Changelog for
clamav-lib-0.97.8-2.fc19.x86_64.rpm :
Thu May 2 14:00:00 2013 Nick Bebout
- 0.97.8-1
- Update to 0.97.8
Wed Apr 10 14:00:00 2013 Jon Ciesla - 0.97.7-2
- Migrate from fedora-usermgmt to guideline scriptlets.
Sat Mar 23 13:00:00 2013 Nick Bebout - 0.97.7-1
- Update to 0.97.7
Wed Feb 13 13:00:00 2013 Fedora Release Engineering - 0.97.6-1901
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
Sat Sep 22 14:00:00 2012 Enrico Scholz - 0.97.6-1900
- updated to 0.97.6
- use %systemd macros
Tue Aug 14 14:00:00 2012 Enrico Scholz - 0.97.5-1900
- disabled upstart support
Wed Jul 18 14:00:00 2012 Fedora Release Engineering - 0.97.5-1801
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
Sat Jun 16 14:00:00 2012 Enrico Scholz - 0.97.5-1800
- updated to 0.97.5
- CVE-2012-1457: allows to bypass malware detection via a TAR archive
entry with a length field that exceeds the total TAR file size
- CVE-2012-1458: allows to bypass malware detection via a crafted
reset interval in the LZXC header of a CHM file
- CVE-2012-1459: allows to bypass malware detection via a TAR archive
entry with a length field corresponding to that entire entry, plus
part of the header of the next entry
- ship local copy of virus database; it was removed by accident from
0.97.5 tarball
- removed sysv compat stuff
Fri Apr 13 14:00:00 2012 Enrico Scholz - 0.97.4-1801
- build with -fPIE
Fri Mar 16 13:00:00 2012 Enrico Scholz - 0.97.4-1800
- updated to 0.97.4
Sun Feb 5 13:00:00 2012 Enrico Scholz - 0.97.3-1703
- fixed SELinux restorecon invocation
- added trigger to fix SELinux contexts of logfiles created by old
packages
- fixed build with recent gcc/glibc toolchain
Sat Jan 21 13:00:00 2012 Enrico Scholz - 0.97.3-1703
- rewrote clamav-notify-servers to be init system neutral
- set PrivateTmp systemd option (#782488)
Sun Jan 8 13:00:00 2012 Enrico Scholz - 0.97.3-1702
- set correct SELinux context for logfiles generated in %post (#754555)
- create systemd tmpfiles in %post
- created -server-systemd subpackage providing a clamdAATT.service template
- made script in -scanner-systemd an instance of clamdAATT.service
Tue Oct 18 14:00:00 2011 Nick Bebout - 0.97.3-1700
- updated to 0.97.3
- CVE-2011-3627 clamav: Recursion level crash fixed in v0.97.3
Thu Aug 4 14:00:00 2011 Enrico Scholz - 0.97.2-1700
- moved sysv wrapper script into -sysv subpackage
- start systemd services after network.target and nss-lookup.target
Tue Jul 26 14:00:00 2011 Enrico Scholz - 0.97.2-1600
- updated to 0.97.2
- CVE-2011-2721 Off-by-one error by scanning message hashes (#725694)
- fixed systemd scripts and their installation
Thu Jun 9 14:00:00 2011 Enrico Scholz - 0.97.1-1600
- updated to 0.97.1
- fixed Requires(preun) vs. Requires(postun) inconsistency
Sat Apr 23 14:00:00 2011 Enrico Scholz - 0.97-1601
- fixed tmpfiles.d syntax (#696812)
Sun Feb 20 13:00:00 2011 Enrico Scholz - 0.97-1600
- updated to 0.97
- rediffed some patches
Tue Feb 8 13:00:00 2011 Fedora Release Engineering - 0.96.5-1503
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
Sat Jan 8 13:00:00 2011 Enrico Scholz - 0.96.5-1502
- fixed signal specifier in clamd-wrapper (#668131, James Ralston)
Fri Dec 24 13:00:00 2010 Enrico Scholz - 0.96.5-1501
- added systemd init scripts which obsolete to old sysvinit ones
- added tmpfiles.d/ descriptions
Sat Dec 4 13:00:00 2010 Enrico Scholz - 0.96.5-1500
- updated to 0.96.5
- CVE-2010-4260 Multiple errors within the processing of PDF files can
be exploited to e.g. cause a crash.
- CVE-2010-4261 An off-by-one error within the \"icon_cb()\" function
can be exploited to cause a memory corruption.
Sun Oct 31 13:00:00 2010 Enrico Scholz - 0.96.4-1500
- updated to 0.96.4
- execute \'make check\' (#640347) but ignore errors for now because
four checks are failing on f13
Wed Sep 29 14:00:00 2010 Enrico Scholz - 0.96.3-1501
- lowered stop priority of sysv initscripts (#629435)
Wed Sep 22 14:00:00 2010 Enrico Scholz - 0.96.3-1500
- updated to 0.96.3
- fixes CVE-2010-0405 in shipped bzlib.c copy
Sun Aug 15 14:00:00 2010 Enrico Scholz - 0.96.2-1500
- updated to 0.96.2
- rediffed patches
- removed the -jit-disable patch which is replaced upstream by a more
detailed configuration option.
Wed Aug 11 14:00:00 2010 Enrico Scholz
- removed old %trigger which renamed the \'clamav\' user- and groupnames
to \'clamupdate\'
- use \'groupmems\', not \'usermod\' to add a user to a group because
\'usermod\' does not work when user does not exist in local /etc/passwd
Tue Jul 13 14:00:00 2010 Dan HorĂ¡k - 0.96.1-1401
- ocaml not available (at least) on s390(x)
Tue Jun 1 14:00:00 2010 Enrico Scholz - 0.96.1-1400
- updated to 0.96.1
- rediffed patches
Wed May 19 14:00:00 2010 Rakesh Pandit - 0.96.1403
- CVE-2010-1639 Clam AntiVirus: Heap-based overflow, when processing malicious PDF file(s)
Wed Apr 21 14:00:00 2010 Enrico Scholz - 0.96-1402
- updated to final 0.96
- applied upstream patch which allows to disable JIT compiler (#573191)
- build JIT compiler again
- disabled JIT compiler by default
- removed explicit \'pkgconfig\' requirements in -devel (#533956)
Sat Mar 20 13:00:00 2010 Enrico Scholz - 0.96-0.1401.rc1
- do not build the bytecode JIT compiler for now until it can be disabled
at runtime (#573191)
Thu Mar 11 13:00:00 2010 Enrico Scholz - 0.96-1400.rc1
- updated to 0.96rc1
- added some BRs
Sun Dec 6 13:00:00 2009 Enrico Scholz - 0.95.3-1301
- updated -upstart to upstart 0.6.3
Sat Nov 21 13:00:00 2009 Enrico Scholz
- adjusted chkconfig positions for clamav-milter (#530101)
- use %apply instead of %patch
Thu Oct 29 13:00:00 2009 Enrico Scholz - 0.95.3-1300
- updated to 0.95.3
Sun Sep 13 14:00:00 2009 Enrico Scholz
- conditionalized build of noarch subpackages to ease packaging under RHEL5
Sun Aug 9 14:00:00 2009 Enrico Scholz - 0.95.2-5
- modified freshclam configuration to log by syslog by default
- disabled LocalSocket option in sample configuration
- fixed clamav-milter sysv initscript to use bash interpreter and to
be disabled by default
Sat Aug 8 14:00:00 2009 Enrico Scholz - 0.95.2-4
- renamed \'clamav\' user/group to \'clamupdate\'
- add the \'clamilt\' user to the \'clamscan\' group when the -scanner
subpackage is installed
Fri Jul 24 14:00:00 2009 Fedora Release Engineering - 0.95.2-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild
Thu Jun 11 14:00:00 2009 Enrico Scholz - 0.95.2-1
- updated to 0.95.2
Sun Apr 19 14:00:00 2009 Enrico Scholz - 0.95.1-3
- fixed \'--without upstart\' operation
Wed Apr 15 14:00:00 2009 Enrico Scholz - 0.95.1-2
- added \'%bcond_without upstart\' conditional to ease skipping of
-upstart subpackage creation e.g. on EL5 systems
- fixed Provides/Obsoletes: typo in -milter-sysvinit subpackage which
broke update path
Fri Apr 10 14:00:00 2009 Robert Scheck - 0.95.1-1
- Upgrade to 0.95.1 (#495039)
Wed Mar 25 13:00:00 2009 Enrico Scholz - 0.95-1
- updated to final 0.95
- added ncurses-devel (-> clamdtop) BR
- enforced IPv6 support
Sun Mar 8 13:00:00 2009 Enrico Scholz - 0.95-0.1.rc1
- updated to 0.95rc1
- added -upstart subpackages
- renamed -sysv to -sysvinit to make -upstart win the default dep resolving
- reworked complete milter stuff
- added -scanner subpackage which contains a preconfigured daemon
(e.g. for use by -milter)
- moved %changelog entries from 2006 and before into ChangeLog-rpm.old
Wed Feb 25 13:00:00 2009 Enrico Scholz - 0.94.2-3
- made some subpackages noarch
- fixed typo in SysV initscript which removes \'touch\' file (#473513)
Mon Feb 23 13:00:00 2009 Fedora Release Engineering - 0.94.2-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild
Tue Dec 2 13:00:00 2008 Robert Scheck - 0.94.2-1
- Upgrade to 0.94.2 (#474002)
Wed Nov 5 13:00:00 2008 Robert Scheck - 0.94.1-1
- Upgrade to 0.94.1
Sun Oct 26 13:00:00 2008 Robert Scheck - 0.94-1
- Upgrade to 0.94 (SECURITY), fixes #461461:
- CVE-2008-1389 Invalid memory access in the CHM unpacker
- CVE-2008-3912 Out-of-memory NULL pointer dereference in mbox/msg
- CVE-2008-3913 Memory leak in code path in freshclam\'s manager.c
- CVE-2008-3914 Multiple file descriptor leaks on the code paths
Sun Jul 13 14:00:00 2008 Enrico Scholz - 0.93.3-1
- updated to 0.93.3; another fix for CVE-2008-2713 (out-of-bounds read
on petite files)
- put pid instead of pgrp into pidfile of clamav-milter (bz #452359)
- rediffed patches
Tue Jun 17 14:00:00 2008 Enrico Scholz - 0.93.1-1
- updated to 0.93.1
- rediffed -path patch
- CVE-2008-2713 Invalid Memory Access Denial Of Service Vulnerability
Mon Apr 14 14:00:00 2008 Enrico Scholz - 0.93-1
- updated to final 0.93
- removed daily.inc + main.inc directories; they are now replaced by
*.cld containers
- trimmed down MAILTO list of cronjob to \'root\' again; every well
configured system has an alias for this recipient
Wed Mar 12 13:00:00 2008 Enrico Scholz - 0.93-0.1.rc1
- moved -milter scriptlets into -milter-core subpackage
- added a requirement on the milteruser to the -milter-sendmail
subpackage (reported by Bruce Jerrick)
Tue Mar 4 13:00:00 2008 Enrico Scholz - 0.93-0.0.rc1
- updated to 0.93rc1
- fixed rpath issues
Mon Feb 11 13:00:00 2008 Enrico Scholz - 0.92.1-1
- updated to 0.92.1
Tue Jan 1 13:00:00 2008 Enrico Scholz - 0.92-6
- redisabled unrar stuff completely by using clean sources
- splitted -milter subpackage into pieces to allow use without sendmail
(#239037)
Tue Jan 1 13:00:00 2008 Enrico Scholz - 0.92-5
- use a better way to disable RPATH-generation (needed for \'--with
unrar\' builds)
Mon Dec 31 13:00:00 2007 Enrico Scholz - 0.92-4
- added a README.fedora to the milter package (#240610)
- ship original sources again; unrar is now licensed correctly (no more
stolen code put under GPL). Nevertheless, this license is not GPL
compatible, and to allow libclamav to be used by GPL applications,
unrar is disabled by a ./configure switch.
- use pkg-config in clamav-config to emulate --cflags and --libs
operations (fixes partly multilib issues)
- registered some more auto-updated files and marked them as %ghost
Fri Dec 21 13:00:00 2007 Tom \"spot\" Callaway - 0.92-3
- updated to 0.92 (SECURITY):
- CVE-2007-6335 MEW PE File Integer Overflow Vulnerability
Mon Oct 29 13:00:00 2007 Tom \"spot\" Callaway - 0.91.2-3
- remove RAR decompression code from source tarball because of
legal problems (resolves 334371)
- correct license tag
Mon Sep 24 14:00:00 2007 Jesse Keating - 0.91.2-2
- Bump release for upgrade path.
Sat Aug 25 14:00:00 2007 Enrico Scholz - 0.91.2-1
- updated to 0.91.2 (SECURITY):
- CVE-2007-4510 DOS in RTF parser
- DOS in html normalizer
- arbitrary command execution by special crafted recipients in
clamav-milter\'s black-hole mode
- fixed an open(2) issue
Tue Jul 17 14:00:00 2007 Enrico Scholz - 0.91.1-0
- updated to 0.91.1
Thu Jul 12 14:00:00 2007 Enrico Scholz - 0.91-1
- updated to 0.91
Thu May 31 14:00:00 2007 Enrico Scholz - 0.90.3-1
- updated to 0.90.3
- BR tcpd.h instead of tcp_wrappers(-devel) to make it build both
in FC6- and F7+
Fri Apr 13 14:00:00 2007 Enrico Scholz - 0.90.2-1
- [SECURITY] updated to 0.90.2; fixes CVE-2007-1745, CVE-2007-1997
Fri Mar 2 13:00:00 2007 Enrico Scholz - 0.90.1-2
- BR \'tcp_wrappers-devel\' instead of plain \'tcp_wrappers\'
Fri Mar 2 13:00:00 2007 Enrico Scholz - 0.90.1-1
- updated to 0.90.1
- updated %doc list
Sun Feb 18 13:00:00 2007 Enrico Scholz - 0.90-1
- updated to final 0.90
- removed -visibility patch since fixed upstream
Sun Feb 4 13:00:00 2007 Enrico Scholz - 0.90-0.3.rc3
- build with -Wl,-as-needed and cleaned up pkgconfig file
- removed old hack which forced installation of freshclam.conf; related
check was removed upstream
- removed static library
- removed %changelog entries from before 2004
Sat Feb 3 13:00:00 2007 Enrico Scholz - 0.90-0.2.rc3
- updated to 0.90rc3
- splitted mandatory parts from the data-file into a separate -filesystem
subpackage
- added a -data-empty subpackage to allow a setup where database is
updated per cron-job and user does not want to download the large
-data package with outdated virus definitations (#214949)
- %ghost\'ed the files downloaded by freshclam