lp:ubuntu/intrepid-security/clamav
- Get this branch:
- bzr branch lp:ubuntu/intrepid-security/clamav
Branch merges
Branch information
Recent revisions
- 60. By Jamie Strandboge
-
* SECURITY UPDATE: (LP: #553266)
* References clamav bugs #1771 and #1826
* libclamav/mspack.c: fix Quantum decompressor (bb#1771)
- clamav git 224fee54dd6cd8933d7007331ec2bf ca0398d4b4
* libclamav/mspack.c: improve unpacking of malformed cabinets (bb#1826)
- clamav git 31b77b3fb589ab07e7b4d84f8b3825 178864ee51
* patch based on work by Scott Kitterman - 59. By Scott Kitterman
-
* SECURITY UPDATE: (LP: #360502)
* References
* libclamav/others.h: harden CLI_ISCONTAINED macro (bb#1552) (Denial of
service)
* Note: clamav-milter bugs such as 1499, 1522, 1524, and 1531 are not
relevant to clamav 0.94.2 and earlier versions
* Note: The code related to clamav bug 1553 was substantially rewritten in
0.95, so it is also not relevant to clamav 0.94.2 and earlier versions
* Bump CL_FLEVEL_DCONF to 0.95.1 level since relevant security patches are
applied
* Added CVE references for 0.94.dfsg.2-1ubuntu0. 2 now that they've been
assigned - 58. By Scott Kitterman
-
* SECURITY UPDATE (LP: #354190):
* References Clamav #1335, #1462
* libclamav/pe.c: division by zero with --detect-broken (bb#1335) (Denial of
service)
* libclamav/untar.c: infloop in tar.c (bb#1462) (Denial of Service)
* Add dconf_renable patch from 0.95 (previously backported to 0.92.2)
- Bump CL_FLEVEL_DCONF to 0.95 level since security patches are applied - 57. By Scott Kitterman
-
* SECURITY UPDATE: (LP: #304017)
- Fix recursive stack overflow in jpeg parsing code
* Other changes:
- debian/control: Recommends apparmor >= 2.1+1075-0ubuntu6 for
clamav-daemon and clamav-freshclam
- add debian/usr.bin. freshclam and debian/ usr.sbin. clamd
- debian/clamav- (daemon| freshclam) .dirs: add etc/apparmor. d/force- complain
- debian/clamav- (daemon| freshclam) .install: install profiles
- debian/clamav- (daemon| freshclam) .preinst: create symlink for
force-complain/ on pre-feisty upgrades, upgrades where apparmor-profiles
profile is unchanged (ie non-enforcing) and upgrades where the profile
doesn't exist.
- debian/clamav- (daemon| freshclam) .postrm: remove symlink in
force-complain/ on purge.
- debian/clamav- (daemon| freshclam) .postinst. in: reload apparmor
- update README.Debian with note on Apparmor
- Enable upstream test suite in debian/rules - 56. By Scott Kitterman
-
* SECURITY UPDATE: (LP: #296704)
- Fix off-by-one heap overflow
* Other changes:
- debian/control: Recommends apparmor >= 2.1+1075-0ubuntu6 for
clamav-daemon and clamav-freshclam
- add debian/usr.bin. freshclam and debian/ usr.sbin. clamd
- debian/clamav- (daemon| freshclam) .dirs: add etc/apparmor. d/force- complain
- debian/clamav- (daemon| freshclam) .install: install profiles
- debian/clamav- (daemon| freshclam) .preinst: create symlink for
force-complain/ on pre-feisty upgrades, upgrades where apparmor-profiles
profile is unchanged (ie non-enforcing) and upgrades where the profile
doesn't exist.
- debian/clamav- (daemon| freshclam) .postrm: remove symlink in
force-complain/ on purge.
- debian/clamav- (daemon| freshclam) .postinst. in: reload apparmor
- update README.Debian with note on Apparmor
* Update apparmor profile for clamd to work with TCP sockets (LP: #288942) - 54. By Scott Kitterman
-
* New upstream RC release (LP:#286176)
- Odd version numbering is to get a higher version than 0.94.dfsg without
an epoch and was coordinated with Debian
- Packaging based on current Ubuntu (0.94.dfsg-1ubuntu2) and does not use
unreleased packaging improvements in the Debian pkg-claamv Git repo to
minimize risk for Intrepid
- Handle new freshclam option SubmitDetectionStats (cherry picked from
Debian pkg-clamav Git repo) - 53. By Scott Kitterman
-
Update apparmor profile based on test feedback (LP: #276865)
-Thanks to Ante Karamatić for the change - 52. By Jamie Strandboge
-
* Follow ApparmorProfile
Migration and force apparmor complain mode on some
upgrades (LP: #264817)
- debian/control: Recommends apparmor >= 2.1+1075-0ubuntu6 for
clamav-daemon and clamav-freshclam
- add debian/usr.bin. freshclam and debian/ usr.sbin. clamd
- debian/clamav- (daemon| freshclam) .dirs: add etc/apparmor. d/force- complain
- debian/clamav- (daemon| freshclam) .install: install profiles
- debian/clamav- (daemon| freshclam) .preinst: create symlink for
force-complain/ on pre-feisty upgrades, upgrades where apparmor-profiles
profile is unchanged (ie non-enforcing) and upgrades where the profile
doesn't exist.
- debian/clamav- (daemon| freshclam) .postrm: remove symlink in
force-complain/ on purge.
- debian/clamav- (daemon| freshclam) .postinst. in: reload apparmor
- update README.Debian with note on Apparmor - 51. By Stephen Gran
-
* New upstream version (closes: #497662, #497773)
- lots of new options for clamd.conf
- fixes CVEs CVE-2008-3912, CVE-2008-3913, CVE-2008-3914, and
CVE-2008-1389
* No longer supports --unzip option, so typo is gone (closes: #496276)
* Translations:
- sv (thanks Martin Bagge <email address hidden>) (closes: #491760)
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/natty/clamav