lp:ubuntu/vivid-security/clamav
- Get this branch:
- bzr branch lp:ubuntu/vivid-security/clamav
Branch merges
Branch information
Recent revisions
- 155. By Marc Deslauriers
-
* Updated to 0.98.7 to fix multiple issues
- CVE-2015-2170
- CVE-2015-2221
- CVE-2015-2222
- CVE-2015-2305
- CVE-2015-2668
* Refreshed patches for 0.98.7:
- d/p/0005-libclamav- use-libmspack. patch
- d/p/0007-fix-ssize_ t-size_ t-off_t- printf- modifier. patch
- d/p/0008-hardcode- LLVM-linker- flag-because- llvm-config- return. patch
- d/p/0015-llvm-don- t-use-system- libs.patch
* Removed upstreamed patches:
- d/p/0012-remove- AC_CONFIG_ SRCDIR- llvm-configure- from-libclama. patch - 154. By Matthias Klose
-
* Don't use llvm on armhf, arm64 and ppc64el.
- armhf: Should work, but upstream claims it's not tested and
refuses to build. Why do we have testsuites?
- arm64: No JIT available in 3.5.
- ppc64el: Builds, but fails one test. - 152. By Scott Kitterman
-
[ Sebastian Andrzej Siewior ]
* update "fix-ssize_t-size_ t-off_t- printf- modifier" , include of misc.h was
missing but was pulled in via the systemd patch.
* Don't leak return codes from libmspack to clamav API. (Closes: #774686).[ Andreas Cadhalpun ]
* Add patch to avoid emitting incremental progress messages when not
outputting to a terminal. (Closes: #767350)
* Update lintian-overrides for unused-file-paragraph- in-dep5- copyright.
* clamav-base.postinst: always chown /var/log/clamav and /var/lib/clamav
to clamav:clamav, not only on fresh installations. (Closes: #775400)
* Adapt the clamav-daemon and clamav-freshclam logrotate scripts,
so that they correctly work under systemd.
* Move the PidFile variable from the clamd/freshclam configuration files
to the init scripts. This makes the init scripts more robust against
misconfiguration and avoids error messages with systemd. (Closes: #767353)
* debian/copyright: drop files from Files-Excluded only present in github
tarballs
* Drop Workaround-a-bug-in- libc-on- Hurd.patch, because hurd got fixed.
(see #752237)
* debian/rules: Remove useless --with-system- tommath --without- included- ltdl
configure options.[ Scott Kitterman ]
* Stop stripping llvm when repacking the tarball as the system llvm on some
releases is too old to use
* New upstream bugfix release
- Library shared object revisions.
- Includes a patch from Sebastian Andrzej Siewior making ClamAV pid files
compatible with systemd.
- Fix a heap out of bounds condition with crafted Yoda's crypter files.
This issue was discovered by Felix Groebert of the Google Security Team.
- Fix a heap out of bounds condition with crafted mew packer files. This
issue was discovered by Felix Groebert of the Google Security Team.
- Fix a heap out of bounds condition with crafted upx packer files. This
issue was discovered by Kevin Szkudlapski of Quarkslab.
- Fix a heap out of bounds condition with crafted upack packer files. This
issue was discovered by Sebastian Andrzej Siewior. CVE-2014-9328.
- Compensate a crash due to incorrect compiler optimization when handling
crafted petite packer files. This issue was discovered by Sebastian
Andrzej Siewior.
* Update lintian override for embedded zlib to match new so version[ Javier Fernández-Sanguino ]
* Updated Spanish Debconf template translation (Closes: #773563) - 150. By Andreas Cadhalpun
-
* Automatically extend the clamav-
daemon. socket systemd unit to create the
TCP socket, when clamd is configured to use TCP. (Closes: #771911)
* Also accept AF_INET6 sockets in clamd, as they are now supported.
Systemd uses AF_INET6 for TCP sockets without specified address. - 149. By Sebastian Andrzej Siewior <email address hidden>
-
[ Sebastian Andrzej Siewior ]
* import new upsstream version, refresh patches:
dropped:
- LLVM-3.5-version- check-update. patch
- add-support-for-LLVM- 3.5.patch
- fix-test-failure- on-powerpc- again.patch
updated:
- hardcode-LLVM-linker- flag-because- llvm-config- return
- added "bb-10731-Allow-to- specificy- a-group- for-the- socket- o" as
dependecy for "clamav-milter- add-additinal- SMFIF_- flags-before- invo"
(Closes: #763300)
* Add "Bump-.so-version- number" , likely the RPM version of 769384.
* Add "llvm-don-t-use-system- libs", since we don't link against .a libs, we
don't need the deps either.[ Scott Kitterman ]
* Update libclamav6: embedded-library lintian override for new libclamav6 so
version - 148. By Andreas Cadhalpun
-
Bump the version requirement for the cl_retflevel symbol to 0.98.5~rc1,
because the CL_FLEVEL, which this function returns, increased in that
version the last time.
This ensures that the functionality level of libclamav is always new
enough. (Closes: #769384) - 147. By Sebastian Andrzej Siewior <email address hidden>
-
Add "clamav-
milter- add-additinal- SMFIF_- flags-before- invo" to make sure
clamav-milter is able to add/replace X-Virus-StatusX- Virus-Scanned
header flags. Broken since bb-10731 got included (0.98.5~beta1+dfsg- 3). - 146. By Andreas Cadhalpun
-
Add patch to fix test failure on powerpc again.
(This is the same fix as in 0.98.4~rc1+dfsg-3.)
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/wily/clamav