/SRC/openSUSE:Factory/clamav/clamav-0.98.6.tar.gz /work/SRC/openSUSE:Factory/.clamav.new/clamav-0.98.7.tar.gz differ: char 5, line 1
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2015-02-06 22:38:06 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2015-01-30 20:31:52.0 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2015-02-06 22:38:09.0 +0100 @@ -1,0 +2,14 @@ +Thu Feb 5 10:29:02 UTC 2015 - m...@suse.com + +- Version 0.98.6 fixes several security issues: + * bsc#916217, CVE-2015-1461: Remote attackers can have +unspecified impact via Yoda's crypter or mew packer files. + * bsc#916214, CVE-2015-1462: Unspecified impact via acrafted upx +packer file. + * bsc#916215, CVE-2015-1463: Remote attackers can cause a denial +of service via a crafted petite packer file. + * bsc#915512, CVE-2014-9328: heap out of bounds condition with +crafted upack packer files. +- Obsoletes clamav-soname.patch + +--- Old: clamav-0.98.5.tar.gz clamav-0.98.5.tar.gz.sig clamav-soname.patch New: clamav-0.98.6.tar.gz clamav-0.98.6.tar.gz.sig Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.qYPVDN/_old 2015-02-06 22:38:10.0 +0100 +++ /var/tmp/diff_new_pack.qYPVDN/_new 2015-02-06 22:38:10.0 +0100 @@ -48,7 +48,7 @@ Summary:Antivirus Toolkit License:GPL-2.0 Group: Productivity/Security -Version:0.98.5 +Version:0.98.6 Release:0 Url:http://www.clamav.net Requires: latex2html-pngicons @@ -67,7 +67,6 @@ Patch1: clamav-conf.patch Patch2: clamav-sles9.patch Patch3: clamav-gcc47.patch -Patch4: clamav-soname.patch BuildRoot: %{_tmppath}/%{name}-%{version}-build BuildRequires: systemd %systemd_requires @@ -90,7 +89,6 @@ %patch2 %endif %patch3 -p1 -%patch4 -p1 %build %if 0%{?suse_version} >= 1010 ++ clamav-0.98.5.tar.gz -> clamav-0.98.6.tar.gz ++ /work/SRC/openSUSE:Factory/clamav/clamav-0.98.5.tar.gz /work/SRC/openSUSE:Factory/.clamav.new/clamav-0.98.6.tar.gz differ: char 5, line 1 -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2015-01-30 20:31:51 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2015-01-03 22:01:24.0 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2015-01-30 20:31:52.0 +0100 @@ -1,0 +2,16 @@ +Fri Jan 30 15:19:34 UTC 2015 - m...@suse.com + +- Don't need sendmail for building clamav-milter anymore, + sendmail-devel is enough (bnc#915414). + +--- +Fri Jan 23 14:03:18 UTC 2015 - m...@suse.com + +- bnc#914505: Config file merging and temp file creation got moved + to %pre by mistake. Put them back to %post. +- Restore the updateclamconf script (bnc#908731). +- Fix a step backwards in the soname version from 0.98.4 to 0.98.5 + (https://bugzilla.clamav.net/show_bug.cgi?id=11193, + clamav-soname.patch). + +--- New: clamav-soname.patch Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.30oXX1/_old 2015-01-30 20:31:53.0 +0100 +++ /var/tmp/diff_new_pack.30oXX1/_new 2015-01-30 20:31:53.0 +0100 @@ -21,7 +21,6 @@ Name: clamav BuildRequires: ncurses-devel BuildRequires: sed -BuildRequires: sendmail BuildRequires: sendmail-devel %define llvm --disable-llvm %if 0%{?suse_version} >= 1010 @@ -68,6 +67,7 @@ Patch1: clamav-conf.patch Patch2: clamav-sles9.patch Patch3: clamav-gcc47.patch +Patch4: clamav-soname.patch BuildRoot: %{_tmppath}/%{name}-%{version}-build BuildRequires: systemd %systemd_requires @@ -90,6 +90,7 @@ %patch2 %endif %patch3 -p1 +%patch4 -p1 %build %if 0%{?suse_version} >= 1010 @@ -130,6 +131,7 @@ %install %makeinstall +install -m755 %SOURCE3 %buildroot%_sbindir/updateclamconf install -d -m755 %buildroot/var/lib/clamav install -d -m755 %buildroot/%_tmpfilesdir install -m644 %SOURCE6 %buildroot%_tmpfilesdir/clamav.conf @@ -195,8 +197,13 @@ %_sbindir/groupadd -r vscan 2> /dev/null || : %_sbindir/useradd -r -o -g vscan -u 65 -s /bin/false -c "Vscan account" -d /var/spool/amavis vscan 2> /dev/null || : %_sbindir/usermod vscan -g vscan 2> /dev/null || : +%service_add_pre clamd.service freshclam.service clamav-milter.service +%post /sbin/ldconfig +systemd-tmpfiles --create %_tmpfilesdir/clamav.conf +%service_add_post clamd.service freshclam.service clamav-milter.service + # merge config files on update test "0$1" -lt 2 && exit 0 umask 022 @@ -212,11 +219,6 @@ fi fi done -systemd-tmpfiles --create %_tmpfilesdir/clamav.conf -%service_add_pre clamd.service freshclam.service clamav-milter.service - -%post -%service_add_post clamd.service freshclam.service clamav-milter.service %preun %service_del_preun clamd.service freshclam.service clamav-milter.service ++ clamav-soname.patch ++ diff --git a/configure b/configure index 95168bb..c31f831 100755 --- a/configure +++ b/configure @@ -5090,7 +5090,7 @@ $as_echo "$ac_cv_safe_to_define___extensions__" >&6; } VERSION="0.98.5" LC_CURRENT=7 -LC_REVISION=22 +LC_REVISION=24 LC_AGE=1 LIBCLAMAV_VERSION="$LC_CURRENT":"$LC_REVISION":"$LC_AGE" diff --git a/m4/reorganization/version.m4 b/m4/reorganization/version.m4 index ea263b2..f4fe8b1 100644 --- a/m4/reorganization/version.m4 +++ b/m4/reorganization/version.m4 @@ -3,7 +3,7 @@ dnl VERSION="devel-`date +%Y%m%d`" VERSION="0.98.5" LC_CURRENT=7 -LC_REVISION=22 +LC_REVISION=24 LC_AGE=1 LIBCLAMAV_VERSION="$LC_CURRENT":"$LC_REVISION":"$LC_AGE" AC_SUBST([LIBCLAMAV_VERSION]) -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2015-01-03 22:01:06 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2014-11-28 08:44:38.0 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2015-01-03 22:01:24.0 +0100 @@ -1,0 +2,5 @@ +Thu Jan 1 21:34:01 UTC 2015 - meiss...@suse.com + +- build with PIE + +--- Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.GvnLSl/_old 2015-01-03 22:01:26.0 +0100 +++ /var/tmp/diff_new_pack.GvnLSl/_new 2015-01-03 22:01:26.0 +0100 @@ -1,7 +1,7 @@ # # spec file for package clamav # -# Copyright (c) 2014 SUSE LINUX Products GmbH, Nuernberg, Germany. +# Copyright (c) 2015 SUSE LINUX Products GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -96,8 +96,9 @@ CFLAGS="-fstack-protector" CXXFLAGS="-fstack-protector" %endif -export CFLAGS="%optflags $CFLAGS" -export CXXFLAGS="%optflags $CXXFLAGS" +export CFLAGS="%optflags $CFLAGS -fPIE" +export CXXFLAGS="%optflags $CXXFLAGS -fPIE" +export LDFLAGS="-pie" %if 0%{?suse_version} == 0910 # SLES9 needs this macro to enable the quarantine feature in libmilter CFLAGS="$CFLAGS -D_FFR_QUARANTINE -D_FFR_SMFI_OPENSOCKET" -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2014-11-28 08:44:36 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2014-11-10 17:29:16.0 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2014-11-28 08:44:38.0 +0100 @@ -1,0 +2,24 @@ +Wed Nov 19 14:54:58 UTC 2014 - m...@suse.com + +- Version 0.98.5: + * Support for the XDP file format and extracting, decoding, and +scanning PDF files within XDP files. + * Addition of shared library support for LLVM versions 3.1 - 3.5 +for the purpose of just-in-time(JIT) compilation of ClamAV +bytecode signatures. + * Enhancements to the clambc command line utility to assist +ClamAV bytecode signature authors by providing introspection +into compiled bytecode programs. + * Resolution of many of the warning messages from ClamAV +compilation. + * Improved detection of malicious PE files. + * Security fix for ClamAV crash when using 'clamscan -a'. + * Security fix for ClamAV crash when scanning maliciously +crafted yoda's crypter files (bnc#906077, CVE-2013-6497). + * ClamAV 0.98.5 now works with OpenSSL in FIPS compliant +mode (bnc#904207). + * Fix server socket setup code in clamd (bnc#903489). +- Change updateclamconf to prefer the state of the old config + file even for commented-out options (bnc#903719). + +--- Old: clamav-0.98.4.tar.gz clamav-0.98.4.tar.gz.sig New: clamav-0.98.5.tar.gz clamav-0.98.5.tar.gz.sig Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.iRx4st/_old 2014-11-28 08:44:39.0 +0100 +++ /var/tmp/diff_new_pack.iRx4st/_new 2014-11-28 08:44:39.0 +0100 @@ -49,7 +49,7 @@ Summary:Antivirus Toolkit License:GPL-2.0 Group: Productivity/Security -Version:0.98.4 +Version:0.98.5 Release:0 Url:http://www.clamav.net Requires: latex2html-pngicons ++ clamav-0.98.4.tar.gz -> clamav-0.98.5.tar.gz ++ /work/SRC/openSUSE:Factory/clamav/clamav-0.98.4.tar.gz /work/SRC/openSUSE:Factory/.clamav.new/clamav-0.98.5.tar.gz differ: char 5, line 1 ++ clamav-updateclamconf ++ --- /var/tmp/diff_new_pack.iRx4st/_old 2014-11-28 08:44:39.0 +0100 +++ /var/tmp/diff_new_pack.iRx4st/_new 2014-11-28 08:44:39.0 +0100 @@ -56,25 +56,28 @@ pass++ } # collect options from the first file -pass == 1 && $0 ~ /^[[:space:]]*[^#]/ { +pass == 1 && $0 ~ /^[[:space:]]*#?[^[:space:]]/ { if (NF == 1) { $2 = "yes" } -if (!($1 in options)) { - options[$1] = $0 +# copy $1, so that sub() doesn't modify $0 +o = $1 +sub("^#", "", o) +if (!(o in options)) { + options[o] = $0 } } # merge options into the content of the second file pass == 2 { # copy $1, so that sub() doesn't modify $0 o = $1 -sub("^#", "", o) +sub("^[[:space:]]*#", "", o) if (o in options) { -if (o == "NotifyClamd" && options[o] ~ / yes$/) { -sub("^#", "") -options[o] = $0 +if (options[o] ~ /^[[:space:]]*#/ && $0 ~ /^[[:space:]]*#/) { +print +} else { +print options[o] } -print options[o] delete options[o] } else { print @@ -85,7 +88,7 @@ for (o in options) { print "\n# These options weren't found in the new config file" for (o in options) { - print "# " o, options[o] + print "# " options[o] } break } -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2014-11-10 17:28:56 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2014-07-04 09:35:03.0 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2014-11-10 17:29:16.0 +0100 @@ -1,0 +2,5 @@ +Sun Nov 09 02:31:00 UTC 2014 - Led + +- fix bashism in pre script + +--- Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.WxB888/_old 2014-11-10 17:29:17.0 +0100 +++ /var/tmp/diff_new_pack.WxB888/_new 2014-11-10 17:29:17.0 +0100 @@ -203,7 +203,7 @@ if test -e $f.rpmnew; then echo "Merging $f and $f.rpmnew" %_sbindir/updateclamconf -v override="$OVERRIDE" $f $f.rpmnew > $f.tmp -if test $? == 0; then +if test $? = 0; then mv $f $f.old mv $f.tmp $f else -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2014-07-04 09:34:55 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2014-06-23 09:23:58.0 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2014-07-04 09:35:03.0 +0200 @@ -1,0 +2,10 @@ +Thu Jun 26 15:25:33 UTC 2014 - m...@suse.com + +- Version 0.98.4: + * Fix infinite loop in clamdscan when clamd is not running. + * Fix buffer underruns when handling multi-part MIME email +attachments. + * Fix onfiguration of OpenSSL on various platforms. + * Fix linking issues with libclamunrar. + +--- Old: clamav-0.98.3.tar.gz clamav-0.98.3.tar.gz.sig New: clamav-0.98.4.tar.gz clamav-0.98.4.tar.gz.sig Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.UzVUJu/_old 2014-07-04 09:35:04.0 +0200 +++ /var/tmp/diff_new_pack.UzVUJu/_new 2014-07-04 09:35:04.0 +0200 @@ -49,7 +49,7 @@ Summary:Antivirus Toolkit License:GPL-2.0 Group: Productivity/Security -Version:0.98.3 +Version:0.98.4 Release:0 Url:http://www.clamav.net Requires: latex2html-pngicons ++ clamav-0.98.3.tar.gz -> clamav-0.98.4.tar.gz ++ /work/SRC/openSUSE:Factory/clamav/clamav-0.98.3.tar.gz /work/SRC/openSUSE:Factory/.clamav.new/clamav-0.98.4.tar.gz differ: char 5, line 1 -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2014-06-23 09:23:52 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2014-05-09 20:30:15.0 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2014-06-23 09:23:58.0 +0200 @@ -1,0 +2,7 @@ +Thu Jun 12 13:30:02 UTC 2014 - m...@suse.com + +- Fix dangling symlink in documentation (bnc#872682). +- Remove init scripts and complete systemd integration. +- Remove %ghost entry for /var/run/clamav. + +--- Old: clamav-rcclamd clamav-rcfreshclam clamav-rcmilter Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.XhY4gk/_old 2014-06-23 09:24:00.0 +0200 +++ /var/tmp/diff_new_pack.XhY4gk/_new 2014-06-23 09:24:00.0 +0200 @@ -56,15 +56,11 @@ Obsoletes: clamav-db < 0.88.3 PreReq: %_sbindir/groupadd %_sbindir/useradd %_sbindir/usermod PreReq: /usr/bin/awk /bin/sed /bin/tar -PreReq: %insserv_prereq Source0: http://downloads.sourceforge.net/clamav/%{name}-%{version}.tar.gz Source10: http://downloads.sourceforge.net/clamav/%{name}-%{version}.tar.gz.sig Source11: clamav.keyring -Source1:clamav-rcclamd -Source2:clamav-rcfreshclam Source3:clamav-updateclamconf Source4:clamav-rpmlintrc -Source5:clamav-rcmilter Source6:clamav-tmpfiles.conf Source7:service.clamd Source8:service.freshclam @@ -73,9 +69,8 @@ Patch2: clamav-sles9.patch Patch3: clamav-gcc47.patch BuildRoot: %{_tmppath}/%{name}-%{version}-build -%if 0%{?suse_version} >= 1210 BuildRequires: systemd -%endif +%systemd_requires %description ClamAV is an open source (GPL) antivirus engine designed for detecting @@ -134,16 +129,7 @@ %install %makeinstall -ln -sf docs/html/{clamdoc,index}.html -mkdir -p %buildroot/etc/init.d -install -m755 %SOURCE1 %buildroot/etc/init.d/clamd -ln -s /etc/init.d/clamd %buildroot%_sbindir/rcclamd -install -m755 %SOURCE2 %buildroot/etc/init.d/freshclam -ln -s /etc/init.d/freshclam %buildroot%_sbindir/rcfreshclam -install -m755 %SOURCE5 %buildroot/etc/init.d/clamav-milter -ln -s /etc/init.d/clamav-milter %buildroot%_sbindir/rcclamav-milter -install -m755 %SOURCE3 %buildroot%_sbindir/updateclamconf -install -d -m755 %buildroot/var/{lib,run}/clamav +install -d -m755 %buildroot/var/lib/clamav install -d -m755 %buildroot/%_tmpfilesdir install -m644 %SOURCE6 %buildroot%_tmpfilesdir/clamav.conf mkdir -p %buildroot/var/spool/amavis @@ -170,7 +156,7 @@ # use it at all on systems without mandatory systemd %if 0%{?suse_version} >= 1230 for srvname in clamd freshclam clamav-milter;do -(export PATH=/sbin:/usr/sbin:$PATH ;ln -sf $(which service) %{buildroot}/%{_sbindir}/rc${srvname}) +(export PATH=/usr/sbin:/sbin:$PATH ;ln -sf $(which service) %{buildroot}/%{_sbindir}/rc${srvname}) done %endif %endif @@ -185,7 +171,6 @@ %files %defattr(-,root,root,-) %config(noreplace) %_sysconfdir/*.conf -%config %attr(744,root,root)/etc/init.d/* #systemd... %if 0%{?suse_version} >= 1210 %{_unitdir}/clamd.service @@ -204,17 +189,12 @@ %defattr(-,vscan,vscan) %dir %attr(750,vscan,vscan) /var/spool/amavis %dir /var/lib/clamav -%ghost %dir %attr(755,vscan,vscan) /var/run/clamav %pre %_sbindir/groupadd -r vscan 2> /dev/null || : %_sbindir/useradd -r -o -g vscan -u 65 -s /bin/false -c "Vscan account" -d /var/spool/amavis vscan 2> /dev/null || : %_sbindir/usermod vscan -g vscan 2> /dev/null || : -%post -%{fillup_and_insserv clamd} -%{fillup_and_insserv freshclam} -#%%{fillup_and_insserv clamav-filter} /sbin/ldconfig # merge config files on update test "0$1" -lt 2 && exit 0 @@ -231,16 +211,17 @@ fi fi done -%if 0%{?suse_version} >= 1210 systemd-tmpfiles --create %_tmpfilesdir/clamav.conf -%endif +%service_add_pre clamd.service freshclam.service clamav-milter.service + +%post +%service_add_post clamd.service freshclam.service clamav-milter.service %preun -%stop_on_removal clamd freshclam clamav-milter +%service_del_preun clamd.service freshclam.service clamav-milter.service %postun /sbin/ldconfig -%restart_on_update clamd freshclam clamav-milter -%insserv_cleanup +%service_del_postun clamd.service freshclam.service clamav-milter.service %changelog -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2014-05-09 20:30:13 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2014-05-02 09:51:39.0 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2014-05-09 20:30:15.0 +0200 @@ -1,0 +2,37 @@ +Thu May 8 15:02:40 UTC 2014 - m...@suse.com + +- Version 0.98.3: + * Support for common raw disk image formats using 512 byte +sectors, specifically GPT, APM, and MBR partitioning. + * Experimental support of OpenIOC files. ClamAV will now extract +file hashes from OpenIOC files residing in the signature +database location, and generate ClamAV hash signatures. ClamAV +uses no other OpenIOC features at this time. No OpenIOC files +will be delivered through freshclam. See openioc.org and +iocbucket.com for additional information about OpenIOC. + * All ClamAV sockets (clamd, freshclam, clamav-milter, clamdscan, +clamdtop) now support IPV6 addresses and configuration +parameters. + * Use OpenSSL file hash functions for improved performance. +OpenSSL is now prerequisite software for ClamAV 0.98.3. + * Improved detection of malware scripts within image files. + * Change to circumvent possible denial of service when processing +icons within specially crafted PE files. Icon limits are now in +place with corresponding clamd and clamscan configuration +parameters. This issue was reported by Joxean Koret. + * Improvements to the fidelity of the ClamAV pattern matcher, an +issue reported by Christian Blichmann. + * Opt-in collection of statistics. Statistics collected are: +sizes and MD5 hashes of files, PE file section counts and +section MD5 hashes, and names and counts of detected +viruses. Enable statistics collection with the --enable-stats +clamscan flag or StatsEnabled clamd configuration parameter. + * Improvements to ClamAV build process, unit tests, and platform +support. + * Improve error handling in freshclam. + * ClamAV 0.98.3 also includes miscellaneous bug fixes and +documentation improvements. +- clamav-fan-syscalls.patch isn't needed anymore because ClamAV + now uses sys/fanotify.h . + +--- Old: clamav-0.98.1.tar.gz clamav-0.98.1.tar.gz.sig clamav-fan-syscalls.patch New: clamav-0.98.3.tar.gz clamav-0.98.3.tar.gz.sig Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.UW6G0m/_old 2014-05-09 20:30:16.0 +0200 +++ /var/tmp/diff_new_pack.UW6G0m/_new 2014-05-09 20:30:16.0 +0200 @@ -37,6 +37,8 @@ %if 0%{?suse_version} >= 1030 BuildRequires: check-devel BuildRequires: libbz2-devel +BuildRequires: libopenssl-devel +BuildRequires: libxml2-devel BuildRequires: pwdutils BuildRequires: python-devel %define clamav_check --enable-check @@ -47,7 +49,7 @@ Summary:Antivirus Toolkit License:GPL-2.0 Group: Productivity/Security -Version:0.98.1 +Version:0.98.3 Release:0 Url:http://www.clamav.net Requires: latex2html-pngicons @@ -70,7 +72,6 @@ Patch1: clamav-conf.patch Patch2: clamav-sles9.patch Patch3: clamav-gcc47.patch -Patch4: clamav-fan-syscalls.patch BuildRoot: %{_tmppath}/%{name}-%{version}-build %if 0%{?suse_version} >= 1210 BuildRequires: systemd @@ -94,7 +95,6 @@ %patch2 %endif %patch3 -p1 -%patch4 -p1 %build %if 0%{?suse_version} >= 1010 ++ clamav-0.98.1.tar.gz -> clamav-0.98.3.tar.gz ++ /work/SRC/openSUSE:Factory/clamav/clamav-0.98.1.tar.gz /work/SRC/openSUSE:Factory/.clamav.new/clamav-0.98.3.tar.gz differ: char 5, line 1 ++ clamav-conf.patch ++ --- /var/tmp/diff_new_pack.UW6G0m/_old 2014-05-09 20:30:16.0 +0200 +++ /var/tmp/diff_new_pack.UW6G0m/_new 2014-05-09 20:30:16.0 +0200 @@ -1,7 +1,7 @@ -Index: clamav-0.98.1/etc/clamav-milter.conf.sample +Index: clamav-0.98.3/etc/clamav-milter.conf.sample === clamav-0.98.1.orig/etc/clamav-milter.conf.sample 2014-01-13 18:02:18.0 +0100 -+++ clamav-0.98.1/etc/clamav-milter.conf.sample2014-01-24 16:26:53.379053521 +0100 +--- clamav-0.98.3.orig/etc/clamav-milter.conf.sample 2014-05-06 20:39:56.0 +0200 clamav-0.98.3/etc/clamav-milter.conf.sample2014-05-08 16:42:14.865949467 +0200 @@ -2,10 +2,6 @@ ## Example config file for clamav-milter ## @@ -66,10 +66,10 @@ # Enable
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2014-05-02 09:51:38 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2014-03-30 12:10:06.0 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2014-05-02 09:51:39.0 +0200 @@ -1,0 +2,7 @@ +Wed Apr 23 10:59:43 UTC 2014 - dmuel...@suse.com + +- do not disable security checks in configure. That would be + insecure +- use DFP_64bit also for aarch64 + +--- Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.upgLIv/_old 2014-05-02 09:51:41.0 +0200 +++ /var/tmp/diff_new_pack.upgLIv/_new 2014-05-02 09:51:41.0 +0200 @@ -107,7 +107,7 @@ # SLES9 needs this macro to enable the quarantine feature in libmilter CFLAGS="$CFLAGS -D_FFR_QUARANTINE -D_FFR_SMFI_OPENSOCKET" %endif -%ifarch ppc64 ppc64le +%if "%_lib" == "lib64" # tomsfastmath needs this for correct operation on 64-bit platforms CFLAGS="$CFLAGS -DFP_64BIT" %endif @@ -124,7 +124,9 @@ --enable-milter \ %clamav_check \ %llvm \ +%if 0%{?suse_version} == 0910 --disable-zlib-vcheck \ +%endif --enable-clamdtop \ --disable-timestamps -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2014-03-30 07:58:39 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2014-02-22 18:07:15.0 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2014-03-30 12:10:06.0 +0200 @@ -1,0 +2,5 @@ +Thu Mar 13 15:41:18 UTC 2014 - bo...@steki.net + +- initial systemd support unit files + +--- New: service.clamav-milter service.clamd service.freshclam Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.SZGPvX/_old 2014-03-30 12:10:08.0 +0200 +++ /var/tmp/diff_new_pack.SZGPvX/_new 2014-03-30 12:10:08.0 +0200 @@ -64,11 +64,17 @@ Source4:clamav-rpmlintrc Source5:clamav-rcmilter Source6:clamav-tmpfiles.conf +Source7:service.clamd +Source8:service.freshclam +Source9:service.clamav-milter Patch1: clamav-conf.patch Patch2: clamav-sles9.patch Patch3: clamav-gcc47.patch Patch4: clamav-fan-syscalls.patch BuildRoot: %{_tmppath}/%{name}-%{version}-build +%if 0%{?suse_version} >= 1210 +BuildRequires: systemd +%endif %description ClamAV is an open source (GPL) antivirus engine designed for detecting @@ -152,6 +158,21 @@ mv freshclam.conf.sample freshclam.conf popd +# Systemd... +%if 0%{?suse_version} >= 1210 +install -d -m 0755 %buildroot/%{_unitdir} +install -m 0644 %{SOURCE7} %buildroot/%{_unitdir}/clamd.service +install -m 0644 %{SOURCE8} %buildroot/%{_unitdir}/freshclam.service +install -m 0644 %{SOURCE9} %buildroot/%{_unitdir}/clamav-milter.service +# this is broken if system does not have systemd so don't +# use it at all on systems without mandatory systemd +%if 0%{?suse_version} >= 1230 +for srvname in clamd freshclam clamav-milter;do +(export PATH=/sbin:/usr/sbin:$PATH ;ln -sf $(which service) %{buildroot}/%{_sbindir}/rc${srvname}) +done +%endif +%endif + %check # regression tests @@ -163,6 +184,12 @@ %defattr(-,root,root,-) %config(noreplace) %_sysconfdir/*.conf %config %attr(744,root,root)/etc/init.d/* +#systemd... +%if 0%{?suse_version} >= 1210 +%{_unitdir}/clamd.service +%{_unitdir}/freshclam.service +%{_unitdir}/clamav-milter.service +%endif %_tmpfilesdir %doc AUTHORS BUGS ChangeLog COPYING FAQ NEWS README UPGRADE %doc docs/*.pdf docs/html @@ -183,6 +210,9 @@ %_sbindir/usermod vscan -g vscan 2> /dev/null || : %post +%{fillup_and_insserv clamd} +%{fillup_and_insserv freshclam} +#%%{fillup_and_insserv clamav-filter} /sbin/ldconfig # merge config files on update test "0$1" -lt 2 && exit 0 @@ -199,14 +229,16 @@ fi fi done +%if 0%{?suse_version} >= 1210 systemd-tmpfiles --create %_tmpfilesdir/clamav.conf +%endif %preun -%stop_on_removal clamd freshclam +%stop_on_removal clamd freshclam clamav-milter %postun /sbin/ldconfig -%restart_on_update clamd freshclam +%restart_on_update clamd freshclam clamav-milter %insserv_cleanup %changelog ++ service.clamav-milter ++ [Unit] Description=Clamav antivirus milter daemon After=syslog.target network.target [Service] Type=forking ExecStart=/usr/sbin/clamav-milter ; it will switch to vscan user ;User=vscan ;Group=vscan ;PrivateTmp=yes [Install] WantedBy=multi-user.target ++ service.clamd ++ [Unit] Description=Clamav antivirus Deamon After=syslog.target network.target [Service] Type=forking ExecStart=/usr/sbin/clamd ;User=vscan ;Group=vscan ;PrivateTmp=yes [Install] WantedBy=multi-user.target ++ service.freshclam ++ [Unit] Description=Freshclam virus definitions downloader After=syslog.target network.target [Service] Type=forking ExecStart=/usr/bin/freshclam -d ;User=vscan ;Group=vscan ;PrivateTmp=yes [Install] WantedBy=multi-user.target -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2014-02-22 18:07:14 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2014-02-06 06:47:15.0 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2014-02-22 18:07:15.0 +0100 @@ -1,0 +2,5 @@ +Wed Feb 19 07:02:06 UTC 2014 - meiss...@suse.com + +- add fanotify systemcalls for power, s390 and arm + +--- @@ -9 +14 @@ -- Version 0.98.1: +- Version 0.98.1 (bnc#841815): @@ -23,0 +29 @@ +- Rediff clamav-conf.patch New: clamav-fan-syscalls.patch Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.PPyhy8/_old 2014-02-22 18:07:16.0 +0100 +++ /var/tmp/diff_new_pack.PPyhy8/_new 2014-02-22 18:07:16.0 +0100 @@ -57,6 +57,7 @@ PreReq: %insserv_prereq Source0: http://downloads.sourceforge.net/clamav/%{name}-%{version}.tar.gz Source10: http://downloads.sourceforge.net/clamav/%{name}-%{version}.tar.gz.sig +Source11: clamav.keyring Source1:clamav-rcclamd Source2:clamav-rcfreshclam Source3:clamav-updateclamconf @@ -66,6 +67,7 @@ Patch1: clamav-conf.patch Patch2: clamav-sles9.patch Patch3: clamav-gcc47.patch +Patch4: clamav-fan-syscalls.patch BuildRoot: %{_tmppath}/%{name}-%{version}-build %description @@ -86,6 +88,7 @@ %patch2 %endif %patch3 -p1 +%patch4 -p1 %build %if 0%{?suse_version} >= 1010 @@ -115,9 +118,6 @@ --enable-milter \ %clamav_check \ %llvm \ -%ifnarch %ix86 x86_64 - --disable-fanotify \ -%endif --disable-zlib-vcheck \ --enable-clamdtop \ --disable-timestamps ++ clamav-fan-syscalls.patch ++ Index: clamav-0.98.1/clamd/fan-syscalllib.h === --- clamav-0.98.1.orig/clamd/fan-syscalllib.h +++ clamav-0.98.1/clamd/fan-syscalllib.h @@ -10,6 +10,16 @@ #elif defined(__i386__) # define __NR_fanotify_init338 # define __NR_fanotify_mark339 +#elif defined(__s390__) || defined(__s390x__) +# define __NR_fanotify_init 332 +# define __NR_fanotify_mark 333 +#elif defined(__powerpc__) || defined(__powerpc64__) +# define __NR_fanotify_init 323 +# define __NR_fanotify_mark 324 +#elif defined(__arm__) || defined(__aarch64__) +/* check ... base offset 0 */ +# define __NR_fanotify_init 367 +# define __NR_fanotify_mark 368 #else # error "System call numbers not defined for this architecture" #endif -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2014-02-06 06:47:14 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2014-02-01 08:43:19.0 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2014-02-06 06:47:15.0 +0100 @@ -0,0 +1,6 @@ +--- +Tue Feb 4 14:19:01 UTC 2014 - m...@suse.com + +- Improve handling of /var/run/clamav. + +--- @@ -18,0 +25 @@ +--- @@ -24,0 +32 @@ +--- Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.donEAJ/_old 2014-02-06 06:47:16.0 +0100 +++ /var/tmp/diff_new_pack.donEAJ/_new 2014-02-06 06:47:16.0 +0100 @@ -16,6 +16,8 @@ # +%{!?_tmpfilesdir:%global _tmpfilesdir /usr/lib/tmpfiles.d} + Name: clamav BuildRequires: ncurses-devel BuildRequires: sed @@ -134,8 +136,8 @@ ln -s /etc/init.d/clamav-milter %buildroot%_sbindir/rcclamav-milter install -m755 %SOURCE3 %buildroot%_sbindir/updateclamconf install -d -m755 %buildroot/var/{lib,run}/clamav -install -d -m755 %buildroot/usr/lib/tmpfiles.d -install -m644 %SOURCE6 %buildroot/usr/lib/tmpfiles.d/clamav.conf +install -d -m755 %buildroot/%_tmpfilesdir +install -m644 %SOURCE6 %buildroot%_tmpfilesdir/clamav.conf mkdir -p %buildroot/var/spool/amavis %if 0%{?suse_version} > 1020 rm %buildroot/%_libdir/*.la @@ -161,8 +163,7 @@ %defattr(-,root,root,-) %config(noreplace) %_sysconfdir/*.conf %config %attr(744,root,root)/etc/init.d/* -%dir /usr/lib/tmpfiles.d -/usr/lib/tmpfiles.d/clamav.conf +%_tmpfilesdir %doc AUTHORS BUGS ChangeLog COPYING FAQ NEWS README UPGRADE %doc docs/*.pdf docs/html %doc %_mandir/*/* @@ -174,7 +175,7 @@ %defattr(-,vscan,vscan) %dir %attr(750,vscan,vscan) /var/spool/amavis %dir /var/lib/clamav -%dir %attr(755,vscan,vscan) /var/run/clamav +%ghost %dir %attr(755,vscan,vscan) /var/run/clamav %pre %_sbindir/groupadd -r vscan 2> /dev/null || : @@ -198,6 +199,7 @@ fi fi done +systemd-tmpfiles --create %_tmpfilesdir/clamav.conf %preun %stop_on_removal clamd freshclam -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2014-02-01 08:43:18 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2013-12-30 09:49:52.0 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2014-02-01 08:43:19.0 +0100 @@ -1 +1,18 @@ +Fri Jan 24 15:40:03 UTC 2014 - m...@suse.com + +- Version 0.98.1: + * remove copy of wxWidgets (halves the size of the tarball). + * Decompression and scanning of files in "Xz" compression +format. + * Extraction, decompression, and scanning of files within Apple +Disk Image (DMG) format. + * Extraction, decompression, and scanning of files within +Extensible Archive (XAR) format. XAR format is commonly used +for software packaging, such as PKG and RPM, as well as +general archival. + * Improvements and fixes to extraction and scanning of ole +formats. + * Option to force all scanned data to disk. + * Various improvements to ClamAV configuration, support of third +party libraries, and unit tests. + @@ -8 +24,0 @@ Old: clamav-0.98.tar.gz clamav-0.98.tar.gz.sig New: clamav-0.98.1.tar.gz clamav-0.98.1.tar.gz.sig Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.GN1tW4/_old 2014-02-01 08:43:20.0 +0100 +++ /var/tmp/diff_new_pack.GN1tW4/_new 2014-02-01 08:43:20.0 +0100 @@ -1,7 +1,7 @@ # # spec file for package clamav # -# Copyright (c) 2013 SUSE LINUX Products GmbH, Nuernberg, Germany. +# Copyright (c) 2014 SUSE LINUX Products GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -45,7 +45,7 @@ Summary:Antivirus Toolkit License:GPL-2.0 Group: Productivity/Security -Version:0.98 +Version:0.98.1 Release:0 Url:http://www.clamav.net Requires: latex2html-pngicons ++ clamav-0.98.tar.gz -> clamav-0.98.1.tar.gz ++ /work/SRC/openSUSE:Factory/clamav/clamav-0.98.tar.gz /work/SRC/openSUSE:Factory/.clamav.new/clamav-0.98.1.tar.gz differ: char 5, line 1 ++ clamav-conf.patch ++ --- /var/tmp/diff_new_pack.GN1tW4/_old 2014-02-01 08:43:20.0 +0100 +++ /var/tmp/diff_new_pack.GN1tW4/_new 2014-02-01 08:43:20.0 +0100 @@ -1,6 +1,7 @@ -diff -burNE clamav-0.98_orig/etc/clamav-milter.conf.sample clamav-0.98/etc/clamav-milter.conf.sample clamav-0.98_orig/etc/clamav-milter.conf.sample 2013-09-27 20:10:07.805516478 +0200 -+++ clamav-0.98/etc/clamav-milter.conf.sample 2013-09-27 20:10:23.890676403 +0200 +Index: clamav-0.98.1/etc/clamav-milter.conf.sample +=== +--- clamav-0.98.1.orig/etc/clamav-milter.conf.sample 2014-01-13 18:02:18.0 +0100 clamav-0.98.1/etc/clamav-milter.conf.sample2014-01-24 16:26:53.379053521 +0100 @@ -2,10 +2,6 @@ ## Example config file for clamav-milter ## @@ -65,9 +66,10 @@ # Enable verbose logging. # -diff -burNE clamav-0.98_orig/etc/clamd.conf.sample clamav-0.98/etc/clamd.conf.sample clamav-0.98_orig/etc/clamd.conf.sample 2013-09-27 20:10:07.805516478 +0200 -+++ clamav-0.98/etc/clamd.conf.sample 2013-09-27 20:10:23.891676413 +0200 +Index: clamav-0.98.1/etc/clamd.conf.sample +=== +--- clamav-0.98.1.orig/etc/clamd.conf.sample 2014-01-13 18:02:34.0 +0100 clamav-0.98.1/etc/clamd.conf.sample2014-01-24 16:26:53.380053533 +0100 @@ -1,12 +1,8 @@ ## -## Example config file for the Clam AV daemon @@ -142,19 +144,20 @@ # Initialize supplementary group access (clamd must be started by root). # Default: no @@ -501,6 +497,10 @@ - # Enable Clamuko. Dazuko must be configured and running. Clamuko supports - # both Dazuko (/dev/dazuko) and DazukoFS (/dev/dazukofs.ctrl). DazukoFS - # is the preferred option. For more information please visit www.dazuko.org + ## + ## On-access Scan Settings + ## +# +# When enabling this, you most probably have to set "User root" above, +# so that clamav can access the files to be scanned. +# - # Default: no - #ClamukoScanOnAccess yes -diff -burNE clamav-0.98_orig/etc/freshclam.conf.sample clamav-0.98/etc/freshclam.conf.sample clamav-0.98_orig/etc/freshclam.conf.sample 2013-09-27 20:10:07.805516478 +0
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2013-12-30 09:49:51 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2013-09-30 17:51:30.0 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2013-12-30 09:49:52.0 +0100 @@ -1,0 +2,7 @@ +Sun Dec 15 16:03:46 UTC 2013 - uweig...@de.ibm.com + +- fix build failures on ppc64le: + * fanotify is only supported on x86 platforms + * building tomsfastmath on (non-x86) 64-bit platforms requires -DFP_64BIT + +--- Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.DC4Jiq/_old 2013-12-30 09:49:53.0 +0100 +++ /var/tmp/diff_new_pack.DC4Jiq/_new 2013-12-30 09:49:53.0 +0100 @@ -96,6 +96,10 @@ # SLES9 needs this macro to enable the quarantine feature in libmilter CFLAGS="$CFLAGS -D_FFR_QUARANTINE -D_FFR_SMFI_OPENSOCKET" %endif +%ifarch ppc64 ppc64le +# tomsfastmath needs this for correct operation on 64-bit platforms +CFLAGS="$CFLAGS -DFP_64BIT" +%endif ./configure \ --prefix=%_prefix \ --libdir=%_libdir \ @@ -109,6 +113,9 @@ --enable-milter \ %clamav_check \ %llvm \ +%ifnarch %ix86 x86_64 + --disable-fanotify \ +%endif --disable-zlib-vcheck \ --enable-clamdtop \ --disable-timestamps -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2013-09-30 17:51:28 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2013-05-02 12:34:02.0 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2013-09-30 17:51:30.0 +0200 @@ -1,0 +2,13 @@ +Sat Sep 28 07:35:34 UTC 2013 - meiss...@suse.com + +- Version 0.98 (bnc#841815) + * code quality fixes on libclamav, clamd, sigtool, clamav-milter, clamconf and clamdtop + * code quality fixes on libclamav, libclamunrar and freshclam + * valgrind suppression rules for dl_catch_error complaints + * bb #8385: PDF ASCII85Decode zero-length fix + * libclamav: SCAN_ALL mode fixes + * bb #7436: elf64 header early exit + * iso9660: iso_scan_file rewrite +- use source urls, add gpg signature retrieval. + +--- Old: clamav-0.97.8.tar.gz New: clamav-0.98.tar.gz clamav-0.98.tar.gz.sig clamav.keyring Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.sy7HWm/_old 2013-09-30 17:51:34.0 +0200 +++ /var/tmp/diff_new_pack.sy7HWm/_new 2013-09-30 17:51:34.0 +0200 @@ -45,7 +45,7 @@ Summary:Antivirus Toolkit License:GPL-2.0 Group: Productivity/Security -Version:0.97.8 +Version:0.98 Release:0 Url:http://www.clamav.net Requires: latex2html-pngicons @@ -53,7 +53,8 @@ PreReq: %_sbindir/groupadd %_sbindir/useradd %_sbindir/usermod PreReq: /usr/bin/awk /bin/sed /bin/tar PreReq: %insserv_prereq -Source0:%{name}-%{version}.tar.gz +Source0: http://downloads.sourceforge.net/clamav/%{name}-%{version}.tar.gz +Source10: http://downloads.sourceforge.net/clamav/%{name}-%{version}.tar.gz.sig Source1:clamav-rcclamd Source2:clamav-rcfreshclam Source3:clamav-updateclamconf @@ -77,7 +78,7 @@ %prep %setup -q -%patch1 +%patch1 -p1 %if 0%{?suse_version} == 0910 # SLES9's libmilter doesn't have smfi_insheader() %patch2 @@ -112,7 +113,7 @@ --enable-clamdtop \ --disable-timestamps -make %{?jobs:-j%jobs} +make V=1 %{?jobs:-j%jobs} %install %makeinstall @@ -135,9 +136,16 @@ # Remove bogus dependencies from libclamav.pc sed -i 's/^Libs: .*/Libs: -lclamav/' %buildroot%_libdir/pkgconfig/libclamav.pc +# fix the new config file names +pushd %buildroot/etc +mv clamd.conf.sample clamd.conf +mv clamav-milter.conf.sample clamav-milter.conf +mv freshclam.conf.sample freshclam.conf +popd + %check -# regressoin tests +# regression tests %if !0%{?qemu_user_space_build:1} VALGRIND_GENSUP=1 make check %endif ++ clamav-0.97.8.tar.gz -> clamav-0.98.tar.gz ++ /work/SRC/openSUSE:Factory/clamav/clamav-0.97.8.tar.gz /work/SRC/openSUSE:Factory/.clamav.new/clamav-0.98.tar.gz differ: char 5, line 1 ++ clamav-conf.patch ++ --- /var/tmp/diff_new_pack.sy7HWm/_old 2013-09-30 17:51:34.0 +0200 +++ /var/tmp/diff_new_pack.sy7HWm/_new 2013-09-30 17:51:34.0 +0200 @@ -1,7 +1,6 @@ -Index: etc/clamav-milter.conf -=== etc/clamav-milter.conf.orig2012-06-12 14:36:05.0 +0100 -+++ etc/clamav-milter.conf 2012-06-18 22:49:23.0 +0100 +diff -burNE clamav-0.98_orig/etc/clamav-milter.conf.sample clamav-0.98/etc/clamav-milter.conf.sample +--- clamav-0.98_orig/etc/clamav-milter.conf.sample 2013-09-27 20:10:07.805516478 +0200 clamav-0.98/etc/clamav-milter.conf.sample 2013-09-27 20:10:23.890676403 +0200 @@ -2,10 +2,6 @@ ## Example config file for clamav-milter ## @@ -13,7 +12,7 @@ ## ## Main options ## -@@ -17,8 +13,7 @@ Example +@@ -17,8 +13,7 @@ # inet6:port@[hostname|ip-address] - to specify an ipv6 socket # # Default: no default @@ -23,7 +22,7 @@ # Define the group ownership for the (unix) milter socket. # Default: disabled (the primary group of the user running clamd) -@@ -36,7 +31,7 @@ Example +@@ -36,7 +31,7 @@ # Run as another user (clamav-milter must be started by root for this option to work) # # Default: unset (don't drop privileges) @@ -32,7 +31,7 @@ # Initialize supplementary group access (clamav-milter must be started by root). # -@@ -64,7 +59,7 @@ Example +@@ -64,7 +59,7 @@ # daemon (main thread). # # Default: disabled @@ -41,7 +40,7 @@ # Optional path to the global temporary directory. # Default: system specific (usually /tmp or /var/tmp). -@@ -90,7 +85,7 @@ Example +@@ -90,7 +85,7
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2013-05-02 12:34:00 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2013-03-21 10:37:13.0 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2013-05-02 12:34:02.0 +0200 @@ -1,0 +2,11 @@ +Mon Apr 29 14:32:07 UTC 2013 - meiss...@suse.com + +- mirror the amavisd-new change of /var/spool/amavis bnc#663726 + +--- +Sun Apr 28 08:08:14 UTC 2013 - ec...@schirra.net + +- Version 0.97.8 (bnc#816865) + * libclamav: Bugs reported by Felix Groebert of the Google Security Team + +--- Old: clamav-0.97.7.tar.gz New: clamav-0.97.8.tar.gz Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.sC4REo/_old 2013-05-02 12:34:05.0 +0200 +++ /var/tmp/diff_new_pack.sC4REo/_new 2013-05-02 12:34:05.0 +0200 @@ -45,7 +45,7 @@ Summary:Antivirus Toolkit License:GPL-2.0 Group: Productivity/Security -Version:0.97.7 +Version:0.97.8 Release:0 Url:http://www.clamav.net Requires: latex2html-pngicons @@ -157,7 +157,7 @@ %_libdir/lib* %_libdir/pkgconfig/libclamav.pc %defattr(-,vscan,vscan) -%dir %attr(700,vscan,root) /var/spool/amavis +%dir %attr(750,vscan,vscan) /var/spool/amavis %dir /var/lib/clamav %dir %attr(755,vscan,vscan) /var/run/clamav ++ clamav-0.97.7.tar.gz -> clamav-0.97.8.tar.gz ++ /work/SRC/openSUSE:Factory/clamav/clamav-0.97.7.tar.gz /work/SRC/openSUSE:Factory/.clamav.new/clamav-0.97.8.tar.gz differ: char 5, line 1 -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2013-03-21 10:37:11 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav", Maintainer is "m...@suse.com" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2013-01-17 09:37:24.0 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2013-03-21 10:37:13.0 +0100 @@ -1,0 +2,6 @@ +Wed Mar 20 17:32:19 UTC 2013 - m...@suse.com + +- Version 0.97.7 (bnc#809945) + * several hardening fixes. + +--- Old: clamav-0.97.6.tar.gz New: clamav-0.97.7.tar.gz Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.HxUtLU/_old 2013-03-21 10:37:16.0 +0100 +++ /var/tmp/diff_new_pack.HxUtLU/_new 2013-03-21 10:37:16.0 +0100 @@ -45,7 +45,7 @@ Summary:Antivirus Toolkit License:GPL-2.0 Group: Productivity/Security -Version:0.97.6 +Version:0.97.7 Release:0 Url:http://www.clamav.net Requires: latex2html-pngicons ++ clamav-0.97.6.tar.gz -> clamav-0.97.7.tar.gz ++ /work/SRC/openSUSE:Factory/clamav/clamav-0.97.6.tar.gz /work/SRC/openSUSE:Factory/.clamav.new/clamav-0.97.7.tar.gz differ: char 5, line 1 -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2013-01-17 09:37:23 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav", Maintainer is "m...@suse.com" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2013-01-07 15:01:34.0 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2013-01-17 09:37:24.0 +0100 @@ -1,0 +2,18 @@ +Mon Jan 14 14:42:03 UTC 2013 - mmeis...@suse.com + +- pids and sockets of clamd and freshclam now reside in /var/run + instead of /var/lib (bnc#770395) +- modified pid path in clamd's, freshclam's and clamav-milter's + init scripts + +--- +Mon Jan 7 13:40:31 UTC 2013 - m...@suse.com + +- Remove the clamav-db subpackage. ClamAV installations should + fetch current versions of the virus database directly from + upstream. If there really is need for a packaged database, it + should be in a separate package. +- Remove scripts do deal with very old (before 2008) config and + database file formats. + +--- Old: daily-16364.cvd main-54.cvd New: clamav-tmpfiles.conf Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.rUE9z7/_old 2013-01-17 09:37:27.0 +0100 +++ /var/tmp/diff_new_pack.rUE9z7/_new 2013-01-17 09:37:27.0 +0100 @@ -45,7 +45,6 @@ Summary:Antivirus Toolkit License:GPL-2.0 Group: Productivity/Security -# version updates should also fetch the current cvd files for the db subpackage Version:0.97.6 Release:0 Url:http://www.clamav.net @@ -60,12 +59,7 @@ Source3:clamav-updateclamconf Source4:clamav-rpmlintrc Source5:clamav-rcmilter -# http://db.local.clamav.net/main.cvd -%define main_cvd_version 54 -Source6:main-%{main_cvd_version}.cvd -# http://db.local.clamav.net/daily.cvd -%define daily_cvd_version 16364 -Source7:daily-%{daily_cvd_version}.cvd +Source6:clamav-tmpfiles.conf Patch1: clamav-conf.patch Patch2: clamav-sles9.patch Patch3: clamav-gcc47.patch @@ -81,29 +75,6 @@ format detection mechanisms, file unpacking support, archive support, and multiple signature languages for detecting threats. -%package db -Summary:Virus Database for ClamAV -License:BSD-3-Clause and GPL-2.0+ and LGPL-2.1+ and SUSE-Public-Domain and MIT -Group: Productivity/Security -PreReq: clamav sed /bin/cp /usr/bin/awk /bin/rm -%if 0%{?suse_version} > 1120 -BuildArch: noarch -%endif -Version:%{version} -Release:%{main_cvd_version}.%{daily_cvd_version}.. - -%description db -This package contains a snapshot of the virus description database for -ClamAV. It is not needed if you use freshclam to keep your virus -database up to date. - - - -Authors: - -Tomasz Kojm -Nigel Horne - %prep %setup -q %patch1 @@ -154,15 +125,9 @@ install -m755 %SOURCE5 %buildroot/etc/init.d/clamav-milter ln -s /etc/init.d/clamav-milter %buildroot%_sbindir/rcclamav-milter install -m755 %SOURCE3 %buildroot%_sbindir/updateclamconf -install -d -m755 %buildroot/var/lib/clamav -touch %buildroot/var/lib/clamav/{clamd,freshclam}.pid -install -m755 %SOURCE6 %buildroot/var/lib/clamav/main.cvd -install -m755 %SOURCE7 %buildroot/var/lib/clamav/daily.cvd -for f in %buildroot/var/lib/clamav/*.cvd; do - mv $f $f.dist - touch $f -done -touch %buildroot/var/lib/clamav/{main,daily}.cld +install -d -m755 %buildroot/var/{lib,run}/clamav +install -d -m755 %buildroot/usr/lib/tmpfiles.d +install -m644 %SOURCE6 %buildroot/usr/lib/tmpfiles.d/clamav.conf mkdir -p %buildroot/var/spool/amavis %if 0%{?suse_version} > 1020 rm %buildroot/%_libdir/*.la @@ -172,14 +137,6 @@ %check -# signature check using installed clamav sigtool -LD_LIBRARY_PATH="%buildroot%{_libdir}" "%buildroot%{_bindir}/sigtool" --info %buildroot/var/lib/clamav/main.cvd.dist -LD_LIBRARY_PATH="%buildroot%{_libdir}" "%buildroot%{_bindir}/sigtool" --info %buildroot/var/lib/clamav/daily.cvd.dist - -# Check that cvd version matches versions declared in package -test "$(head -c512 %SOURCE6 | cut -d: -f3)" = "%{main_cvd_version}" -test "$(head -c512 %SOURCE7 | cut -d: -f3)" = "%{daily_cvd_version}" - # regressoin tests %if !0%{?qemu_user_space_build:1} VALGRIND_GENSUP=1 make check @@ -189,6 +146,8 @@ %defattr(-,root,root,-) %config(noreplace) %_sysconfdir/*.conf %config %attr(744,root,root)/etc/init.d/* +%dir /usr/lib/tmpfiles.d +/usr/lib/tmpfiles.d/clamav.conf %doc AU
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2013-01-07 15:01:33 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav", Maintainer is "m...@suse.com" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2012-10-07 18:54:35.0 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2013-01-07 15:01:34.0 +0100 @@ -1,0 +2,8 @@ +Sat Jan 5 01:53:56 UTC 2013 - andreas.stie...@gmx.de + +- update daily.cvd to ver. 16364 + released on 04 Jan 2013 20:37 :0500 (sig count: 492103) +- add cvd signature verification to %check section +- make Release field of clamav-db package contain cvd file versions + +--- Old: daily-15055.cvd New: daily-16364.cvd Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.sCGgXd/_old 2013-01-07 15:01:38.0 +0100 +++ /var/tmp/diff_new_pack.sCGgXd/_new 2013-01-07 15:01:38.0 +0100 @@ -1,7 +1,7 @@ # # spec file for package clamav # -# Copyright (c) 2012 SUSE LINUX Products GmbH, Nuernberg, Germany. +# Copyright (c) 2013 SUSE LINUX Products GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -45,6 +45,7 @@ Summary:Antivirus Toolkit License:GPL-2.0 Group: Productivity/Security +# version updates should also fetch the current cvd files for the db subpackage Version:0.97.6 Release:0 Url:http://www.clamav.net @@ -60,9 +61,11 @@ Source4:clamav-rpmlintrc Source5:clamav-rcmilter # http://db.local.clamav.net/main.cvd -Source6:main-54.cvd +%define main_cvd_version 54 +Source6:main-%{main_cvd_version}.cvd # http://db.local.clamav.net/daily.cvd -Source7:daily-15055.cvd +%define daily_cvd_version 16364 +Source7:daily-%{daily_cvd_version}.cvd Patch1: clamav-conf.patch Patch2: clamav-sles9.patch Patch3: clamav-gcc47.patch @@ -86,6 +89,8 @@ %if 0%{?suse_version} > 1120 BuildArch: noarch %endif +Version:%{version} +Release:%{main_cvd_version}.%{daily_cvd_version}.. %description db This package contains a snapshot of the virus description database for @@ -138,11 +143,6 @@ make %{?jobs:-j%jobs} -%check -%if !0%{?qemu_user_space_build:1} -VALGRIND_GENSUP=1 make check -%endif - %install %makeinstall ln -sf docs/html/{clamdoc,index}.html @@ -170,6 +170,21 @@ # Remove bogus dependencies from libclamav.pc sed -i 's/^Libs: .*/Libs: -lclamav/' %buildroot%_libdir/pkgconfig/libclamav.pc +%check + +# signature check using installed clamav sigtool +LD_LIBRARY_PATH="%buildroot%{_libdir}" "%buildroot%{_bindir}/sigtool" --info %buildroot/var/lib/clamav/main.cvd.dist +LD_LIBRARY_PATH="%buildroot%{_libdir}" "%buildroot%{_bindir}/sigtool" --info %buildroot/var/lib/clamav/daily.cvd.dist + +# Check that cvd version matches versions declared in package +test "$(head -c512 %SOURCE6 | cut -d: -f3)" = "%{main_cvd_version}" +test "$(head -c512 %SOURCE7 | cut -d: -f3)" = "%{daily_cvd_version}" + +# regressoin tests +%if !0%{?qemu_user_space_build:1} +VALGRIND_GENSUP=1 make check +%endif + %files %defattr(-,root,root,-) %config(noreplace) %_sysconfdir/*.conf -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2012-10-07 18:54:33 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav", Maintainer is "m...@suse.com" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2012-09-21 14:37:39.0 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2012-10-07 18:54:35.0 +0200 @@ -1,0 +2,5 @@ +Fri Sep 28 09:30:25 UTC 2012 - m...@suse.com + +- 0.97.6 also fixes bnc#780181. + +--- @@ -11,0 +17,5 @@ + +--- +Thu Jun 21 16:09:25 UTC 2012 - m...@suse.com + +- The CVEs below correspont to: bnc#753611, bnc#753613, bnc#753610. Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.3gbgkz/_old 2012-10-07 18:54:37.0 +0200 +++ /var/tmp/diff_new_pack.3gbgkz/_new 2012-10-07 18:54:37.0 +0200 @@ -69,42 +69,14 @@ BuildRoot: %{_tmppath}/%{name}-%{version}-build %description -Clam AntiVirus is an open source (GPL) anti-virus toolkit for UNIX, -designed especially for e-mail scanning on mail gateways. It provides a -number of utilities including a flexible and scalable multi-threaded -daemon, a command line scanner and advanced tool for automatic database -updates. The core of the package is an anti-virus engine available in a -form of shared library. - -Here is a list of the main features: - -* command-line scanner - -* fast, multi-threaded daemon with support for on-access scanning - -* milter interface for sendmail - -* advanced database updater with support for scripted updates and - digital signatures - -* virus scanner C library - -* on-access scanning (Linux and FreeBSD) - -* virus database updated multiple times per day (see home page for - total number of signatures) - -* built-in support for various archive formats, including Zip, RAR, - Tar, Gzip, Bzip2, OLE2, Cabinet, CHM, BinHex, SIS and others - -* built-in support for almost all mail file formats - -* built-in support for ELF executables and Portable Executable files - compressed with UPX, FSG, Petite, NsPack, wwpack32, MEW, Upack - and obfuscated with SUE, Y0da Cryptor and others - -* built-in support for popular document formats including MS Office and -MacOffice files, HTML, RTF and PDF +ClamAV is an open source (GPL) antivirus engine designed for detecting +Trojans, viruses, malware and other malicious threats. It is the de +facto standard for mail gateway scanning. It provides a high +performance mutli-threaded scanning daemon, command line utilities for +on demand file scanning, and an intelligent tool for automatic +signature updates. The core ClamAV library provides numerous file +format detection mechanisms, file unpacking support, archive support, +and multiple signature languages for detecting threats. %package db Summary:Virus Database for ClamAV -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2012-09-21 14:37:36 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav", Maintainer is "m...@suse.com" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2012-08-22 12:11:47.0 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2012-09-21 14:37:39.0 +0200 @@ -1,0 +2,7 @@ +Wed Sep 19 08:07:55 UTC 2012 - tog...@opensuse.org + +- update to 0.97.6 + * libclamav: bb#5751 - cl_scansis() may returan a file descriptor +instead of a valid return code + +--- Old: clamav-0.97.5.tar.gz New: clamav-0.97.6.tar.gz Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.yKIrhf/_old 2012-09-21 14:37:43.0 +0200 +++ /var/tmp/diff_new_pack.yKIrhf/_new 2012-09-21 14:37:43.0 +0200 @@ -45,7 +45,7 @@ Summary:Antivirus Toolkit License:GPL-2.0 Group: Productivity/Security -Version:0.97.5 +Version:0.97.6 Release:0 Url:http://www.clamav.net Requires: latex2html-pngicons @@ -108,7 +108,7 @@ %package db Summary:Virus Database for ClamAV -License:BSD-3-Clause ; GPL-2.0+ ; LGPL-2.1+ ; SUSE-Public-Domain ; MIT +License:BSD-3-Clause and GPL-2.0+ and LGPL-2.1+ and SUSE-Public-Domain and MIT Group: Productivity/Security PreReq: clamav sed /bin/cp /usr/bin/awk /bin/rm %if 0%{?suse_version} > 1120 ++ clamav-0.97.5.tar.gz -> clamav-0.97.6.tar.gz ++ /work/SRC/openSUSE:Factory/clamav/clamav-0.97.5.tar.gz /work/SRC/openSUSE:Factory/.clamav.new/clamav-0.97.6.tar.gz differ: char 5, line 1 -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2012-08-22 12:11:45 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav", Maintainer is "m...@suse.com" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2012-06-25 12:22:42.0 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2012-08-22 12:11:47.0 +0200 @@ -1,0 +2,5 @@ +Thu Jul 26 11:41:02 UTC 2012 - dmuel...@suse.com + +- avoid make check on qemu build + +--- Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.i28Rht/_old 2012-08-22 12:11:50.0 +0200 +++ /var/tmp/diff_new_pack.i28Rht/_new 2012-08-22 12:11:50.0 +0200 @@ -167,7 +167,9 @@ make %{?jobs:-j%jobs} %check +%if !0%{?qemu_user_space_build:1} VALGRIND_GENSUP=1 make check +%endif %install %makeinstall -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2012-06-25 12:22:39 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav", Maintainer is "m...@suse.com" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2012-03-20 13:28:56.0 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2012-06-25 12:22:42.0 +0200 @@ -1,0 +2,17 @@ +Tue Jun 19 00:31:03 UTC 2012 - andreas.stie...@gmx.de + +- update to 0.95.5 [bnc#767574] +- addresses possible evasion cases in some archive formats +- CVE-2012-1457: allows to bypass malware detection via a TAR archive + entry with a length field that exceeds the total TAR file size +- CVE-2012-1458: allows to bypass malware detection via a crafted + reset interval in the LZXC header of a CHM file +- CVE-2012-1459: allows to bypass malware detection via a TAR archive + entry with a length field corresponding to that entire entry, plus + part of the header of the next entry +- also addresses stability issues in portions of the bytecode engine +- update clamav-conf.patch for moved lines +- add a definitions snapshot as {main,daily}.cvd no longer in tarball +- fix file-contains-date-and-time rpmlint warning + +--- Old: clamav-0.97.4.tar.gz New: clamav-0.97.5.tar.gz daily-15055.cvd main-54.cvd Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.WCyavo/_old 2012-06-25 12:22:46.0 +0200 +++ /var/tmp/diff_new_pack.WCyavo/_new 2012-06-25 12:22:46.0 +0200 @@ -45,7 +45,7 @@ Summary:Antivirus Toolkit License:GPL-2.0 Group: Productivity/Security -Version:0.97.4 +Version:0.97.5 Release:0 Url:http://www.clamav.net Requires: latex2html-pngicons @@ -59,6 +59,10 @@ Source3:clamav-updateclamconf Source4:clamav-rpmlintrc Source5:clamav-rcmilter +# http://db.local.clamav.net/main.cvd +Source6:main-54.cvd +# http://db.local.clamav.net/daily.cvd +Source7:daily-15055.cvd Patch1: clamav-conf.patch Patch2: clamav-sles9.patch Patch3: clamav-gcc47.patch @@ -157,7 +161,8 @@ %clamav_check \ %llvm \ --disable-zlib-vcheck \ - --enable-clamdtop + --enable-clamdtop \ + --disable-timestamps make %{?jobs:-j%jobs} @@ -175,7 +180,10 @@ install -m755 %SOURCE5 %buildroot/etc/init.d/clamav-milter ln -s /etc/init.d/clamav-milter %buildroot%_sbindir/rcclamav-milter install -m755 %SOURCE3 %buildroot%_sbindir/updateclamconf +install -d -m755 %buildroot/var/lib/clamav touch %buildroot/var/lib/clamav/{clamd,freshclam}.pid +install -m755 %SOURCE6 %buildroot/var/lib/clamav/main.cvd +install -m755 %SOURCE7 %buildroot/var/lib/clamav/daily.cvd for f in %buildroot/var/lib/clamav/*.cvd; do mv $f $f.dist touch $f ++ clamav-0.97.4.tar.gz -> clamav-0.97.5.tar.gz ++ /work/SRC/openSUSE:Factory/clamav/clamav-0.97.4.tar.gz /work/SRC/openSUSE:Factory/.clamav.new/clamav-0.97.5.tar.gz differ: char 5, line 1 ++ clamav-conf.patch ++ --- /var/tmp/diff_new_pack.WCyavo/_old 2012-06-25 12:22:46.0 +0200 +++ /var/tmp/diff_new_pack.WCyavo/_new 2012-06-25 12:22:46.0 +0200 @@ -1,7 +1,7 @@ Index: etc/clamav-milter.conf === etc/clamav-milter.conf.orig -+++ etc/clamav-milter.conf +--- etc/clamav-milter.conf.orig2012-06-12 14:36:05.0 +0100 etc/clamav-milter.conf 2012-06-18 22:49:23.0 +0100 @@ -2,10 +2,6 @@ ## Example config file for clamav-milter ## @@ -68,8 +68,8 @@ # Index: etc/clamd.conf === etc/clamd.conf.orig -+++ etc/clamd.conf +--- etc/clamd.conf.orig2012-06-12 14:03:26.0 +0100 etc/clamd.conf 2012-06-18 22:49:23.0 +0100 @@ -1,12 +1,8 @@ ## -## Example config file for the Clam AV daemon @@ -134,7 +134,7 @@ # Maximum length the queue of pending connections may grow to. # Default: 200 -@@ -187,7 +183,7 @@ Example +@@ -186,7 +182,7 @@ Example # Run as another user (clamd must be started by root for this option to work) # Default: don't drop privileges @@ -143,7 +143,7 @@ # Initialize supplementary group access (clamd must be started by root). # Default: no -@@ -428,6 +424,10 @@ Example +@@ -440,6 +436,10 @@ Example # Enable Clamuko. Dazuko must be configured and running. Clamuko supports # both Dazuko (/dev/dazuko) and DazukoFS (/dev/d
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2012-03-20 13:28:55 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav", Maintainer is "m...@suse.com" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2012-03-20 01:58:54.0 +0100 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2012-03-20 13:28:56.0 +0100 @@ -1,0 +2,5 @@ +Sat Mar 17 19:36:17 UTC 2012 - dims...@opensuse.org + +- Add clamav-gcc47.patch: Fix build with gcc 4.7. + +--- New: clamav-gcc47.patch Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.GBd5Vk/_old 2012-03-20 13:28:59.0 +0100 +++ /var/tmp/diff_new_pack.GBd5Vk/_new 2012-03-20 13:28:59.0 +0100 @@ -61,6 +61,7 @@ Source5:clamav-rcmilter Patch1: clamav-conf.patch Patch2: clamav-sles9.patch +Patch3: clamav-gcc47.patch BuildRoot: %{_tmppath}/%{name}-%{version}-build %description @@ -129,6 +130,7 @@ # SLES9's libmilter doesn't have smfi_insheader() %patch2 %endif +%patch3 -p1 %build %if 0%{?suse_version} >= 1010 ++ clamav-gcc47.patch ++ Index: clamav-0.97.3/libclamav/c++/llvm/lib/ExecutionEngine/JIT/Intercept.cpp === --- clamav-0.97.3.orig/libclamav/c++/llvm/lib/ExecutionEngine/JIT/Intercept.cpp +++ clamav-0.97.3/libclamav/c++/llvm/lib/ExecutionEngine/JIT/Intercept.cpp @@ -15,6 +15,7 @@ // //===--===// +#include #include "JIT.h" #include "llvm/Support/ErrorHandling.h" #include "llvm/System/DynamicLibrary.h" -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2012-03-20 01:58:51 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav", Maintainer is "m...@suse.com" Changes: --- /work/SRC/openSUSE:Factory/clamav/clamav.changes2011-10-21 16:27:42.0 +0200 +++ /work/SRC/openSUSE:Factory/.clamav.new/clamav.changes 2012-03-20 01:58:54.0 +0100 @@ -1,0 +2,22 @@ +Sat Mar 17 14:18:48 UTC 2012 - tog...@opensuse.org + +- New version 0.97.4 + * libclamav/bytecode.c: reset to BYTECODE_AUTO mode at db reload + so that we don't fail to re-enable or re-disable it again + (bb#3789) + * misc: performance improvement for HP-UX PA-RISC - patch from + Michael Pelletier + (bb#3926) + * libclamav/pe.c: parse vinfo where varfileinfo occours before + stringfileinfo (bb#3062) + * clamd: add support for on-access scanning on OS X with ClamAuth + (beta) + * libclamav/bytecode_api*: Fix Sparc crash (bb #4324) + * libclamav: fix bytecode whitelisting + * libclamav: fix macro detection in OLE2BlockMacros (bb#4269) + * libclamav/readdb.c: allow comments in all db files (bb#3930) + * libclamav/scanners.c: use lsigs when scanning vba data (bb#3922) + * libclamav/matcher-hash.c: Fix SIGBUS on PA-RISC (big-endian) + architectures (bb #3894). + +--- Old: clamav-0.97.3.tar.gz New: clamav-0.97.4.tar.gz Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.UNYmL6/_old 2012-03-20 01:58:59.0 +0100 +++ /var/tmp/diff_new_pack.UNYmL6/_new 2012-03-20 01:58:59.0 +0100 @@ -1,7 +1,7 @@ # # spec file for package clamav # -# Copyright (c) 2011 SUSE LINUX Products GmbH, Nuernberg, Germany. +# Copyright (c) 2012 SUSE LINUX Products GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -16,12 +16,16 @@ # - Name: clamav -BuildRequires: ncurses-devel sed sendmail sendmail-devel +BuildRequires: ncurses-devel +BuildRequires: sed +BuildRequires: sendmail +BuildRequires: sendmail-devel %define llvm --disable-llvm %if 0%{?suse_version} >= 1010 -BuildRequires: bc pkgconfig zlib-devel +BuildRequires: bc +BuildRequires: pkgconfig +BuildRequires: zlib-devel %ifarch %ix86 x86_64 %define llvm --enable-llvm # Needed for compiling LLVM. @@ -29,17 +33,20 @@ %endif %endif %if 0%{?suse_version} >= 1030 -BuildRequires: check-devel libbz2-devel pwdutils python-devel +BuildRequires: check-devel +BuildRequires: libbz2-devel +BuildRequires: pwdutils +BuildRequires: python-devel %define clamav_check --enable-check %else BuildRequires: bzip2 %define clamav_check --disable-check %endif Summary:Antivirus Toolkit -Version:0.97.3 -Release:1 License:GPL-2.0 Group: Productivity/Security +Version:0.97.4 +Release:0 Url:http://www.clamav.net Requires: latex2html-pngicons Obsoletes: clamav-db < 0.88.3 @@ -95,9 +102,9 @@ MacOffice files, HTML, RTF and PDF %package db +Summary:Virus Database for ClamAV License:BSD-3-Clause ; GPL-2.0+ ; LGPL-2.1+ ; SUSE-Public-Domain ; MIT Group: Productivity/Security -Summary:Virus Database for ClamAV PreReq: clamav sed /bin/cp /usr/bin/awk /bin/rm %if 0%{?suse_version} > 1120 BuildArch: noarch ++ clamav-0.97.3.tar.gz -> clamav-0.97.4.tar.gz ++ /work/SRC/openSUSE:Factory/clamav/clamav-0.97.3.tar.gz /work/SRC/openSUSE:Factory/.clamav.new/clamav-0.97.4.tar.gz differ: char 5, line 1 -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at 2011-12-06 18:03:07 Comparing /work/SRC/openSUSE:Factory/clamav (Old) and /work/SRC/openSUSE:Factory/.clamav.new (New) Package is "clamav", Maintainer is "m...@suse.com" Changes: Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.3KuJlN/_old 2011-12-06 18:05:07.0 +0100 +++ /var/tmp/diff_new_pack.3KuJlN/_new 2011-12-06 18:05:07.0 +0100 @@ -38,7 +38,7 @@ Summary:Antivirus Toolkit Version:0.97.3 Release:1 -License:GPLv2 +License:GPL-2.0 Group: Productivity/Security Url:http://www.clamav.net Requires: latex2html-pngicons @@ -95,7 +95,7 @@ MacOffice files, HTML, RTF and PDF %package db -License:BSD3c(or similar) ; GPLv2+ ; LGPLv2.1+ ; Public Domain, Freeware ; MIT License (or similar) +License:BSD-3-Clause ; GPL-2.0+ ; LGPL-2.1+ ; SUSE-Public-Domain ; MIT Group: Productivity/Security Summary:Virus Database for ClamAV PreReq: clamav sed /bin/cp /usr/bin/awk /bin/rm -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at Thu Jul 28 16:54:20 CEST 2011. --- clamav/clamav.changes 2011-06-09 12:36:51.0 +0200 +++ /mounts/work_src_done/STABLE/clamav/clamav.changes 2011-07-28 15:15:16.0 +0200 @@ -1,0 +2,15 @@ +Tue Jul 26 08:55:27 UTC 2011 - m...@novell.com + +- New version 0.97.2 (bnc#708263): + * libclamav/matcher-hash.c: off by one read in cli_hm_scan +(bb#2818, CVE-2011-2721). + * libclamav/pdf.c: fix encrypted pdf detection (bb #2988) + * clamav-milter/clamfi.c: fix typo in error message (bb#3040) + * libclamav/lzma_iface.c: shut up huge alloc warns for 7z/lzma +(bb#2913) + * libclamav/c++/bytecode2llvm.cpp: fix use of unaddressable data +in bytecode_watchdog. + * libclamav/phishcheck.c: fix safebrowsing detection on certain +URLs + +--- @@ -4 +19 @@ -- New version 0.97.1: +- New version 0.97.1 (bnc#698999): calling whatdependson for head-i586 Old: clamav-0.97.1.tar.bz2 New: clamav-0.97.2.tar.bz2 Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.miTkqj/_old 2011-07-28 16:52:59.0 +0200 +++ /var/tmp/diff_new_pack.miTkqj/_new 2011-07-28 16:52:59.0 +0200 @@ -36,7 +36,7 @@ %define clamav_check --disable-check %endif Summary:Antivirus Toolkit -Version:0.97.1 +Version:0.97.2 Release:1 License:GPLv2 Group: Productivity/Security ++ clamav-0.97.1.tar.bz2 -> clamav-0.97.2.tar.bz2 ++ clamav/clamav-0.97.1.tar.bz2 /mounts/work_src_done/STABLE/clamav/clamav-0.97.2.tar.bz2 differ: char 11, line 1 Remember to have fun... -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit clamav for openSUSE:Factory
Hello community, here is the log from the commit of package clamav for openSUSE:Factory checked in at Fri Jun 10 11:44:56 CEST 2011. --- clamav/clamav.changes 2011-02-09 10:24:31.0 +0100 +++ /mounts/work_src_done/STABLE/clamav/clamav.changes 2011-06-09 12:36:51.0 +0200 @@ -1,0 +2,43 @@ +Thu Jun 9 10:04:22 UTC 2011 - m...@novell.com + +- New version 0.97.1: + * libclamav/mew.c: harden boundary check on e8/e9 fixup + * libclamav/matcher-hash.c: in hm_sort don't swap an item with +itself (bb#2818) + * freshclam/manager.c: fix return code of Rfc2822DateTime() +(bb#2809) + * libclamav/pdf.c: better detection for encrypted PDFs +(bb #2448) + * libclamav/c++: add support for building with external LLVM 2.9, +and drop external 2.8 support + * clamd: log request ip address for instream scans #bb2592 + * libclamav/c++/llvm/lib/Target/X86/X86InstrInfo.td: bb #2763 +don't assert on AVX chips (Intel Core i5 and i7) + * sigtool: properly normalize html files (bb#2764) + * sigtool/sigtool.c: fix formatting of hash dbs (bb#2765) + * freshclam: add mirror statistics mechanism + * libclamav/pe_icons.c: don't sigbus on sparc (bb#2695) + * libclamav/pe.c: reset corrupted status before bytecode +hooks (bb#2544) + * sigtool, freshclam: put .info on top of container to speed +up loading + * sigtool: fix --verify-cdiff + * sigtool: allow arbitrary names for --build + * clamdscan: fix file exclusion (bb#2579) + * clamd: add new option ClamukoExcludeUID (bb#2260) + * libclamav/elf.c: fix incorrect detection of Broken.Executable +(bb#2580) + * shared/output.c: fix empty lines in syslog (bb#2578) + * clamd: update description of ReadTimeout (bb#2565) + * clamd: add new config option BytecodeUnsigned (bb#2537); +drop "None" from BytecodeSecurity + * clamscan: add new switch --bytecode-unsigned and drop +--bytecode-trust-all + * sigtool/sigtool.c: improve handling of bytecode.info (bb#2292) + * libclamav/others.c: make sure TLS key is initializer +(bb #2588). + * configure: check for enable_extended_FILE_stdio (bb #2542) + * sigtool/sigtool.c: handle all signature formats with +--(list|find)-sigs (bb#2534) + +--- @@ -4 +47 @@ -- New version 0.97: +- Security update 0.9.7 (bnc#673753): calling whatdependson for head-i586 Old: clamav-0.97.tar.bz2 New: clamav-0.97.1.tar.bz2 Other differences: -- ++ clamav.spec ++ --- /var/tmp/diff_new_pack.3YwlDl/_old 2011-06-10 11:41:26.0 +0200 +++ /var/tmp/diff_new_pack.3YwlDl/_new 2011-06-10 11:41:26.0 +0200 @@ -36,7 +36,7 @@ %define clamav_check --disable-check %endif Summary:Antivirus Toolkit -Version:0.97 +Version:0.97.1 Release:1 License:GPLv2 Group: Productivity/Security ++ clamav-0.97.tar.bz2 -> clamav-0.97.1.tar.bz2 ++ clamav/clamav-0.97.tar.bz2 /mounts/work_src_done/STABLE/clamav/clamav-0.97.1.tar.bz2 differ: char 11, line 1 Remember to have fun... -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org