SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for clamav-0.91.1-0.1.x86_64.rpm :
Mon Jul 16 22:00:00 2007 - joe_morrisAATTntm.org
- Update to version 0.91.1

Tue Jul 10 22:00:00 2007 - maxAATTsuse.de
- Update to version 0.91 (#289830)
- improved handling of .mdb files (fixes long startup times)
- Adds anti-phishing support
- unpacker for NSIS (Nullsoft Scriptable Install System)
self-extracting archives
- unpacker for ASPack 2.12
- new implementation of the Aho-Corasick pattern matcher providing
better detection for wildcard enabled signatures
- support for nibble matching and floating offsets
- extraction of PE files embedded into other executables
- better handling of PE & UPX
- removed dependency on libcurl (improves stability)
- many other improvements and bugfixes

Wed May 30 22:00:00 2007 - maxAATTsuse.de
- Security update: 0.90.3 (#279536)
- libclamav/unsp.c: fix end of buffer calculation (bb#464)
- libclamav/others.c: use strict permissions (0600) for temporary files
created in cli_gentempstream() (bb#517).
- libclamav/unrar/unrar.c: heap corruption causing DoS with corrupted
rar archive, better handle truncated files
- libclamav/phishcheck.c: isURL() regex execution hangs on Solaris
- libclamav/ole2_extract.c: detect block list loop (bb#466)

Thu Apr 12 22:00:00 2007 - maxAATTsuse.de
- Security update: 0.90.2 (#264189)
- CVE-2007-1997: CAB File Unstore Buffer Overflow Vulnerability
- CVE-2007-1745: file descriptor leak in CHM handler
- File descriptor leaks in libclamav/pdf.c and libclamav/lockdb.c

Sun Mar 4 21:00:00 2007 - maxAATTsuse.de
- Extended the database presence check in rcclamd to accept the
main.inc directory in addition to the main.cvd file, because
freshclam can delete the file during a scripted update.

Thu Mar 1 21:00:00 2007 - maxAATTsuse.de
- Update to version 0.90.1 (#250566)
- Some bug fixes and code improvements
- Bumps the version of libclamav\'s soname, which should have been
done in 0.90 already.

Mon Feb 19 21:00:00 2007 - maxAATTsuse.de
- Update to version 0.90 (#246214) to fix two Vulnerabilities:
- CAB File Denial of Service (CVE-2007-0897)
- MIME Parsing Directory Traversal (CVE-2007-0898)
- Other changes of 0.90 include:
- Changed config file syntax (automatic conversion is done by the
RPM on update)
- New unpacker for RAR3, RAR2 and RAR1
- Rewritten unpackers for Zip and CAB files
- Support for RAR-SFX, Zip-SFX and CAB-SFX archives
- New PE parsing model
- Support for PE32+ (64-bit) executables
- Support for MD5 signatures based on PE sections (.mdb)
- ELF file parser
- Support for Sensory Networks\' NodalCore hardware acceleration
technology
- Algorithmic detection can be controlled with CL_SCAN_ALGORITHMIC
- Support for new obfuscators: SUE, Y0da Cryptor, CryptFF
- Support for new packers: NsPack, wwpack32, MEW, Upack
- Support for SIS files (SymbianOS packages)
- Support for PDF and RTF files
- TCP and local sockets can be operated simultaneously
- New command: MULTISCAN (scan directory with multiple threads)
- There where also some API/ABI changes which might affect packages
that link against libclamav. Affected functions are: cl_loaddb,
cl_loaddir and cl_scanbuff.
- Cleaned up daemonizing of clamd and freshclam.

Mon Dec 11 21:00:00 2006 - maxAATTsuse.de
- Security update: 0.88.7 (#227827, CVE-2006-5874)
- handle consecutive errors in base64 decoding
- honour recursion limit when scanning email messages
- clamscan: new option --mail-max-recursion
- libclamav/untar.c: honour archive limits

Mon Nov 6 21:00:00 2006 - maxAATTsuse.de
- Add homedir of user vscan to the package (FATE300731).

Sun Nov 5 21:00:00 2006 - maxAATTsuse.de
- Bugfix release: 0.88.6 (#218313)
- freshclam: apply timeout patch from Everton da Silva Marques
(new options: ConnectTimeout and ReceiveTimeout)
- clamd: change stack size at the right place (closes bug#103)
- libclamav/petite.c: sanity check the number of rebuilt sections
(speeds up handling of malformed files)

Mon Oct 16 22:00:00 2006 - maxAATTsuse.de
- Bugfix release 0.88.5 fixes two serious security issues.
[#212898], CVE-2006-4182, CVE-2006-5295

Mon Aug 7 22:00:00 2006 - lnusselAATTsuse.de
- New version 0.88.4 fixes heap overflow in UPX decoder

Wed Jul 5 22:00:00 2006 - maxAATTsuse.de
- Bugfix release 0.88.3:
- fix possible false matches of alternatives
- Large binhex files were not being handled gracefully.
- fix zero allocation warning
- Added bc and pkgconfig to BuildRequires to fix curl version
detection.
- Prevent a file conflict on the database files when main and db
packages of different versions are installed.
- Renamed clamav.conf to clamd.conf for SLES9.
- Added the db subpackage to SLES9.
- Bugzilla: 190647

Mon May 1 22:00:00 2006 - maxAATTsuse.de
- New version: 0.88.2
- Fixes a buffer overflow in freshclam\'s get_database function
(CVE-2006-1989, Bug #171496).

Sun Apr 9 22:00:00 2006 - meissnerAATTsuse.de
- Fixed several implicit warnings which lead to failures
on 64bit platforms.

Tue Apr 4 22:00:00 2006 - maxAATTsuse.de
- New version: 0.88.1, fixes several security issues:
CVE-2006-1614, CVE-2006-1615, CVE-2006-1630, bug #164039.

Wed Feb 8 21:00:00 2006 - maxAATTsuse.de
- Removed unneeded dependencies from the init script to break a
dependency loop.

Tue Jan 24 21:00:00 2006 - mlsAATTsuse.de
- converted neededforbuild to BuildRequires

Fri Jan 13 21:00:00 2006 - kukukAATTsuse.de
- Add gmp-devel to nfb

Wed Jan 11 21:00:00 2006 - maxAATTsuse.de
- Added gcc-4.1 stack protection (-fstack-protector).

Sun Jan 8 21:00:00 2006 - maxAATTsuse.de
- New version: 0.88 (Bug #142298).

Sun Nov 6 21:00:00 2005 - lnusselAATTsuse.de
- Security update: version 0.87.1 (#132305, CVE-2005-3239,
CVE-2005-3303)

Sun Sep 18 22:00:00 2005 - maxAATTsuse.de
- New version: 0.87 (bug #117648).

Sun Jul 24 22:00:00 2005 - maxAATTsuse.de
- New version: 0.86.2

Wed Jul 13 22:00:00 2005 - maxAATTsuse.de
- New version: 0.86.1

Mon Jun 20 22:00:00 2005 - maxAATTsuse.de
- New version: 0.86

Mon May 16 22:00:00 2005 - maxAATTsuse.de
- New version: 0.85.1 (Bug #81264).

Tue May 10 22:00:00 2005 - maxAATTsuse.de
- New version: 0.85 (Bug #81264).

Mon May 2 22:00:00 2005 - maxAATTsuse.de
- New version: 0.84 (Bug #81264).
- Added and special-cased the patch that is needed for 9.1/SLES9.

Thu Mar 10 21:00:00 2005 - maxAATTsuse.de
- Fixed %doc file list (wildcards matched too much).

Sun Feb 27 21:00:00 2005 - maxAATTsuse.de
- New version: 0.83

Sun Feb 6 21:00:00 2005 - maxAATTsuse.de
- New version: 0.82

Wed Jan 26 21:00:00 2005 - maxAATTsuse.de
- New version: 0.81

Wed Nov 10 21:00:00 2004 - maxAATTsuse.de
- pkgconfig files go to libdir rather than /usr/lib.

Wed Nov 10 21:00:00 2004 - cooloAATTsuse.de
- fixing file list for debug packages

Tue Nov 2 21:00:00 2004 - maxAATTsuse.de
- Fixed path to freshclam in init script, and rcfreshclam link.

Sun Oct 17 22:00:00 2004 - maxAATTsuse.de
- Updated to the final 0.80 release.
- Added a runlevel script for freshclam.

Sun Oct 10 22:00:00 2004 - maxAATTsuse.de
- Updated to 0.80rc4.

Tue Sep 28 22:00:00 2004 - maxAATTsuse.de
- Updated to 0.80rc3. The README says:
\"This release candidate eliminates possible false positive alerts
in UPX/FSG compressed files and clarifies behaviour of default
actions in clamd and freshclam.\"
- This also eliminates the need to patch configure.in in order to
recognize resolv.

Wed Sep 22 22:00:00 2004 - maxAATTsuse.de
- Updated to 0.80rc2 which fixes a critical bug in the handling of
empty lines in text/plain emails.
- Build with curl support.
- Fixed building of shared libraries instead of static.
- Removed unneeded %run_ldconfig calls.
- Fixed file lists.
- Check for main.cvd instead of daily.cvd on daemon startup.

Sun Sep 19 22:00:00 2004 - maxAATTsuse.de
- Updated to version 0.80rc which adds support for more file
formats, and HTML parsing. See the README file for details.
- Added a warning to the init script if no virus database is
installed.

Wed Aug 4 22:00:00 2004 - maxAATTsuse.de
- New version: 0.75.1
- Moved the virus database files into a subpackage, as they are
large and not needed if the database is kept up to date with
freshclam.

Thu Jul 22 22:00:00 2004 - maxAATTsuse.de
- New version: 0.75

Wed Jul 7 22:00:00 2004 - maxAATTsuse.de
- Added -fno-strict-aliasing to CFLAGS.

Sun Jul 4 22:00:00 2004 - maxAATTsuse.de
- New version: 0.74

Mon Jun 14 22:00:00 2004 - maxAATTsuse.de
- New version: 0.73

Sun Apr 25 22:00:00 2004 - maxAATTsuse.de
- New version: 0.70
- Changes the format of the virus definition file.

Sun Feb 15 21:00:00 2004 - maxAATTsuse.de
- New version: 0.67
- Added support for tcpd (/etc/hosts.{allow,deny}).
- Obsoletes clamav-manager.patch.

Thu Feb 12 21:00:00 2004 - maxAATTsuse.de
- New version: 0.66
- Fixes a remote DoS vulnerability (Bug #34412).

Mon Jan 26 21:00:00 2004 - maxAATTsuse.de
- New package: ClamAV Anti-Virus Toolkit


  
ICM