- Upgrade to 0.94 (SECURITY), fixes #461461:
- CVE-2008-1389 Invalid memory access in the CHM unpacker - CVE-2008-3912 Out-of-memory NULL pointer dereference in mbox/msg - CVE-2008-3913 Memory leak in code path in freshclam's manager.c - CVE-2008-3914 Multiple file descriptor leaks on the code paths
This commit is contained in:
parent
20b5089433
commit
da4aada211
@ -1 +1 @@
|
|||||||
clamav-0.93.3-norar.tar.bz2
|
clamav-0.94-norar.tar.bz2
|
||||||
|
13
Makefile
13
Makefile
@ -19,3 +19,16 @@ MAKEFILE_COMMON := $(shell $(checkout-makefile-common))
|
|||||||
endif
|
endif
|
||||||
|
|
||||||
include $(MAKEFILE_COMMON)
|
include $(MAKEFILE_COMMON)
|
||||||
|
|
||||||
|
|
||||||
|
# can not use final tarball name here as it will conflict with rules
|
||||||
|
# within Makefile.common
|
||||||
|
TARBALL_CLEAN = ${NAME}-${VERSION}-norar.tar.bz2.tmp
|
||||||
|
TARBALL = ${NAME}-${VERSION}.tar.gz
|
||||||
|
|
||||||
|
clean-sources: ${TARBALL_CLEAN}
|
||||||
|
|
||||||
|
${TARBALL_CLEAN}: ${TARBALL}
|
||||||
|
rm -f $@.tmp
|
||||||
|
zcat $< | tar --delete -f - '*/libclamunrar/*' | bzip2 -c > $@.tmp
|
||||||
|
mv $@.tmp $@
|
||||||
|
13
clamav.spec
13
clamav.spec
@ -15,7 +15,7 @@
|
|||||||
|
|
||||||
Summary: End-user tools for the Clam Antivirus scanner
|
Summary: End-user tools for the Clam Antivirus scanner
|
||||||
Name: clamav
|
Name: clamav
|
||||||
Version: 0.93.3
|
Version: 0.94
|
||||||
Release: %release_func 1
|
Release: %release_func 1
|
||||||
|
|
||||||
License: GPLv2
|
License: GPLv2
|
||||||
@ -23,8 +23,8 @@ Group: Applications/File
|
|||||||
URL: http://www.clamav.net
|
URL: http://www.clamav.net
|
||||||
# Unfortunately, clamav includes support for RAR v3, derived from GPL
|
# Unfortunately, clamav includes support for RAR v3, derived from GPL
|
||||||
# incompatible unrar from RARlabs. We have to pull this code out.
|
# incompatible unrar from RARlabs. We have to pull this code out.
|
||||||
# All that is needed to make the clean tarball is: rm -rf libclamunrar*
|
# tarball was created by
|
||||||
# Note that you also need patch26.
|
# make clean-sources [TARBALL=<original-tarball>] [VERSION=<version>]
|
||||||
Source0: clamav-%{version}-norar.tar.bz2
|
Source0: clamav-%{version}-norar.tar.bz2
|
||||||
# Source0: http://download.sourceforge.net/sourceforge/clamav/%name-%version.tar.gz
|
# Source0: http://download.sourceforge.net/sourceforge/clamav/%name-%version.tar.gz
|
||||||
# No sense in using this file for the time being.
|
# No sense in using this file for the time being.
|
||||||
@ -511,6 +511,13 @@ test "$1" = 0 || %_initrddir/clamav-milter condrestart >/dev/null || :
|
|||||||
|
|
||||||
|
|
||||||
%changelog
|
%changelog
|
||||||
|
* Sun Oct 26 2008 Robert Scheck <robert@fedoraproject.org> - 0.94-1
|
||||||
|
- Upgrade to 0.94 (SECURITY), fixes #461461:
|
||||||
|
- CVE-2008-1389 Invalid memory access in the CHM unpacker
|
||||||
|
- CVE-2008-3912 Out-of-memory NULL pointer dereference in mbox/msg
|
||||||
|
- CVE-2008-3913 Memory leak in code path in freshclam's manager.c
|
||||||
|
- CVE-2008-3914 Multiple file descriptor leaks on the code paths
|
||||||
|
|
||||||
* Mon Jul 14 2008 Robert Scheck <robert@fedoraproject.org> - 0.93.3-1
|
* Mon Jul 14 2008 Robert Scheck <robert@fedoraproject.org> - 0.93.3-1
|
||||||
- Upgrade to 0.93.3 (SECURITY), rediffed -initoff patch:
|
- Upgrade to 0.93.3 (SECURITY), rediffed -initoff patch:
|
||||||
- CVE-2008-2713 Out-of-bounds read on petite files
|
- CVE-2008-2713 Out-of-bounds read on petite files
|
||||||
|
Loading…
Reference in New Issue
Block a user