updated to 0.97.5

2012-06-16 12:19:48 +02:00 · 2012-06-16 12:19:48 +02:00 · 2d0fed8b46
commit 2d0fed8b46
parent 6a1f662439
4 changed files with 17 additions and 4 deletions
--- a/.gitignore
+++ b/.gitignore
@ -1 +1,4 @@
 /clamav-0.97.4-norar.tar.xz
+/clamav-0.97.5-norar.tar.xz
+/daily-15050.cvd
+/main-54.cvd
--- a/clamav.spec
+++ b/clamav.spec
@ -54,8 +54,8 @@ test "$1" = "0" || /bin/systemctl try-restart %2 >/dev/null 2>&1 || :\

 Summary:	End-user tools for the Clam Antivirus scanner
 Name:		clamav
-Version:	0.97.4
-Release:	%release_func 1801
+Version:	0.97.5
+Release:	%release_func 1800
 License:	%{?with_unrar:proprietary}%{!?with_unrar:GPLv2}
 Group:		Applications/File
 URL:		http://www.clamav.net
@ -867,6 +867,16 @@ test "$1" != "0" || /sbin/initctl -q stop clamav-milter || :


 %changelog
+* Sat Jun 16 2012 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.97.5-1800
+- updated to 0.97.5
+- CVE-2012-1457: allows to bypass malware detection via a TAR archive
+  entry with a length field that exceeds the total TAR file size
+- CVE-2012-1458: allows to bypass malware detection via a crafted
+  reset interval in the LZXC header of a CHM file
+- CVE-2012-1459: allows to bypass malware detection via a TAR archive
+  entry with a length field corresponding to that entire entry, plus
+  part of the header of the next entry
+
 * Fri Apr 13 2012 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.97.4-1801
 - build with -fPIE

--- a/2
+++ b/2
@ -1 +1 @@
-0.97.4
+0.97.5
--- a/2
+++ b/2
@ -1 +1 @@
-3261d6e7c6542ea679075b8c53bd211d  clamav-0.97.4-norar.tar.xz
+f8e88e6adc82349e5babfa6ee7bb98fa  clamav-0.97.5-norar.tar.xz
 @ -1 +1 @@
 .97.4
 .97.5