Ubuntu
clamav package

lp:ubuntu/intrepid-security/clamav

  1. Intrepid (8.10)
  2. intrepid-security
Created by James Westby and last modified
Get this branch:
bzr branch lp:ubuntu/intrepid-security/clamav
Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

Related bugs

Related blueprints

Branch information

Owner:
Ubuntu branches
Review team:
Ubuntu Development Team
Status:
Development

Recent revisions

60. By Jamie Strandboge

* SECURITY UPDATE: (LP: #553266)
* References clamav bugs #1771 and #1826
* libclamav/mspack.c: fix Quantum decompressor (bb#1771)
  - clamav git 224fee54dd6cd8933d7007331ec2bfca0398d4b4
* libclamav/mspack.c: improve unpacking of malformed cabinets (bb#1826)
  - clamav git 31b77b3fb589ab07e7b4d84f8b3825178864ee51
* patch based on work by Scott Kitterman

59. By Scott Kitterman

* SECURITY UPDATE: (LP: #360502)
* References
* libclamav/others.h: harden CLI_ISCONTAINED macro (bb#1552) (Denial of
  service)
* Note: clamav-milter bugs such as 1499, 1522, 1524, and 1531 are not
  relevant to clamav 0.94.2 and earlier versions
* Note: The code related to clamav bug 1553 was substantially rewritten in
  0.95, so it is also not relevant to clamav 0.94.2 and earlier versions
* Bump CL_FLEVEL_DCONF to 0.95.1 level since relevant security patches are
  applied
* Added CVE references for 0.94.dfsg.2-1ubuntu0.2 now that they've been
  assigned

58. By Scott Kitterman

* SECURITY UPDATE (LP: #354190):
* References Clamav #1335, #1462
* libclamav/pe.c: division by zero with --detect-broken (bb#1335) (Denial of
  service)
* libclamav/untar.c: infloop in tar.c (bb#1462) (Denial of Service)
* Add dconf_renable patch from 0.95 (previously backported to 0.92.2)
  - Bump CL_FLEVEL_DCONF to 0.95 level since security patches are applied

57. By Scott Kitterman

* SECURITY UPDATE: (LP: #304017)
  - Fix recursive stack overflow in jpeg parsing code
* Other changes:
  - debian/control: Recommends apparmor >= 2.1+1075-0ubuntu6 for
    clamav-daemon and clamav-freshclam
  - add debian/usr.bin.freshclam and debian/usr.sbin.clamd
  - debian/clamav-(daemon|freshclam).dirs: add etc/apparmor.d/force-complain
  - debian/clamav-(daemon|freshclam).install: install profiles
  - debian/clamav-(daemon|freshclam).preinst: create symlink for
    force-complain/ on pre-feisty upgrades, upgrades where apparmor-profiles
    profile is unchanged (ie non-enforcing) and upgrades where the profile
    doesn't exist.
  - debian/clamav-(daemon|freshclam).postrm: remove symlink in
    force-complain/ on purge.
  - debian/clamav-(daemon|freshclam).postinst.in: reload apparmor
  - update README.Debian with note on Apparmor
  - Enable upstream test suite in debian/rules

56. By Scott Kitterman

* SECURITY UPDATE: (LP: #296704)
  - Fix off-by-one heap overflow
* Other changes:
  - debian/control: Recommends apparmor >= 2.1+1075-0ubuntu6 for
    clamav-daemon and clamav-freshclam
  - add debian/usr.bin.freshclam and debian/usr.sbin.clamd
  - debian/clamav-(daemon|freshclam).dirs: add etc/apparmor.d/force-complain
  - debian/clamav-(daemon|freshclam).install: install profiles
  - debian/clamav-(daemon|freshclam).preinst: create symlink for
    force-complain/ on pre-feisty upgrades, upgrades where apparmor-profiles
    profile is unchanged (ie non-enforcing) and upgrades where the profile
    doesn't exist.
  - debian/clamav-(daemon|freshclam).postrm: remove symlink in
    force-complain/ on purge.
  - debian/clamav-(daemon|freshclam).postinst.in: reload apparmor
  - update README.Debian with note on Apparmor
* Update apparmor profile for clamd to work with TCP sockets (LP: #288942)

55. By Jamie Strandboge

update clamd profile for use with exim (LP: #288110)

54. By Scott Kitterman

* New upstream RC release (LP:#286176)
  - Odd version numbering is to get a higher version than 0.94.dfsg without
    an epoch and was coordinated with Debian
  - Packaging based on current Ubuntu (0.94.dfsg-1ubuntu2) and does not use
    unreleased packaging improvements in the Debian pkg-claamv Git repo to
    minimize risk for Intrepid
  - Handle new freshclam option SubmitDetectionStats (cherry picked from
    Debian pkg-clamav Git repo)

53. By Scott Kitterman

Update apparmor profile based on test feedback (LP: #276865)
-Thanks to Ante Karamatić for the change

52. By Jamie Strandboge

* Follow ApparmorProfileMigration and force apparmor complain mode on some
  upgrades (LP: #264817)
  - debian/control: Recommends apparmor >= 2.1+1075-0ubuntu6 for
    clamav-daemon and clamav-freshclam
  - add debian/usr.bin.freshclam and debian/usr.sbin.clamd
  - debian/clamav-(daemon|freshclam).dirs: add etc/apparmor.d/force-complain
  - debian/clamav-(daemon|freshclam).install: install profiles
  - debian/clamav-(daemon|freshclam).preinst: create symlink for
    force-complain/ on pre-feisty upgrades, upgrades where apparmor-profiles
    profile is unchanged (ie non-enforcing) and upgrades where the profile
    doesn't exist.
  - debian/clamav-(daemon|freshclam).postrm: remove symlink in
    force-complain/ on purge.
  - debian/clamav-(daemon|freshclam).postinst.in: reload apparmor
  - update README.Debian with note on Apparmor

51. By Stephen Gran

* New upstream version (closes: #497662, #497773)
  - lots of new options for clamd.conf
  - fixes CVEs CVE-2008-3912, CVE-2008-3913, CVE-2008-3914, and
    CVE-2008-1389
* No longer supports --unzip option, so typo is gone (closes: #496276)
* Translations:
  - sv (thanks Martin Bagge <email address hidden>) (closes: #491760)

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
lp:ubuntu/natty/clamav
This branch contains Public information 
Everyone can see this information.

Subscribers