Remote attack in OLE parser and PDF handler

Gutsy will be fixed by clamav 0.90.3 upload.

pbuilder successful patch applied
debs installed and tested

Previous debdiff had errors in version number and misspelled securty in changelog

Tested the 2 bug files from :
https://wwws.clamav.net/bugzilla/show_bug.cgi?id=459
and
https://wwws.clamav.net/bugzilla/show_bug.cgi?id=466
on a fresh feisty install the bug showed on the OLE2 but not on the PDF

installed the patched debs and tested OLE2 and PDF showed no errors .

Corrected the changelog and debian/patches/00list and renamed the pdf-ole-bugfix.patch.dpatch to 50_pdf-ole-bugfix.patch.dpatch

Thanks for getting this all sorted out. It tests out well for me too. I have sponsored the upload. :)

This debdiff is for a merge of clamav 0.90.3-1 from Debian Unstable (Main) which resolve the issues reported.

Uploaded to Gutsy. Thank you for your contribution. Please mark the Gutsy task for this bug Fix Released once all the packages have built (ask in #ubuntu-motu if you need help with figuring out how to do this).

Accepted:
 OK: clamav_0.90.3-1ubuntu1.dsc
     -> Component: universe Section: utils
 OK: clamav_0.90.3.orig.tar.gz
 OK: clamav_0.90.3-1ubuntu1.diff.gz

Message was signed by Donald Scott Kitterman <email address hidden> (Key ID: 0xDDCD686A).
The signature is valid and the key is ultimately trusted.
  Format: 1.7
Date: Sat, 2 Jun 2007 09:29:00 -0400
Source: clamav
Binary: clamav libclamav-dev clamav-dbg clamav-milter clamav-base clamav-freshclam clamav-testfiles clamav-daemon libclamav2 clamav-docs
Architecture: source
Version: 0.90.3-1ubuntu1
Distribution: gutsy
Urgency: low
Maintainer: Ubuntu MOTU Developers <email address hidden>
Changed-By: Efrain Valles <email address hidden>
Description:
 clamav - antivirus scanner for Unix
 clamav-base - base package for clamav, an anti-virus utility for Unix
 clamav-daemon - antivirus scanner daemon
 clamav-dbg - debug symbols for clamav
 clamav-docs - documentation package for clamav, an anti-virus utility for Unix
 clamav-freshclam - downloads clamav virus databases from the Internet
 clamav-milter - antivirus scanner for sendmail
 clamav-testfiles - use these files to test that your Antivirus program works
 libclamav-dev - clam Antivirus library development files
 libclamav2 - virus scanner library
Closes: 420593 424618 425661 425796
Changes:
 clamav (0.90.3-1ubuntu1) gutsy; urgency=low
 .
   * Merge from Debian unstable. Remaining Ubuntu changes:
     - debian/control: Maintainers updated for Ubuntu.
     - debian/clamav-freshclam.init.in specify pidfile when starting.
 .
 clamav (0.90.3-1) unstable; urgency=low
 .
   * New upstream version
     - Fixes segfault in segfault handler (closes: #420593)
     - Fixes slow load times seen in earlier 09.x versions
       (closes: #425796, #425661)
   * Stop using killproc for reloading logs, at least until it stops removing
     pidfiles out from under us (closes: #424618)
Files:
 dceb380357f5c07dbe7fee49fc9891d0 979 utils optional clamav_0.90.3-1ubuntu1.dsc
 d42ccf7a32daeb7c7cc3c8c23a7793ea 12496857 utils optional clamav_0.90.3.orig.tar.gz
 84a812306d5d20d6847650f98e8e300b 205568 utils optional clamav_0.90.3-1ubuntu1.diff.gz
Original-Maintainer: Stephen Gran <email address hidden>