lp:ubuntu/edgy-security/clamav

Branch merges

Propose for merging

No branches dependent on this one.

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related bugs

Related blueprints

13. By StefanPotyra on 2007-01-06

* SECURITY UPDATE: Fix a MIME decode bypass vulnerability.
* Add 'debian/patches/35_message_c_mimedecode_bypass.dpatch'
  for the fix, taken from the difference of liblcamav/message.c
  between this and the fixed version (0.88.7).
* References:
  CVE 2006-6406.

12. By Kees Cook on 2006-10-23

* SECURITY UPDATE: multiple denial of service attacks in file processors.
* Add 'debian/patches/30_pe_chm_overflows.dpatch' to close overflows.
  Patch from Debian stable (Closes Malone #66510).
* References
  CVE-2006-4182, CVE-2006-5295

11. By Benjamin Montgomery on 2006-08-09

Merge from debian unstable.

10. By Benjamin Montgomery on 2006-08-07

* Merge from debian unstable.
* Re-Added fixed from Martin Pitt (0.88.1-1ubuntu1) and
  Chuck Short (0.88.1-1ubuntu2)

9. By Stephan Rügamer on 2006-05-14

* Merged new (debian) upstream
* Re-Added fixed from Martin Pitt (0.88.1-1ubuntu1)
  and Chuck Short (0.88.1-1ubuntu2)

8. By Chuck Short on 2006-05-04

* debian/clamav-daemon.init.
  + Fixed init script. (Closes: Malone #39263)

7. By Martin Pitt on 2006-04-11

* Synchronize to Debian to get new upstream microrelease (UVF exception
  approved by Daniel Holbach). This fixes the following vulnerabilities:
  - CVE-2006-1614: integer overflow in the PE header parser
  - CVE-2006-1615: format string vulnerabilities in logging code
  - CVE-2006-1630: DoS due to invalid memory access in cli_bitset_set()
* debian/clamav-base.init-stub: Protect 'x && y' with '|| true' to not break
  init script if it's run under set -e.

6. By Adam Conrad on 2006-02-24

* Ship a new file, /etc/clamav/clamav-base.init, which is a stub
  containing common setup functions required for each of the other
  three init scripts. Currently, all it does is create the /var/run
  directory that we need if /var/run is on tmpfs.
* Make all three of our init scripts source the above file.

5. By Stephen Gran on 2006-01-10

Actually rebuild ./configure with the magic to make pass_all work

4. By Stephen Gran on 2005-11-03

* New upstream release
  - Upstream fix for possible infinite loop
    libclamav/tnef.c: IDEF1169]
  - Upstream fix for possible infinite loop
    libclamav/mspack/cabd.c: IDEF1180]
  - Upstream fix for buffer size calculation
    libclamav/fsg.c: ZDI-CAN-004]
  - Upstream fix for possible infinite loop
    libclamav/others.c,h, libclamav/ole2_extract.c: CAN-2005-3239]
    (closes: #333566)
  - Upstream fix for boundary checks
    libclamav/petite.c]
  - Upstream fix to scan attachments that have no file names
    libclamav/mbox.c]
* Some more lsb changes to init scripts
* New Translations:
  - it (Thanks Cristian Rigamonti <email address hidden>)(closes: #330240)
  - sv (Thanks Daniel Nylander <email address hidden>)(closes: #333400)
* Move to dpatch for patch management, and add build-dependencies (dpatch
  and cpp)
* Apply patch for bus error on sparc in zzip routines (closes: #322396)