-
clamav (0.95.3+dfsg-1ubuntu0.09.04~intrepid3) intrepid-security; urgency=low
* SECURITY UPDATE: (LP: #553266)
* References clamav bugs #1771 and #1826
* libclamav/mspack.c: fix Quantum decompressor (bb#1771)
- clamav git 224fee54dd6cd8933d7007331ec2bfca0398d4b4
* libclamav/mspack.c: improve unpacking of malformed cabinets (bb#1826)
- clamav git 31b77b3fb589ab07e7b4d84f8b3825178864ee51
* patch based on work by Scott Kitterman
-- Jamie Strandboge <email address hidden> Tue, 06 Apr 2010 13:09:52 -0500
-
clamav (0.95.3+dfsg-1ubuntu0.09.04~intrepid2) intrepid-backports; urgency=low
* Also drop libtommath-dev from libclamav-dev depends so it is installable
-- Scott Kitterman <email address hidden> Fri, 06 Nov 2009 02:11:46 -0500
-
clamav (0.95.3+dfsg-1ubuntu0.09.04~intrepid1) intrepid-backports; urgency=low
* Source backport for Intrepid from jaunty-proposed (LP: #473707)
- Drop build-dep on libtommath-dev and use internal copy
-- Scott Kitterman <email address hidden> Thu, 05 Nov 2009 23:14:14 -0500
-
clamav (0.95.2+dfsg-4ubuntu1.1~intrepid1) intrepid-backports; urgency=low
* Source backport for clamav (LP: #423793)
- Drop build-dep on libtommath-dev (and use the internal copy) since it is
in Universe in Intrepid
* Updated clamd apparmor profile
- debian/usr.sbin.clamd: added support for havp (LP: #423669)
clamav (0.95.2+dfsg-4ubuntu1.1) jaunty-proposed; urgency=low
* New upstream micro-version ugrade (LP: #394870)
* Upgrade packaging to karmic standard due to immaturity of 0.95 packaging
when jaunty released:
[ Scott Kitterman ]
* Add the milter logrotate file to the list of purged files
- Cherry picked from pkg-clamav git (thanks to Stephen Gran)
0aebeb19f8169da097d21b021dd67ca06ffe3ca6
[ Jamie Strandboge ]
* update clamav-freshclam and clamav-daemon postinst to reload the
individual AppArmor profiles instead of reloading all of AppArmor
- LP: #397988
[ Michael Meskes ]
* Applied patch assembled by Christian Perrier <email address hidden>:
- Debconf templates and debian/control reviewed by the debian-l10n-
english team as part of the Smith review project. Closes: #523573
- [Debconf translation updates]
- Swedish. Closes: #525044
- Japanese. Closes: #525084
- French. Closes: #526024
- Portuguese. Closes: #526644
- Russian. Closes: #526727
- German. Closes: #526730
- Dutch. Closes: #526745
- Galician. Closes: #527320
- Basque. Closes: #530854
- Finnish (closes: #534339)
* Made pid files word readable. There doesn't seem to be any sense in not
doing this given that the information is available for everyone anyway.
Closes: #527901
[ Stephen Gran ]
* Lots more milter maintainer script cleanups
* Don't abort dpkg on failed start (closes: #533397)
* Get rid of spurious patch downgrading version (closes: #533638)
* Should fix crash on unofficial sigs (closes: #525483)
* Get rid of ridiculous home rolled suid (closes: #522106)
* Freshclam gets 0400 or 0444 config file (closes: #524356)
* Debconf templates and debian/control reviewed by the debian-l10n-
english team as part of the Smith review project. Closes: #523573
* [Debconf translation updates]
- French (closes: #533667)
- Portuguese (closes: #533779)
- Russian (closes: #533548)
- Swedish (closes: #533568)
- Swedish. Closes: #525044
- Japanese. Closes: #525084
- French. Closes: #526024
- Portuguese. Closes: #526644
- Russian. Closes: #526727
- German. Closes: #526730
- Dutch. Closes: #526745
- Galician. Closes: #527320
* Define status_of_proc in the event that it's not in lsb/init-functions
(closes: #527903)
* Stop referencing /etc/default/clamav-milter and drop command line
arguments in milter init script (closes: #526123)
* Fix wrong variable useage in milter init script
* More work on clamav-milter's init script
[ Michael Tautschnig ]
* Unignored make check results on ia64, sparc (alpha still broken): tell
electric-fence that the alignment is at least 8 bytes (thanks Aurelien
Jarno).
* Fixed LogFile handling in clamav-milter.postinst (logrotation was broken)
-- Imre Gergely <email address hidden> Thu, 03 Sep 2009 18:49:27 +0300
-
clamav (0.95.1+dfsg-1ubuntu1.2~intrepid1) intrepid-backports; urgency=low
* Source backport for clamav (LP: #389787)
- Drop build-dep on libtommath-dev (and use the internal copy) since it is
in Universe in Intrepid
-- Scott Kitterman <email address hidden> Sat, 20 Jun 2009 01:08:01 -0400
-
clamav (0.94.dfsg.2-1ubuntu0.5) intrepid-proposed; urgency=low
* Additional fixes to freshclam apparmor profile for clamtk (LP: #360655)
* Add to clamd apparmor profile for qpsmtpd and p3scan support
-- Scott Kitterman <email address hidden> Thu, 23 Apr 2009 00:37:04 -0400
-
clamav (0.94.dfsg.2-1ubuntu0.4) intrepid-proposed; urgency=low
[ Scott Kitterman ]
* Update apparmor profiles (LP: #312695, #310737, #346397)
[ Jamie Strandboge ]
* fix freshclam apparmor profile for klamav (LP: #359301)
-- Jamie Strandboge <email address hidden> Mon, 13 Apr 2009 12:53:24 -0500
-
clamav (0.94.dfsg.2-1ubuntu0.3) intrepid-security; urgency=high
* SECURITY UPDATE: (LP: #360502)
* References
* libclamav/others.h: harden CLI_ISCONTAINED macro (bb#1552) (Denial of
service)
* Note: clamav-milter bugs such as 1499, 1522, 1524, and 1531 are not
relevant to clamav 0.94.2 and earlier versions
* Note: The code related to clamav bug 1553 was substantially rewritten in
0.95, so it is also not relevant to clamav 0.94.2 and earlier versions
* Bump CL_FLEVEL_DCONF to 0.95.1 level since relevant security patches are
applied
* Added CVE references for 0.94.dfsg.2-1ubuntu0.2 now that they've been
assigned
-- Scott Kitterman <email address hidden> Mon, 13 Apr 2009 09:34:33 -0400
-
clamav (0.94.dfsg.2-1ubuntu0.2) intrepid-security; urgency=high
* SECURITY UPDATE (LP: #354190):
* References Clamav #1335, #1462
* libclamav/pe.c: division by zero with --detect-broken (bb#1335) (Denial of
service)
* libclamav/untar.c: infloop in tar.c (bb#1462) (Denial of Service)
* Add dconf_renable patch from 0.95 (previously backported to 0.92.2)
- Bump CL_FLEVEL_DCONF to 0.95 level since security patches are applied
-- Scott Kitterman <email address hidden> Thu, 02 Apr 2009 17:15:22 -0400
-
clamav (0.94.dfsg.2-1ubuntu0.1) intrepid-security; urgency=low
* SECURITY UPDATE: (LP: #304017)
- Fix recursive stack overflow in jpeg parsing code
* Other changes:
- debian/control: Recommends apparmor >= 2.1+1075-0ubuntu6 for
clamav-daemon and clamav-freshclam
- add debian/usr.bin.freshclam and debian/usr.sbin.clamd
- debian/clamav-(daemon|freshclam).dirs: add etc/apparmor.d/force-complain
- debian/clamav-(daemon|freshclam).install: install profiles
- debian/clamav-(daemon|freshclam).preinst: create symlink for
force-complain/ on pre-feisty upgrades, upgrades where apparmor-profiles
profile is unchanged (ie non-enforcing) and upgrades where the profile
doesn't exist.
- debian/clamav-(daemon|freshclam).postrm: remove symlink in
force-complain/ on purge.
- debian/clamav-(daemon|freshclam).postinst.in: reload apparmor
- update README.Debian with note on Apparmor
- Enable upstream test suite in debian/rules
-- Scott Kitterman <email address hidden> Mon, 01 Dec 2008 13:11:52 -0500
-
clamav (0.94.dfsg.1-1ubuntu0.1) intrepid-security; urgency=low
* SECURITY UPDATE: (LP: #296704)
- Fix off-by-one heap overflow
* Other changes:
- debian/control: Recommends apparmor >= 2.1+1075-0ubuntu6 for
clamav-daemon and clamav-freshclam
- add debian/usr.bin.freshclam and debian/usr.sbin.clamd
- debian/clamav-(daemon|freshclam).dirs: add etc/apparmor.d/force-complain
- debian/clamav-(daemon|freshclam).install: install profiles
- debian/clamav-(daemon|freshclam).preinst: create symlink for
force-complain/ on pre-feisty upgrades, upgrades where apparmor-profiles
profile is unchanged (ie non-enforcing) and upgrades where the profile
doesn't exist.
- debian/clamav-(daemon|freshclam).postrm: remove symlink in
force-complain/ on purge.
- debian/clamav-(daemon|freshclam).postinst.in: reload apparmor
- update README.Debian with note on Apparmor
* Update apparmor profile for clamd to work with TCP sockets (LP: #288942)
-- Scott Kitterman <email address hidden> Wed, 12 Nov 2008 15:20:49 -0500
-
clamav (0.94.dfsg.1~rc1-0ubuntu2) intrepid; urgency=low
* update clamd profile for use with exim (LP: #288110)
-- Jamie Strandboge <email address hidden> Thu, 23 Oct 2008 07:36:11 -0500
-
clamav (0.94.dfsg.1~rc1-0ubuntu1) intrepid; urgency=low
* New upstream RC release (LP:#286176)
- Odd version numbering is to get a higher version than 0.94.dfsg without
an epoch and was coordinated with Debian
- Packaging based on current Ubuntu (0.94.dfsg-1ubuntu2) and does not use
unreleased packaging improvements in the Debian pkg-claamv Git repo to
minimize risk for Intrepid
- Handle new freshclam option SubmitDetectionStats (cherry picked from
Debian pkg-clamav Git repo)
-- Scott Kitterman <email address hidden> Sun, 19 Oct 2008 20:38:42 -0400
-
clamav (0.94.dfsg-1ubuntu2) intrepid; urgency=low
* Update apparmor profile based on test feedback (LP: #276865)
-Thanks to Ante Karamatić for the change
-- Scott Kitterman <email address hidden> Thu, 02 Oct 2008 16:23:17 -0400
-
clamav (0.94.dfsg-1ubuntu1) intrepid; urgency=low
* Follow ApparmorProfileMigration and force apparmor complain mode on some
upgrades (LP: #264817)
- debian/control: Recommends apparmor >= 2.1+1075-0ubuntu6 for
clamav-daemon and clamav-freshclam
- add debian/usr.bin.freshclam and debian/usr.sbin.clamd
- debian/clamav-(daemon|freshclam).dirs: add etc/apparmor.d/force-complain
- debian/clamav-(daemon|freshclam).install: install profiles
- debian/clamav-(daemon|freshclam).preinst: create symlink for
force-complain/ on pre-feisty upgrades, upgrades where apparmor-profiles
profile is unchanged (ie non-enforcing) and upgrades where the profile
doesn't exist.
- debian/clamav-(daemon|freshclam).postrm: remove symlink in
force-complain/ on purge.
- debian/clamav-(daemon|freshclam).postinst.in: reload apparmor
- update README.Debian with note on Apparmor
-- Jamie Strandboge <email address hidden> Thu, 18 Sep 2008 22:06:59 -0400
-
clamav (0.94.dfsg-1) unstable; urgency=low
* New upstream version (closes: #497662, #497773)
- lots of new options for clamd.conf
- fixes CVEs CVE-2008-3912, CVE-2008-3913, CVE-2008-3914, and
CVE-2008-1389
* No longer supports --unzip option, so typo is gone (closes: #496276)
* Translations:
- sv (thanks Martin Bagge <email address hidden>) (closes: #491760)
-- Mathias Florian Menzer <email address hidden> Tue, 09 Sep 2008 00:37:40 +0100
-
clamav (0.93.3.dfsg-1ubuntu1) intrepid; urgency=low
* Drop arj and unzoo to Suggests
- Recommends is excessive and we don't want them in Main
-- Scott Kitterman <email address hidden> Sat, 06 Sep 2008 10:51:36 -0400
-
clamav (0.93.3.dfsg-1) unstable; urgency=low
* New upstream version (closes: #489890, #492838, #491720)
* Fix AUTHORS symlink (closes: #490207)
* Fix freshclam's logcheck regex (closes: #486385)
-- Scott Kitterman <email address hidden> Tue, 05 Aug 2008 00:45:51 +0100
-
clamav (0.93.1.dfsg-1.1) unstable; urgency=high
* Non-maintainer upload by the Security Team.
* This update addresses the following security issue:
- CVE-2008-2713: A crafted petite file can trigger an out-of-bound
read operation in petite.c resulting in a denial of sevice
(Closes: #490925).
-- Scott Kitterman <email address hidden> Wed, 16 Jul 2008 16:54:49 +0200
-
clamav (0.93.1.dfsg-1) unstable; urgency=low
* New upstream version
* Move conflicts to freshclam
-- Ubuntu Archive Auto-Sync <email address hidden> Thu, 12 Jun 2008 13:38:13 +0100
-
clamav (0.93~dfsg-4) unstable; urgency=low
* Dammit. The -f flag is there for a reason (closes: #484262)
clamav (0.93~dfsg-3) unstable; urgency=low
* Make dash happy with use of return (closes: #484170)
-- Ubuntu Archive Auto-Sync <email address hidden> Wed, 04 Jun 2008 17:05:25 +0100
-
clamav (0.93~dfsg-2) unstable; urgency=low
* Remove dpatch dependency - we keep the code in a patch system.
* Wrap evaluations of [ $variable = true ] in calls to to_lower()
* Add is_true function to catch the 7 bajillion variants of something being
true (closes: #483874)
* Clean up old incompatible database formats. Users of 3rd party software
that also loads those old databases are now out of luck. (closes: #481864)
* Fix logcheck lines for clamav-daemon (closes: #477818)
* New translation:
- sv (thanks Martin Bagge <email address hidden>)(closes: #483765)
-- Ubuntu Archive Auto-Sync <email address hidden> Mon, 02 Jun 2008 09:21:04 +0100
-
clamav (0.93~dfsg-1) unstable; urgency=low
* New upstream release (closes: #476450, #477278)
- Fixes failure to lock database directory
(closes: #467298, #471643, #426503)
* Fix logrotation when supervised (closes: #469196)
* Run adduser on every new install - this should work around the
xen-create-image thing of adding users but not groups (closes: #458015)
* Make clamav-milter be a little more self-documenting (closes: #477178)
-- Ubuntu Archive Auto-Sync <email address hidden> Mon, 05 May 2008 10:17:08 +0100
-
clamav (0.92.1~dfsg2-1.1) unstable; urgency=high
* Non-maintainer upload by the Security Team.
* This update addresses the following security issue:
- CVE-2008-1833: heap-based buffer overflow allows remote
attackers to execute arbitrary code via a crafted WWPack compressed
PE binary (Closes: #476694).
-- Ubuntu Archive Auto-Sync <email address hidden> Sat, 19 Apr 2008 16:28:20 +0100
