-
clamav (0.96.5+dfsg-1ubuntu1~dapper1) dapper-backports; urgency=low
* Source backport for Dapper
- Drop -T -W from apparmor_parser calls in clamav-daemon and freshclam
postinsts since it is not supported in early apparmor versions
- Drop deny rule in freshclam apparmor profile since deny is not
supported in early apparmor versions
- Drop dh_lintian from debian/rules and adjust version of debhelper
build-dep
- Drop build-dep and libclamav-dev depends on non-existent libtommath-dev
- Changed Section to 'utils' for clamav-dbg package
- Drop versioning of lsb-base depends
- Revert lsb status changes from maintainer scripts
- Ignore test suite errors on hppa
- Build-depend on libltdl3-dev instead of libltdl-dev
- Build with GCC 3.4 to work around known bugs in 4.1 (results in no llvm
support on Dapper, but this is not a regression for that release)
- Drop po template file comments to work around bugs in the Dapper build
system
- Switch back to older dpkg-dev Source-Version style
- Restore build-dep on dpkg-dev
clamav (0.96.5+dfsg-1ubuntu1) natty; urgency=low
* Merge from debian unstable. Remaining changes:
- Drop initial signature definitions from clamav-base
- Drop build-dep on electric-fence (in Universe)
- Add apparmor profiles for clamd and freshclam along with maintainer
script changes
clamav (0.96.5+dfsg-1) unstable; urgency=low
[ Alberto WU ]
* New upstream release
- Fix JIT-related crashes on VIA (closes: #604621).
- New option DatabaseCustomURL for freshclam
- New option OLE2BlockMacros for clamd
[ Michael Tautschnig ]
* Forcibly remove files in purge even if ucf is not available (anymore) -
thanks piuparts.
* Change StreamMaxLength default to 25Mb, also update user configurations
still using 0 as value (closes: #602840).
-- Scott Kitterman <email address hidden> Tue, 07 Dec 2010 21:25:01 -0500
-
clamav (0.96.4+dfsg-1ubuntu2~dapper1) dapper-backports; urgency=low
* Source backport for Dapper (LP: #684212):
- Drop -T -W from apparmor_parser calls in clamav-daemon and freshclam
postinsts since it is not supported in early apparmor versions
- Drop deny rule in freshclam apparmor profile since deny is not
supported in early apparmor versions
- Drop dh_lintian from debian/rules and adjust version of debhelper
build-dep
- Drop build-dep and libclamav-dev depends on non-existent libtommath-dev
- Changed Section to 'utils' for clamav-dbg package
- Drop versioning of lsb-base depends
- Revert lsb status changes from maintainer scripts
- Ignore test suite errors on hppa
- Build-depend on libltdl3-dev instead of libltdl-dev
- Build with GCC 3.4 to work around known bugs in 4.1 (results in no llvm
support on Dapper, but this is not a regression for that release)
- Drop po template file comments to work around bugs in the Dapper build
system
- Switch back to older dpkg-dev Source-Version style
- Restore build-dep on dpkg-dev
clamav (0.96.4+dfsg-1ubuntu2) natty; urgency=low
* Backport security fixes from 0.96.5:
- Git commits 019f1955194360600ecf0644959ceca6734c2d7b and
1f3db7f074995bd4e1d0183b2db8b1c472d2f41b
-- Scott Kitterman <email address hidden> Thu, 02 Dec 2010 10:21:33 -0500
-
clamav (0.96.4+dfsg-1ubuntu1~dapper1) dapper-backports; urgency=low
* Source backport for Dapper:
- Drop -T -W from apparmor_parser calls in clamav-daemon and freshclam
postinsts since it is not supported in early apparmor versions
- Drop deny rule in freshclam apparmor profile since deny is not
supported in Hardy's apparmor
- Drop dh_lintian from debian/rules and adjust version of debhelper
build-dep
- Drop build-dep and libclamav-dev depends on non-existent libtommath-dev
- Changed Section to 'utils' for clamav-dbg package
- Drop versioning of lsb-base depends
- Revert lsb status changes from maintainer scripts
- Ignore test suite errors on hppa
- Build-depend on libltdl3-dev instead of libltdl-dev
- Build with GCC 3.4 to work around known bugs in 4.1 (results in no llvm
support on Dapper, but this is not a regression for that release)
- Drop po template file comments to work around bugs in the Dapper build
system
- Switch back to older dpkg-dev Source-Version style
- Restore build-dep on dpkg-dev
clamav (0.96.4+dfsg-1ubuntu1) natty; urgency=low
* Merge from debian unstable. Remaining changes:
- Drop initial signature definitions from clamav-base
- Drop build-dep on electric-fence (in Universe)
- Add apparmor profiles for clamd and freshclam along with maintainer
script changes
* Cherry pick 89e80e83a8c256e15821b6558b5ed7fc9e65f4b5 from upstream git to
fix CPU detection for LLVM JIT - JIT will now be correctly enabled on
Pentium IV - fixes FTBFS due to test failures
clamav (0.96.4+dfsg-1) unstable; urgency=low
[ Alberto WU ]
* New upstream release
- Fix 'Unknown error code ERROR' (closes: #599372).
- Disable the JIT on K6-2 (closes: #600088).
- Fix parsing of malformed pdf files (closes: #599908).
[ Michael Tautschnig ]
* Debconf translation updates
- Czech (closes: #600098)
- Vietnamese (closes: #601538)
* Add additional check for milter socket in status command of milter init
script (thanks Chris Moules for proposing a patch, closes: #600908).
clamav (0.96.4+dfsg-1~volatile1ubuntu2) natty; urgency=low
* Cherry pick 89e80e83a8c256e15821b6558b5ed7fc9e65f4b5 from upstream git to
fix CPU detection for LLVM JIT - JIT will now be correctly enabled on
Pentium IV - fixes FTBFS due to test failures
clamav (0.96.4+dfsg-1~volatile1ubuntu1) natty; urgency=low
* Merge from Debian Volatile. Remaining Ubuntu changes:
- Drop initial signature definitions from clamav-base
- Drop build-dep on electric-fence (in Universe)
- Add apparmor profiles for clamd and freshclam along with maintainer
script changes
* Dropped diff for PDF clamdscan crash, incorporated upstream
clamav (0.96.4+dfsg-1~volatile1) lenny-volatile; urgency=low
[ Alberto WU ]
* New upstream release
- Fix 'Unknown error code ERROR' (closes: #599372).
- Disable the JIT on K6-2 (closes: #600088).
- Fix parsing of malformed pdf files (closes: #599908).
[ Michael Tautschnig ]
* Debconf translation updates
- Czech (closes: #600098)
* Add additional check for milter socket in status command of milter init
script (thanks Chris Moules for proposing a patch, closes: #600908).
clamav (0.96.3+dfsg-2ubuntu2) natty; urgency=low
* PDF clamdscan crash fix (LP: #658341) - Cherry pick from Clamav git commit
e142504b07d7f81435f6ac99ec1eedf6c08f2188, will be part of 0.96.4
-- Scott Kitterman <email address hidden> Wed, 01 Dec 2010 12:10:43 -0500
-
clamav (0.96.3+dfsg-2ubuntu1.0.10.04.1~dapper1) dapper-backports; urgency=low
* Source backport for Hardy to fix PDF crash (LP: #658341)
- Drop -T -W from apparmor_parser calls in clamav-daemon and freshclam
postinsts since it is not supported in early apparmor versions
- Drop deny rule in freshclam apparmor profile since deny is not
supported in Hardy's apparmor
- Drop dh_lintian from debian/rules and adjust version of debhelper
build-dep
- Drop build-dep and libclamav-dev depends on non-existent libtommath-dev
- Changed Section to 'utils' for clamav-dbg package
- Drop versioning of lsb-base depends
- Revert lsb status changes from maintainer scripts
- Ignore test suite errors on hppa
- Build-depend on libltdl3-dev instead of libltdl-dev
- Build with GCC 3.4 to work around known bugs in 4.1 (results in no llvm
support on Dapper, but this is not a regression for that release)
- Drop po template file comments to work around bugs in the Dapper build
system
- Switch back to older dpkg-dev Source-Version style
- Restore build-dep on dpkg-dev
-- Scott Kitterman <email address hidden> Fri, 15 Oct 2010 00:49:55 -0400
-
clamav (0.96.3+dfsg-2ubuntu0.10.04.1~dapper1) dapper-backports; urgency=low
* Source backport for Dapper (LP: #653792)
- Drop deny rule in freshclam apparmor profile since deny is not
supported in early apparmor packages
- Drop -T option from apparmor_parser call in clamav-daemon and freshclam
postinsts since it is not supported in early apparmor versions
- Drop dh_lintian from debian/rules and adjust version of debhelper
build-dep
- Drop build-dep and libclamav-dev depends on non-existent libtommath-dev
- Changed Section to 'utils' for clamav-dbg package
- Drop versioning of lsb-base depends
- Revert lsb status changes from maintainer scripts
- Build with GCC 3.4 to work around known bugs in 4.1 (results in no llvm
support on Dapper, but this is not a regression for that release)
- Drop po template file comments to work around bugs in the Dapper build
system
- Switch back to older dpkg-dev Source-Version style
- Restore build-dep on dpkg-dev
clamav (0.96.3+dfsg-2ubuntu0.10.04.1) lucid-proposed; urgency=low
* Microversion update to 0.96.3 for Lucid (LP: #653738)
clamav (0.96.3+dfsg-2ubuntu1) maverick; urgency=low
* Merge from Debian Unstable. Remaining Ubuntu changes:
- Drop initial signature definitions from clamav-base
- Drop build-dep on electric-fence (in Universe)
- Add apparmor profiles for clamd and freshclam along with maintainer
script changes
clamav (0.96.3+dfsg-2) unstable; urgency=low
[ Stephen Gran ]
* Add NotifyClamd only if set to nonempty value.
[ Michael Tautschnig ]
* Cherry-pick from upstream: Only enable RLIMIT_DATA warning on *BSD
(already included in Ubuntu's 1ubuntu3) (closes: #598083).
* Do rmdir /etc/clamav, /var/log/clamav, /var/lib/clamav in all postrms as
we cannot count on clamav-base's postrm to be the last one being called
(thanks piuparts).
* Remove trailing / in freshclam's DatabaseDirectory default value
(closes: #598084).
clamav (0.96.3+dfsg-1ubuntu4) maverick; urgency=low
* debian/usr.sbin.clamd: updated to give read access to
@{PROC}/[0-9]*/status and @{PROC}/filesystems. The latter is covered by
the base abstraction, but we add it here to ease backporting.
- LP: #645956
clamav (0.96.3+dfsg-1ubuntu3) maverick; urgency=low
* Change from upstream to fix clamd/clamd.c to only check RLIMIT_DATA on
FreeBSD since the check is not relevant to Linux (See clamav bug #1941 for
details)
clamav (0.96.3+dfsg-1ubuntu2) maverick; urgency=low
* debian/usr.bin.freshclam: updated to give read access to
@{PROC}/[0-9]*/status and @{PROC}/filesystems. The latter is covered by
the base abstraction, but we add it here to ease backporting.
- LP: #645061
clamav (0.96.3+dfsg-1ubuntu1) maverick; urgency=low
* Merge new upstream release from Debian Unstable. FFe (LP: #644707).
Also fixes (LP: #643682). Remaining Ubuntu changes:
- Drop initial signature definitions from clamav-base
- Drop build-dep on electric-fence (in Universe)
- Add apparmor profiles for clamd and freshclam along with maintainer
script changes
* Fix NotifyClamd configurate in debian/clamav-freshclam.postinst
- Cherry pick from Debian pkg-clamav Git, Thanks to Stephen Gran
clamav (0.96.3+dfsg-1) unstable; urgency=high
[ Stephen Gran ]
* Fixed NotifyClamd config options handling.
[ Alberto WU ]
* New upstream release
- urgency=high as this addresses CVE-2010-0405
- Reset MaxFileSize to default value if set to 0 (closes: #585479)
- New config option ExtendedDetectionInfo (clamd.conf)
[ Michael Tautschnig ]
* Set data segment limit in tests to 524288 to make kfreebsd-i386 systems
happy (closes: #591245).
* Bumped Standards-Version to 3.9.1, no changes needed.
* Preserve order of database mirrors (closes: #592322).
* Added Vcs-Git and Vcs-Browser control fields.
* Debconf translation updates
- Italian (closes: #597307)
* We'll stay with 1.0 Debian source format for now, added proper
debian/source/format
clamav (0.96.1+dfsg-3ubuntu5.1) maverick; urgency=low
* SECURITY UPDATE: fix integer overflow in BZ2_decompress()
- libclamav/nsis/bzlib.c: return error if N is larger than 2*1024^2 which
keeps us from overflowing but leaves enough room for the 900k maximum
value of the RUNA/RUNB encoding
- patch based on upstream bzip2
- LP: #625849
- CVE-2010-0405
-- Scott Kitterman <email address hidden> Sat, 02 Oct 2010 17:45:03 -0400
-
clamav (0.96.1+dfsg-3ubuntu5~dapper1) dapper-backports; urgency=low
* Source backport for Dapper (LP: #615411)
- Drop deny rule in freshclam apparmor profile since deny is not
supported in early apparmor packages
- Drop dh_lintian from debian/rules and adjust version of debhelper
build-dep
- Drop build-dep and libclamav-dev depends on non-existent libtommath-dev
- Changed Section to 'utils' for clamav-dbg package
- Drop versioning of lsb-base depends
- Revert lsb status changes from maintainer scripts
- Build with GCC 3.4 to work around known bugs in 4.1 (results in no llvm
support on Dapper, but this is not a regression for that release)
- Drop po template file comments to work around bugs in the Dapper build
system
- Switch back to older dpkg-dev Source-Version style
- Restore build-dep on dpkg-dev
-- Scott Kitterman <email address hidden> Mon, 09 Aug 2010 11:24:45 -0400
-
clamav (0.95.3+dfsg-1ubuntu0.09.04~dapper4.1) dapper-security; urgency=low
* SECURITY UPDATE: fix integer overflow in BZ2_decompress()
- libclamav/nsis/bzlib.c: return error if N is larger than 2*1024^2 which
keeps us from overflowing but leaves enough room for the 900k maximum
value of the RUNA/RUNB encoding
- patch based on upstream bzip2
- CVE-2010-0405
-- Jamie Strandboge <email address hidden> Mon, 13 Sep 2010 14:45:44 -0500
-
clamav (0.95.3+dfsg-1ubuntu0.09.04~dapper4) dapper-security; urgency=low
* SECURITY UPDATE: fix crash via heap overflow when processing malformed
PDF file
- libclamav/pdf.c: make sure enough space is allocated for tmpbuf in
cli_pdf()
- https://wwws.clamav.net/bugzilla/show_bug.cgi?id=2016
- clamav git f0eb394501ec21b9fe67f36cbf5db788711d4236
-- Jamie Strandboge <email address hidden> Fri, 21 May 2010 08:35:34 -0500
-
clamav (0.95.3+dfsg-1ubuntu0.09.04~dapper3) dapper-security; urgency=high
* SECURITY UPDATE: (LP: #553266)
* References clamav bugs #1771 and #1826
* libclamav/mspack.c: fix Quantum decompressor (bb#1771)
- clamav git 224fee54dd6cd8933d7007331ec2bfca0398d4b4
* libclamav/mspack.c: improve unpacking of malformed cabinets (bb#1826)
- clamav git 31b77b3fb589ab07e7b4d84f8b3825178864ee51
* debian/clamav-milter.templates: remove comments and blank lines at the
beginning of the file since Dapper doesn't like them (LP: #558598)
-- Scott Kitterman <email address hidden> Thu, 01 Apr 2010 09:15:53 -0400
-
clamav (0.95.3+dfsg-1ubuntu0.09.04~dapper2) dapper-security; urgency=low
* No change rebuild from dapper-backports per microrelease exception
clamav (0.95.3+dfsg-1ubuntu0.09.04~dapper1) dapper-backports; urgency=low
* Source backport for clamav (LP: #423793)
- Drop deny rule in freshclam apparmor profile since deny is not
supported in early apparmor packages in Ubuntu
- Drop dh_lintian from debian/rules and adjust version of debhelper
build-dep
- Drop build-dep and libclamav-dev depends on non-existent libtommath-dev
- Changed Section to 'utils' for clamav-dbg package
- Drop versioning of lsb-base depends
- Revert lsb status changes from maintainer scripts
- Build with GCC 3.4 to work around known bugs in 4.1
- Drop po template file comments to work around bugs in the Dapper build
system
- Switch back to older dpkg-dev Source-Version style
- Restore build-dep on dpkg-dev
clamav (0.95.3+dfsg-1ubuntu0.09.04) jaunty-proposed; urgency=low
* Update Jaunty per Clamav microversion release exception (LP: #473707)
clamav (0.95.3+dfsg-1ubuntu1) lucid; urgency=low
* Merge from debian unstable, remaining changes:
- Drop build-dep on electric-fence (in Universe)
- Build-dep on libltdl3-dev instead of libltdl-dev for updating earlier
releases more easily
- Add apparmor profiles for clamd and freshclam along with maintainer
script changes
clamav (0.95.3+dfsg-1) unstable; urgency=low
[ Michael Tautschnig ]
* New upstream version
* Should fix clamd segfault on startup (closes: #537629)
* Updated info in clamd.conf man page (closes: #534443)
* Proper socket ownership setup, no chgrp in make_dir (closes: #553333)
clamav (0.95.2+dfsg-5) unstable; urgency=low
[ Michael Meskes ]
* Debconf translation updates
- Czech (closes: #535672)
- Italian (closes: #537471)
- Dutch (closes: #545061)
- German (closes: #545753)
- Vietnamese (closes: #548050)
* Fixed LSB header information. (Closes: #546450) - thanks to Petter
Reinholdtsen <email address hidden>
* Bumped Standards-Version to 3.8.3, no changes needed.
[ Stephen Gran ]
* Remove clamav-milter logrotate file on purge (closes: #536669)
* Always use clamav-milter.ctl as local socket (closes: #543309)
[ Michael Tautschnig ]
* Remove all remaining files during purge
clamav (0.95.2+dfsg-4ubuntu4) karmic; urgency=low
[ Scott Kitterman ]
* Apparmor profile fixes (reviewed by Ubuntu Security):
- Allow clamav-daemon access to the home directory of the user running it
and update README.Debian to explain the need to adjust the apparmor
profile for it to scan elsewhere (LP: #450250)
- Add capability dac_override to clamav-daemon profile to allow
AllowSupplementaryGroups to work (LP: #433764)
* Cherry pick packaging bug fixes from pkg-clamav git
[ Stephen Gran ]
* Make all references to the milter socket reference the same path
- b71e1a26bafb0df532df2673fcd1cd53bc6952bd
* Read default file once (LP: #430421)
- 86b421dac00e49abb8e5907b9e952e33e83b7aec
[ Michael Meskes ]
* Fixed LSB header information. (Closes: #546450) - thanks to Petter
Reinholdtsen <email address hidden>
- 3f59d827d1e54ce1efcb7e050c57866ccdfaedae
[ Michael Tautschnig ]
* Remove all remaining files during purge
- 4132426753b674dd9c622f1c0501703ed987a239
clamav (0.95.2+dfsg-4ubuntu3) karmic; urgency=low
* Fix clamd apparmor profile to work with havp (LP: #423669)
- Thanks to Imre Gergely for the fix
clamav (0.95.2+dfsg-4ubuntu2) karmic; urgency=low
* Add the milter logrotate file to the list of purged files
- Cherry picked from pkg-clamav git (thanks to Stephen Gran)
0aebeb19f8169da097d21b021dd67ca06ffe3ca6
clamav (0.95.2+dfsg-4ubuntu1) karmic; urgency=low
[ Scott Kitterman ]
* Merge from debian unstable, remaining changes:
- Drop build-dep on electric-fence (in Universe)
- Build-dep on libltdl3-dev instead of libltdl-dev for updating earlier
releases more easily
- Add apparmor profiles for clamd and freshclam along with maintainer
script changes
[ Jamie Strandboge ]
* update clamav-freshclam and clamav-daemon postinst to reload the
individual AppArmor profiles instead of reloading all of AppArmor
- LP: #397988
clamav (0.95.2+dfsg-4) unstable; urgency=low
* Fix the changelog
clamav (0.95.2+dfsg-3) unstable; urgency=low
[ Michael Meskes ]
* Debconf translation updates
- Finnish (closes: #534339)
[ Stephen Gran ]
* Lots more milter maintainer script cleanups
clamav (0.95.2+dfsg-2ubuntu1) karmic; urgency=low
* Merge from debian unstable, remaining changes:
- Drop build-dep on electric-fence (in Universe)
- Build-dep on libltdl3-dev instead of libltdl-dev for updating earlier
releases more easily
- Add apparmor profiles for clamd and freshclam along with maintainer
script changes
clamav (0.95.2+dfsg-2) unstable; urgency=low
* Don't abort dpkg on failed start (closes: #533397)
* Get rid of spurious patch downgrading version (closes: #533638)
* [Debconf translation updates]
- French (closes: #533667)
- Portuguese (closes: #533779)
- Russian (closes: #533548)
- Swedish (closes: #533568)
clamav (0.95.2+dfsg-1ubuntu2) karmic; urgency=low
* Correct upstream version change in configure/configure.in invadertently
introduced in previous upload (LP: #389587)
clamav (0.95.2+dfsg-1ubuntu1) karmic; urgency=low
* Merge from debian unstable, remaining changes (LP: #388111):
- Drop build-dep on electric-fence (in Universe)
- Add apparmor profiles for clamd and freshclam along with maintainer
script changes
clamav (0.95.2+dfsg-1) unstable; urgency=low
* New upstream version
* Should fix crash on unofficial sigs (closes: #525483)
* Get rid of ridiculous home rolled suid (closes: #522106)
* Freshclam gets 0400 or 0444 config file (closes: #524356)
* Debconf templates and debian/control reviewed by the debian-l10n-
english team as part of the Smith review project. Closes: #523573
* [Debconf translation updates]
- Swedish. Closes: #525044
- Japanese. Closes: #525084
- French. Closes: #526024
- Portuguese. Closes: #526644
- Russian. Closes: #526727
- German. Closes: #526730
- Dutch. Closes: #526745
- Galician. Closes: #527320
* Define status_of_proc in the event that it's not in lsb/init-functions
(closes: #527903)
* Stop referencing /etc/default/clamav-milter and drop command line
arguments in milter init script (closes: #526123)
clamav (0.95.1+dfsg-3) unstable; urgency=low
[ Michael Tautschnig ]
* Unignored make check results on ia64, sparc (alpha still broken): tell
electric-fence that the alignment is at least 8 bytes (thanks Aurelien
Jarno).
[ Stephen Gran ]
* Fix wrong variable useage in milter init script
[ Michael Meskes ]
* Applied patch assembled by Christian Perrier <email address hidden>:
- Debconf templates and debian/control reviewed by the debian-l10n-
english team as part of the Smith review project. Closes: #523573
- [Debconf translation updates]
- Swedish. Closes: #525044
- Japanese. Closes: #525084
- French. Closes: #526024
- Portuguese. Closes: #526644
- Russian. Closes: #526727
- German. Closes: #526730
- Dutch. Closes: #526745
- Galician. Closes: #527320
- Basque. Closes: #530854
* Made pid files word readable. There doesn't seem to be any sense in not
doing this given that the information is available for everyone anyway.
Closes: #527901
clamav (0.95.1+dfsg-2ubuntu1) karmic; urgency=low
* Merge from debian unstable, remaining changes:
- Drop build-dep on electric-fence (in Universe) and run make test on all
archs since arch specific test failures with electric-fence are not a
problem
- Add apparmor profiles for clamd and freshclam along with maintainer
script changes
- Don't pass $SOCKET in the clamav-milter init as the new milter does not
use it
clamav (0.95.1+dfsg-2) unstable; urgency=low
[ Michael Tautschnig ]
* Fixed LogFile handling in clamav-milter.postinst (logrotation was broken)
[ Stephen Gran ]
* More work on clamav-milter's init script
clamav (0.95.1+dfsg-1ubuntu1.1) jaunty-proposed; urgency=low
* Fixed clamd apparmor profile based on pre-release testing
- added permissions for qpsmtpd, p3scan spools
* clamav-milter postinst/logrotate fix from pkg-clamav git repo (LP: #363804)
* clamav-milter init script fix (LP: #363796)
clamav (0.95.1+dfsg-1ubuntu1) jaunty; urgency=low
[ Scott Kitterman ]
* Merge from debian unstable, remaining changes (LP: #361762):
- Drop build-dep on electric-fence (in Universe) and run make test on all
archs since arch specific test failures with electric-fence are not a
problem
- Add apparmor profiles for clamd and freshclam along with maintainer
script changes
* Update suggested version of apparmor to 2.3+1289 due to use of deny in the
freshclam apparmor profile
* Cherrypick addition clamav-milter init fixes from pkg-clamav git repo
[ Imre Gergely ]
* fix freshclam apparmor profile for clamtk (LP: #359301)
clamav (0.95.1+dfsg-1) unstable; urgency=low
[ Michael Tautschnig ]
* New upstream version, fixes:
- clamav-milter: Add option to skip scanning of authenticated smtp users
(closes: #519505)
* Really ignore failing test suite on alpha, ia64, sparc.
* Build-Depends libltdl3-dev updated to new libltdl-dev.
* Translation update:
- sv (thanks Martin Bagge <email address hidden>)
* Don't suggest unrar, lha anymore as external unpackers aren't supported
anyway since 0.94.
[ Stephen Gran ]
* Readd special handling for postfix (closes: #523119)
* clamav-daemon: ArchiveLimitMemoryUsage is deprecated (closes: #522910)
* Allow user to select db.ipv6.clamav.net (closes: #513023)
* clamav-docs: unneeded dependency on sharutils (closes: #523878)
* Make libclamav suggest libclamunrar
clamav (0.95.1+dfsg-0ubuntu1) jaunty; urgency=low
[ Scott Kitterman ]
* New upstream bugfix release
- libclamav/others.h: harden CLI_ISCONTAINED macro (bb#1552)
- libclamav/phishcheck.c: fix possible crash in cli_url_canon() (bb#1553)
- Signficant clamav-milter bug fixes
- Other fixes throughout
* Drop ArchiveLimitMemoryUsage option from clamav-base.postinst.in (option
removed upstream)
* Add CommandReadTimeout, SendBufTimeout, and MaxQueue to
clamav-base.postinst.in
* Add SkipAuthenticated to clamav-milter.postinst.in
* Drop unrar and lha from clamav Suggests since external unpackers are not
supported since 0.94
[ Jamie Strandboge ]
* fix freshclam apparmor profile for klamav (LP: #359301)
clamav (0.95+dfsg-2ubuntu1) jaunty; urgency=low
* Merge from debian unstable, remaining changes (LP: #354015):
- Drop build-dep on electric-fence (in Universe) and run make test on all
archs since arch specific test failures with electric-fence are not a
problem
- Add apparmor profiles for clamd and freshclam along with maintainer
script changes
* Update apparmor profile to allow access to usr-tmp for klamav
(LP: #310737)
* Update apparmor profile to not log samba related denails (LP: #346397)
* Move apparmor from recommends to suggests - we don't want to cause it to
be installed if it has been removed
clamav (0.95+dfsg-2) unstable; urgency=low
[ Michael Tautschnig ]
* Improved debconf questions
* Added Homepage: control field
* Another watch file fix to rank upstreams rc lower than releases.
* Even more /var/run-on-tmpfs fixes (closes: #521606).
* Ignore failing test suite on alpha, ia64, sparc (bugs filed against
glibc).
[ Stephen Gran ]
* Lots of option handling fixups for clamav-milter (closes: #521668).
* Remove new .cld files on removal of freshclam
* Eliminate unnecessary ucf version check
* Try to preseed clamav-milter.conf with options from clamd.conf where
possible
* package new clamdtop utility (closes: #521658)
clamav (0.95+dfsg-1) unstable; urgency=low
[ Michael Tautschnig ]
* New upstream version, fixes:
- License incompatibility with libgmp (closes: #512776)
- wrong claim about all interception message methods (closes: #438455)
- clamdscan fails to connect to clamd (closes: #515798)
- clamav-milter dies after email scanning (sparc64) (closes: #339590)
- VERSION reports wrong database version (closes: #323803)
- memory footprint skyrockets (closes: #420391)
- Virus not detected in RAR-archive inside email (closes: #484642)
- clamav-milter ignores whitelist file (closes: #520353)
- clamav-milter won't start when both local and tcp socket are in use
(closes: #505852)
- ERROR: Can't find any clamd server (closes: #435007)
- clamd: random SIGABRT (closes: #512720)
* Removed configure options that aren't supported anymore (--with-sendmail,
--with-tcpwrappers, --with-dns)
* Bumped Standards-Version to 3.8.1 (added mkdir calls to ensure
/var/run/clamav exists)
* Configure with --with-system-tommath to use Debian's libtommath-dev
instead of the bundled one.
* Updated *Depends (dropped essential packages and removed versions where
etch already satisfies the dependencies).
* SONAME bump: libclamav5 -> libclamav6
* Build-Depend on libltdl3-dev to avoid using the bundled libltdl, but still
get support for runtime loading (nonfree) unrar code if the user so
decides.
* Fixed watch file to deal with new versioning schema (+dfsg).
* Run make check unless nocheck is in DEB_BUILD_OPTIONS
* Changed Section of clamav-dbg to debug.
* Override lintian error stating that libclamav6 statically links to zlib
(lintian is right, libclamav6 does indeed duplicate parts of the zlib
code, but there is not way around that).
* Handle new option SafeBrowsing in freshclam.conf.
* Create symlinks to AUTHORS, not AUTHORS.gz (closes: #520172).
* clamav-milter got its own config file and logging options, handled via
debconf, added logrotation (closes: #518628)
clamav (0.94.dfsg.2-1ubuntu3) jaunty; urgency=low
* Update apparmor profile in debian/usr.bin/freshclam to allow freshclam to
update virus signatures in user home directories (LP: #312695)
clamav (0.94.dfsg.2-1ubuntu2) jaunty; urgency=low
* Update apparmor profile in debian/usr.sbin.clamd to allow log file locking
clamav (0.94.dfsg.2-1ubuntu1) jaunty; urgency=low
* Merge from debian unstable, remaining changes:
- debian/control: Recommends apparmor >= 2.1+1075-0ubuntu6 for
clamav-daemon and clamav-freshclam
- add debian/usr.bin.freshclam and debian/usr.sbin.clamd
- debian/clamav-(daemon|freshclam).dirs: add etc/apparmor.d/force-complain
- debian/clamav-(daemon|freshclam).install: install profiles
- debian/clamav-(daemon|freshclam).preinst: create symlink for
force-complain/ on pre-feisty upgrades, upgrades where apparmor-profiles
profile is unchanged (ie non-enforcing) and upgrades where the profile
doesn't exist.
- debian/clamav-(daemon|freshclam).postrm: remove symlink in
force-complain/ on purge.
- debian/clamav-(daemon|freshclam).postinst.in: reload apparmor
- update README.Debian with note on Apparmor
* Enable upstream test suite in debian/rules
- Not adding valgrind yet due to test failures
-- Jamie Strandboge <email address hidden> Mon, 29 Mar 2010 15:19:17 -0500
-
clamav (0.95.3+dfsg-1ubuntu0.09.04~dapper1) dapper-backports; urgency=low
* Source backport for clamav (LP: #423793)
- Drop deny rule in freshclam apparmor profile since deny is not
supported in early apparmor packages in Ubuntu
- Drop dh_lintian from debian/rules and adjust version of debhelper
build-dep
- Drop build-dep and libclamav-dev depends on non-existent libtommath-dev
- Changed Section to 'utils' for clamav-dbg package
- Drop versioning of lsb-base depends
- Revert lsb status changes from maintainer scripts
- Build with GCC 3.4 to work around known bugs in 4.1
- Drop po template file comments to work around bugs in the Dapper build
system
- Switch back to older dpkg-dev Source-Version style
- Restore build-dep on dpkg-dev
-- Scott Kitterman <email address hidden> Fri, 06 Nov 2009 21:22:49 -0500
-
clamav (0.95.2+dfsg-4ubuntu1.1~dapper1) dapper-backports; urgency=low
* Source backport for clamav (LP: 423793)
- Drop deny rule in freshclam apparmor profile since deny is not
supported in Dapper's apparmor
- Drop dh_lintian from debian/rules and adjust version of debhelper
build-dep
- Drop build-dep and libclamav-dev depends on non-existent libtommath-dev
- Changed Section to 'utils' for clamav-dbg package
- Drop versioning of lsb-base depends
- Build with GCC 3.4 to work around known bugs in 4.1
- Drop po template file comments to work around bugs in the Dapper build
system
- Switch back to older dpkg-dev Source-Version style
- Restore build-dep on dpkg-dev
* Updated clamd apparmor profile
- debian/usr.sbin.clamd: added support for havp (LP: #423669)
clamav (0.95.2+dfsg-4ubuntu1.1) jaunty-proposed; urgency=low
* New upstream micro-version ugrade (LP: #394870)
* Upgrade packaging to karmic standard due to immaturity of 0.95 packaging
when jaunty released:
[ Scott Kitterman ]
* Add the milter logrotate file to the list of purged files
- Cherry picked from pkg-clamav git (thanks to Stephen Gran)
0aebeb19f8169da097d21b021dd67ca06ffe3ca6
[ Jamie Strandboge ]
* update clamav-freshclam and clamav-daemon postinst to reload the
individual AppArmor profiles instead of reloading all of AppArmor
- LP: #397988
[ Michael Meskes ]
* Applied patch assembled by Christian Perrier <email address hidden>:
- Debconf templates and debian/control reviewed by the debian-l10n-
english team as part of the Smith review project. Closes: #523573
- [Debconf translation updates]
- Swedish. Closes: #525044
- Japanese. Closes: #525084
- French. Closes: #526024
- Portuguese. Closes: #526644
- Russian. Closes: #526727
- German. Closes: #526730
- Dutch. Closes: #526745
- Galician. Closes: #527320
- Basque. Closes: #530854
- Finnish (closes: #534339)
* Made pid files word readable. There doesn't seem to be any sense in not
doing this given that the information is available for everyone anyway.
Closes: #527901
[ Stephen Gran ]
* Lots more milter maintainer script cleanups
* Don't abort dpkg on failed start (closes: #533397)
* Get rid of spurious patch downgrading version (closes: #533638)
* Should fix crash on unofficial sigs (closes: #525483)
* Get rid of ridiculous home rolled suid (closes: #522106)
* Freshclam gets 0400 or 0444 config file (closes: #524356)
* Debconf templates and debian/control reviewed by the debian-l10n-
english team as part of the Smith review project. Closes: #523573
* [Debconf translation updates]
- French (closes: #533667)
- Portuguese (closes: #533779)
- Russian (closes: #533548)
- Swedish (closes: #533568)
- Swedish. Closes: #525044
- Japanese. Closes: #525084
- French. Closes: #526024
- Portuguese. Closes: #526644
- Russian. Closes: #526727
- German. Closes: #526730
- Dutch. Closes: #526745
- Galician. Closes: #527320
* Define status_of_proc in the event that it's not in lsb/init-functions
(closes: #527903)
* Stop referencing /etc/default/clamav-milter and drop command line
arguments in milter init script (closes: #526123)
* Fix wrong variable useage in milter init script
* More work on clamav-milter's init script
[ Michael Tautschnig ]
* Unignored make check results on ia64, sparc (alpha still broken): tell
electric-fence that the alignment is at least 8 bytes (thanks Aurelien
Jarno).
* Fixed LogFile handling in clamav-milter.postinst (logrotation was broken)
-- Imre Gergely <email address hidden> Thu, 03 Sep 2009 18:59:26 +0300
-
clamav (0.95.1+dfsg-1ubuntu1.2~dapper1) dapper-backports; urgency=low
* Source backport for clamav 0.95.1 (LP: #389793):
- Drop deny rule in freshclam apparmor profile since deny is not supported
in Hardy's apparmor
- Drop dh_lintian from debian/rules and adjust version of debhelper
build-dep
- Drop build-dep and libclamav-dev depends on non-existant libtomath-dev
- Changed Section to 'utils' for clamav-dbg package
- Drop versioning of lsb-base depends
- Revert lsb status changes from maintainer scripts
- Build with GCC 3.4 to work around known bugs in 4.1
- Drop po template file comments to work around bugs in the Dapper build
system
- Switch back to older dpkg-dev Source-Version style
- Restore build-dep on dpkg-dev
-- Scott Kitterman <email address hidden> Sat, 20 Jun 2009 01:32:19 -0400
-
clamav (0.94.dfsg.2-1ubuntu0.3~dapper2) dapper-security; urgency=low
* No change rebuild from backports
clamav (0.94.dfsg.2-1ubuntu0.3~dapper1) dapper-backports; urgency=low
* Source backport for Dapper (LP: #354190, #360502)
- Drop versioning of lsb-base depends
- Revert lsb status changes from maintainer scripts
- Switch back to old style dpkg-dev Source-Version
- Drop maintainer change
- Build with GCC 3.4 instead of 4.1
- Remove leading comments from translation templates due to tool
shortfalls on Dapper
* Update existing backport with security fixes from 0.95 and 0.95.1
* Update apparmor profile with fixes from Jaunty
clamav (0.94.dfsg.2-1ubuntu0.3) intrepid-security; urgency=high
* SECURITY UPDATE: (LP: #360502)
* References
* libclamav/others.h: harden CLI_ISCONTAINED macro (bb#1552) (Denial of
service)
* Note: clamav-milter bugs such as 1499, 1522, 1524, and 1531 are not
relevant to clamav 0.94.2 and earlier versions
* Note: The code related to clamav bug 1553 was substantially rewritten in
0.95, so it is also not relevant to clamav 0.94.2 and earlier versions
* Bump CL_FLEVEL_DCONF to 0.95.1 level since relevant security patches are
applied
* Added CVE references for 0.94.dfsg.2-1ubuntu0.2 now that they've been
assigned
clamav (0.94.dfsg.2-1ubuntu0.2) intrepid-security; urgency=high
* SECURITY UPDATE (LP: #354190):
* References Clamav #1335, #1462, CVE 2008-6680, CVE 2009-1270
* libclamav/pe.c: division by zero with --detect-broken (bb#1335) (Denial of
service)
* libclamav/untar.c: infloop in tar.c (bb#1462) (Denial of Service)
* Add dconf_renable patch from 0.95 (previously backported to 0.92.2)
- Bump CL_FLEVEL_DCONF to 0.95 level since security patches are applied
clamav (0.94.dfsg.2-1ubuntu0.1) intrepid-security; urgency=low
* SECURITY UPDATE: (LP: #304017)
- Fix recursive stack overflow in jpeg parsing code
* Other changes:
- debian/control: Recommends apparmor >= 2.1+1075-0ubuntu6 for
clamav-daemon and clamav-freshclam
- add debian/usr.bin.freshclam and debian/usr.sbin.clamd
- debian/clamav-(daemon|freshclam).dirs: add etc/apparmor.d/force-complain
- debian/clamav-(daemon|freshclam).install: install profiles
- debian/clamav-(daemon|freshclam).preinst: create symlink for
force-complain/ on pre-feisty upgrades, upgrades where apparmor-profiles
profile is unchanged (ie non-enforcing) and upgrades where the profile
doesn't exist.
- debian/clamav-(daemon|freshclam).postrm: remove symlink in
force-complain/ on purge.
- debian/clamav-(daemon|freshclam).postinst.in: reload apparmor
- update README.Debian with note on Apparmor
- Enable upstream test suite in debian/rules
clamav (0.94.dfsg.2-1) unstable; urgency=low
[ Stephen Gran ]
* New upstream version
[ Michael Meskes ]
* Removed unused debconf templates and unfuzzied all translations.
[ Michael Tautschnig ]
* Removed --unzip from clampipe script (closes: #506055)
* Moved clamav-milter specific stuff from its specific README.Debian to
clamav-global one.
* Sync start of clamav-milter with clamav-daemon when clamav-daemon is being
upgraded (closes: #309067)
* The TemporaryDirectory option has been added long ago, no need for hacks
via clamav-daemon.default anymore (closes: #253080)
clamav (0.94.dfsg.1-1ubuntu0.1) intrepid-security; urgency=low
* SECURITY UPDATE: (LP: #296704)
- Fix off-by-one heap overflow
* Other changes:
- debian/control: Recommends apparmor >= 2.1+1075-0ubuntu6 for
clamav-daemon and clamav-freshclam
- add debian/usr.bin.freshclam and debian/usr.sbin.clamd
- debian/clamav-(daemon|freshclam).dirs: add etc/apparmor.d/force-complain
- debian/clamav-(daemon|freshclam).install: install profiles
- debian/clamav-(daemon|freshclam).preinst: create symlink for
force-complain/ on pre-feisty upgrades, upgrades where apparmor-profiles
profile is unchanged (ie non-enforcing) and upgrades where the profile
doesn't exist.
- debian/clamav-(daemon|freshclam).postrm: remove symlink in
force-complain/ on purge.
- debian/clamav-(daemon|freshclam).postinst.in: reload apparmor
- update README.Debian with note on Apparmor
* Update apparmor profile for clamd to work with TCP sockets (LP: #288942)
clamav (0.94.dfsg.1-1) unstable; urgency=low
[ Stephen Gran ]
* New upstream version (closes: #505134, #502165, #501298)
* Handle new option SubmitDetectionStats in freshclam.conf
* Remove RAR from the description, since we really don't handle it anymore
* Skip 'sleep until -e socket' logic if socket is of type inet (LP #296086)
[ Michael Meskes ]
* Added myself as uploader.
* Changed watch file to account for dfsg extension.
* Do not configure temporary directory in clamd.conf anymore unless it is
already configured there.
* Added Basque debconf translation (closes: #500007)
[ Michael Tautschnig ]
* Use lsb's status_of_proc function to determine the status of the process
and return with according exit codes (closes: #486076)
* Updated Dutch debconf translation (thanks Paul Gevers <email address hidden>)
(closes: #501627)
* Changed versioned dependency of clamav-daemon to clamav-base to equals
(closes: #500416)
* Handle new option DetectionStatsCountry in freshclam.conf
* Don't trust the multilib guessing stuff, always use libdir=$prefix/lib
* Removed nowadays unused lintian overrides
* Create md5sums control file for clamav-dbg as well (thanks, lintian)
clamav (0.94.dfsg.1~rc1-0ubuntu2) intrepid; urgency=low
* update clamd profile for use with exim (LP: #288110)
clamav (0.94.dfsg.1~rc1-0ubuntu1) intrepid; urgency=low
* New upstream RC release (LP:#286176)
- Odd version numbering is to get a higher version than 0.94.dfsg without
an epoch and was coordinated with Debian
- Packaging based on current Ubuntu (0.94.dfsg-1ubuntu2) and does not use
unreleased packaging improvements in the Debian pkg-claamv Git repo to
minimize risk for Intrepid
- Handle new freshclam option SubmitDetectionStats (cherry picked from
Debian pkg-clamav Git repo)
clamav (0.94.dfsg-1ubuntu2) intrepid; urgency=low
* Update apparmor profile based on test feedback (LP: #276865)
-Thanks to Ante Karamatić for the change
clamav (0.94.dfsg-1ubuntu1) intrepid; urgency=low
* Follow ApparmorProfileMigration and force apparmor complain mode on some
upgrades (LP: #264817)
- debian/control: Recommends apparmor >= 2.1+1075-0ubuntu6 for
clamav-daemon and clamav-freshclam
- add debian/usr.bin.freshclam and debian/usr.sbin.clamd
- debian/clamav-(daemon|freshclam).dirs: add etc/apparmor.d/force-complain
- debian/clamav-(daemon|freshclam).install: install profiles
- debian/clamav-(daemon|freshclam).preinst: create symlink for
force-complain/ on pre-feisty upgrades, upgrades where apparmor-profiles
profile is unchanged (ie non-enforcing) and upgrades where the profile
doesn't exist.
- debian/clamav-(daemon|freshclam).postrm: remove symlink in
force-complain/ on purge.
- debian/clamav-(daemon|freshclam).postinst.in: reload apparmor
- update README.Debian with note on Apparmor
clamav (0.94.dfsg-1) unstable; urgency=low
* New upstream version (closes: #497662, #497773)
- lots of new options for clamd.conf
- fixes CVEs CVE-2008-3912, CVE-2008-3913, CVE-2008-3914, and
CVE-2008-1389
* No longer supports --unzip option, so typo is gone (closes: #496276)
* Translations:
- sv (thanks Martin Bagge <email address hidden>) (closes: #491760)
clamav (0.93.3.dfsg-1) unstable; urgency=low
* New upstream version (closes: #489890, #492838, #491720)
* Fix AUTHORS symlink (closes: #490207)
* Fix freshclam's logcheck regex (closes: #486385)
clamav (0.93.1.dfsg-1.1) unstable; urgency=high
* Non-maintainer upload by the Security Team.
* This update addresses the following security issue:
- CVE-2008-2713: A crafted petite file can trigger an out-of-bound
read operation in petite.c resulting in a denial of sevice
(Closes: #490925).
clamav (0.93.1.dfsg-1) unstable; urgency=low
* New upstream version
* Move conflicts to freshclam
clamav (0.93~dfsg-4) unstable; urgency=low
* Dammit. The -f flag is there for a reason (closes: #484262)
clamav (0.93~dfsg-3) unstable; urgency=low
* Make dash happy with use of return (closes: #484170)
clamav (0.93~dfsg-2) unstable; urgency=low
* Remove dpatch dependency - we keep the code in a patch system.
* Wrap evaluations of [ $variable = true ] in calls to to_lower()
* Add is_true function to catch the 7 bajillion variants of something being
true (closes: #483874)
* Clean up old incompatible database formats. Users of 3rd party software
that also loads those old databases are now out of luck. (closes: #481864)
* Fix logcheck lines for clamav-daemon (closes: #477818)
* New translation:
- sv (thanks Martin Bagge <email address hidden>)(closes: #483765)
clamav (0.93~dfsg-1) unstable; urgency=low
* New upstream release (closes: #476450, #477278)
- Fixes failure to lock database directory
(closes: #467298, #471643, #426503)
* Fix logrotation when supervised (closes: #469196)
* Run adduser on every new install - this should work around the
xen-create-image thing of adding users but not groups (closes: #458015)
* Make clamav-milter be a little more self-documenting (closes: #477178)
-- Jamie Strandboge <email address hidden> Wed, 29 Apr 2009 17:17:14 -0500
-
clamav (0.94.dfsg.2-1ubuntu0.3~dapper1) dapper-backports; urgency=low
* Source backport for Dapper (LP: #354190, #360502)
- Drop versioning of lsb-base depends
- Revert lsb status changes from maintainer scripts
- Switch back to old style dpkg-dev Source-Version
- Drop maintainer change
- Build with GCC 3.4 instead of 4.1
- Remove leading comments from translation templates due to tool
shortfalls on Dapper
* Update existing backport with security fixes from 0.95 and 0.95.1
* Update apparmor profile with fixes from Jaunty
clamav (0.94.dfsg.2-1ubuntu0.3) intrepid-security; urgency=high
* SECURITY UPDATE: (LP: #360502)
* References
* libclamav/others.h: harden CLI_ISCONTAINED macro (bb#1552) (Denial of
service)
* Note: clamav-milter bugs such as 1499, 1522, 1524, and 1531 are not
relevant to clamav 0.94.2 and earlier versions
* Note: The code related to clamav bug 1553 was substantially rewritten in
0.95, so it is also not relevant to clamav 0.94.2 and earlier versions
* Bump CL_FLEVEL_DCONF to 0.95.1 level since relevant security patches are
applied
* Added CVE references for 0.94.dfsg.2-1ubuntu0.2 now that they've been
assigned
clamav (0.94.dfsg.2-1ubuntu0.2) intrepid-security; urgency=high
* SECURITY UPDATE (LP: #354190):
* References Clamav #1335, #1462, CVE 2008-6680, CVE 2009-1270
* libclamav/pe.c: division by zero with --detect-broken (bb#1335) (Denial of
service)
* libclamav/untar.c: infloop in tar.c (bb#1462) (Denial of Service)
* Add dconf_renable patch from 0.95 (previously backported to 0.92.2)
- Bump CL_FLEVEL_DCONF to 0.95 level since security patches are applied
-- Scott Kitterman <email address hidden> Mon, 13 Apr 2009 15:41:08 -0400
-
clamav (0.94.dfsg.2-1ubuntu0.1~dapper1) dapper-backports; urgency=low
* Source backport for Dapper (LP: #335724)
- Drop lsb status functions
- Revert status_of_proc changes from maintainer scripts
- Drop versioned depends of lsb-base
- Switch back to old style dpkg-dev Source-Version
- Drop maintainer change
- Build with GCC 4.1
- Remove leading comments from translation templates due to tool
shortfalls on Dapper
clamav (0.94.dfsg.2-1ubuntu0.1) intrepid-security; urgency=low
* SECURITY UPDATE: (LP: #304017)
- Fix recursive stack overflow in jpeg parsing code
* Other changes:
- debian/control: Recommends apparmor >= 2.1+1075-0ubuntu6 for
clamav-daemon and clamav-freshclam
- add debian/usr.bin.freshclam and debian/usr.sbin.clamd
- debian/clamav-(daemon|freshclam).dirs: add etc/apparmor.d/force-complain
- debian/clamav-(daemon|freshclam).install: install profiles
- debian/clamav-(daemon|freshclam).preinst: create symlink for
force-complain/ on pre-feisty upgrades, upgrades where apparmor-profiles
profile is unchanged (ie non-enforcing) and upgrades where the profile
doesn't exist.
- debian/clamav-(daemon|freshclam).postrm: remove symlink in
force-complain/ on purge.
- debian/clamav-(daemon|freshclam).postinst.in: reload apparmor
- update README.Debian with note on Apparmor
- Enable upstream test suite in debian/rules
clamav (0.94.dfsg.2-1) unstable; urgency=low
[ Stephen Gran ]
* New upstream version
[ Michael Meskes ]
* Removed unused debconf templates and unfuzzied all translations.
[ Michael Tautschnig ]
* Removed --unzip from clampipe script (closes: #506055)
* Moved clamav-milter specific stuff from its specific README.Debian to
clamav-global one.
* Sync start of clamav-milter with clamav-daemon when clamav-daemon is being
upgraded (closes: #309067)
* The TemporaryDirectory option has been added long ago, no need for hacks
via clamav-daemon.default anymore (closes: #253080)
clamav (0.94.dfsg.1-1ubuntu0.1) intrepid-security; urgency=low
* SECURITY UPDATE: (LP: #296704)
- Fix off-by-one heap overflow
* Other changes:
- debian/control: Recommends apparmor >= 2.1+1075-0ubuntu6 for
clamav-daemon and clamav-freshclam
- add debian/usr.bin.freshclam and debian/usr.sbin.clamd
- debian/clamav-(daemon|freshclam).dirs: add etc/apparmor.d/force-complain
- debian/clamav-(daemon|freshclam).install: install profiles
- debian/clamav-(daemon|freshclam).preinst: create symlink for
force-complain/ on pre-feisty upgrades, upgrades where apparmor-profiles
profile is unchanged (ie non-enforcing) and upgrades where the profile
doesn't exist.
- debian/clamav-(daemon|freshclam).postrm: remove symlink in
force-complain/ on purge.
- debian/clamav-(daemon|freshclam).postinst.in: reload apparmor
- update README.Debian with note on Apparmor
* Update apparmor profile for clamd to work with TCP sockets (LP: #288942)
clamav (0.94.dfsg.1-1) unstable; urgency=low
[ Stephen Gran ]
* New upstream version (closes: #505134, #502165, #501298)
* Handle new option SubmitDetectionStats in freshclam.conf
* Remove RAR from the description, since we really don't handle it anymore
* Skip 'sleep until -e socket' logic if socket is of type inet (LP #296086)
[ Michael Meskes ]
* Added myself as uploader.
* Changed watch file to account for dfsg extension.
* Do not configure temporary directory in clamd.conf anymore unless it is
already configured there.
* Added Basque debconf translation (closes: #500007)
[ Michael Tautschnig ]
* Use lsb's status_of_proc function to determine the status of the process
and return with according exit codes (closes: #486076)
* Updated Dutch debconf translation (thanks Paul Gevers <email address hidden>)
(closes: #501627)
* Changed versioned dependency of clamav-daemon to clamav-base to equals
(closes: #500416)
* Handle new option DetectionStatsCountry in freshclam.conf
* Don't trust the multilib guessing stuff, always use libdir=$prefix/lib
* Removed nowadays unused lintian overrides
* Create md5sums control file for clamav-dbg as well (thanks, lintian)
clamav (0.94.dfsg.1~rc1-0ubuntu2) intrepid; urgency=low
* update clamd profile for use with exim (LP: #288110)
clamav (0.94.dfsg.1~rc1-0ubuntu1) intrepid; urgency=low
* New upstream RC release (LP:#286176)
- Odd version numbering is to get a higher version than 0.94.dfsg without
an epoch and was coordinated with Debian
- Packaging based on current Ubuntu (0.94.dfsg-1ubuntu2) and does not use
unreleased packaging improvements in the Debian pkg-claamv Git repo to
minimize risk for Intrepid
- Handle new freshclam option SubmitDetectionStats (cherry picked from
Debian pkg-clamav Git repo)
clamav (0.94.dfsg-1ubuntu2) intrepid; urgency=low
* Update apparmor profile based on test feedback (LP: #276865)
-Thanks to Ante Karamatić for the change
clamav (0.94.dfsg-1ubuntu1) intrepid; urgency=low
* Follow ApparmorProfileMigration and force apparmor complain mode on some
upgrades (LP: #264817)
- debian/control: Recommends apparmor >= 2.1+1075-0ubuntu6 for
clamav-daemon and clamav-freshclam
- add debian/usr.bin.freshclam and debian/usr.sbin.clamd
- debian/clamav-(daemon|freshclam).dirs: add etc/apparmor.d/force-complain
- debian/clamav-(daemon|freshclam).install: install profiles
- debian/clamav-(daemon|freshclam).preinst: create symlink for
force-complain/ on pre-feisty upgrades, upgrades where apparmor-profiles
profile is unchanged (ie non-enforcing) and upgrades where the profile
doesn't exist.
- debian/clamav-(daemon|freshclam).postrm: remove symlink in
force-complain/ on purge.
- debian/clamav-(daemon|freshclam).postinst.in: reload apparmor
- update README.Debian with note on Apparmor
clamav (0.94.dfsg-1) unstable; urgency=low
* New upstream version (closes: #497662, #497773)
- lots of new options for clamd.conf
- fixes CVEs CVE-2008-3912, CVE-2008-3913, CVE-2008-3914, and
CVE-2008-1389
* No longer supports --unzip option, so typo is gone (closes: #496276)
* Translations:
- sv (thanks Martin Bagge <email address hidden>) (closes: #491760)
clamav (0.93.3.dfsg-1) unstable; urgency=low
* New upstream version (closes: #489890, #492838, #491720)
* Fix AUTHORS symlink (closes: #490207)
* Fix freshclam's logcheck regex (closes: #486385)
clamav (0.93.1.dfsg-1.1) unstable; urgency=high
* Non-maintainer upload by the Security Team.
* This update addresses the following security issue:
- CVE-2008-2713: A crafted petite file can trigger an out-of-bound
read operation in petite.c resulting in a denial of sevice
(Closes: #490925).
clamav (0.93.1.dfsg-1) unstable; urgency=low
* New upstream version
* Move conflicts to freshclam
clamav (0.93~dfsg-4) unstable; urgency=low
* Dammit. The -f flag is there for a reason (closes: #484262)
clamav (0.93~dfsg-3) unstable; urgency=low
* Make dash happy with use of return (closes: #484170)
clamav (0.93~dfsg-2) unstable; urgency=low
* Remove dpatch dependency - we keep the code in a patch system.
* Wrap evaluations of [ $variable = true ] in calls to to_lower()
* Add is_true function to catch the 7 bajillion variants of something being
true (closes: #483874)
* Clean up old incompatible database formats. Users of 3rd party software
that also loads those old databases are now out of luck. (closes: #481864)
* Fix logcheck lines for clamav-daemon (closes: #477818)
* New translation:
- sv (thanks Martin Bagge <email address hidden>)(closes: #483765)
clamav (0.93~dfsg-1) unstable; urgency=low
* New upstream release (closes: #476450, #477278)
- Fixes failure to lock database directory
(closes: #467298, #471643, #426503)
* Fix logrotation when supervised (closes: #469196)
* Run adduser on every new install - this should work around the
xen-create-image thing of adding users but not groups (closes: #458015)
* Make clamav-milter be a little more self-documenting (closes: #477178)
-- Scott Kitterman <email address hidden> Fri, 27 Feb 2009 23:36:24 -0500
-
clamav (0.92.1~dfsg2-1.1~dapper3.3) dapper-security; urgency=low
[ Leonel Nunez ]
* SECURITY UPDATE:
* [CVE-2008-5314]: remote attack by sending a specially crafted JPEG
file
libclamav/special.c, libclamav/special.h, libclamav/scanners.c
* [CVE-2008-3912]: libclamav/mbox.c, libclamav/message.c:
out-of-memory null dereferences
* [CVE-2008-3914]: libclamav/htmlnorm.c, libclamav/others.c,
libclamav/sis.c: fd leaks
* [CVE-2008-3913]: freshclam/manager.c: memory leaks
* added 29_CVE-2008-3912.dpatch 30_CVE-2008-3913.dpatch
32_cli_check_jpeg_exploit.dpatch 31_CVE-2008-3914.dpatch
* References: LP #271546, #304017
[ Scott Kitterman ]
* SECURITY UPDATE: re-enable modules disabled due to resolved security
deficiencies:
* References: Clamav svn commit 4550, LP #317923
-- Scott Kitterman <email address hidden> Sun, 18 Jan 2009 00:13:25 -0500
-
clamav (0.92.1~dfsg2-1.1~dapper3.2) dapper-security; urgency=low
* SECURITY UPDATE: fix off-by-one heap overflow
* References : LP #296704, Debian Bug #505134
* Updated 28_of-by-1.dpatch
- libclamav/vba_extract.c
-- Leonel Nunez <email address hidden> Tue, 11 Nov 2008 06:56:42 -0700
-
clamav (0.92.1~dfsg2-1.1~dapper3.1) dapper-security; urgency=low
* SECURITY UPDATE: fix possible DoS due to invalid memory access
* References
CVE-2008-2713
Debian Bug #490925
* Updated 27_petite.c.dpatch (LP: #249316)
- libclamav/petite.c: fix one more spot
-- Michael Casadevall <email address hidden> Thu, 17 Jul 2008 06:34:01 +0000
-
clamav (0.92.1~dfsg2-1.1~dapper3) dapper-security; urgency=low
* SECURITY UPDATE: fix possible invalid memory access
* added 27_petite.c.dpatch: (LP: #238575)
- libclamav/petite.c: fix possible invalid memory access
* References
CVE-2008-2713
-- Leonel Nunez <email address hidden> Mon, 9 Jun 2008 14:27:04 -0600
-
clamav (0.92.1~dfsg2-1.1~dapper2) dapper-security; urgency=low
* no change rebuild for -security
-- Jamie Strandboge <email address hidden> Mon, 02 Jun 2008 11:59:38 -0400
-
clamav (0.92.1~dfsg2-1.1~dapper1) dapper-backports; urgency=low
* Source backport for dapper-backports. Changes:
- Change ${binary:Version} and ${source:Version} depends to
{Source-Version} in debian/control and drop dpkg-dev
dependency to (>= 1.13.11) as a result
- Add CC=gcc-3.4 to configure options in debian/rules and build-dep for
gcc-3.4 to avoid GCC bug 28045
- Remove leading comments from debian/clamav-base.templates and
debian/clamav-freshclam.templates to work around Dapper tool chain
problem (inserts extra line in the template).
clamav (0.92.1~dfsg2-1.1) unstable; urgency=high
* Non-maintainer upload by the Security Team.
* This update addresses the following security issue:
- CVE-2008-1833: heap-based buffer overflow allows remote
attackers to execute arbitrary code via a crafted WWPack compressed
PE binary (Closes: #476694).
-- Scott Kitterman <email address hidden> Sat, 19 Apr 2008 11:28:49 -0400
-
clamav (0.92.1~dfsg2-1~dapper1) dapper-backports; urgency=high
* Source backport for dapper-backports. Changes:
- Change ${binary:Version} and ${source:Version} depends to
{Source-Version} in debian/control and drop dpkg-dev
dependency to (>= 1.13.11) as a result
- Add CC=gcc-3.4 to configure options in debian/rules and build-dep for
gcc-3.4 to avoid GCC bug 28045
- Remove leading comments from debian/clamav-base.templates and
debian/clamav-freshclam.templates to work around Dapper tool chain
problem (inserts extra line in the template).
clamav (0.92.1~dfsg2-1) unstable; urgency=high
* libclamav/pe.c: possible integer overflow in wwpack
* [CVE-2008-1100]: libclamav/pe.c: possible integer overflow in upack
* [CVE-2008-1387]: libclamav/spin.c: possible integer overflow
* libclamav/unarj.c: DoS in unarj
clamav (0.92.1~dfsg2-0.1) unstable; urgency=low
* Non-maintainer upload.
* Remove non-free unrar files and repack orig.tar.gz (Closes: #470073)
clamav (0.92.1~dfsg-1) unstable; urgency=low
* New upstream bugfix release
- [2007-6595]: libclamav/others.c: symlink vulnerability
cli_gentempfd now calls open with O_EXCL (closes: #458532)
- [CVE-2008-0318]: libclamav/pe.c: possible integer overflow
- libclamav/mew.c: possible heap corruption
* Add a note to NEWS.Debian about unrar support being dropped
(closes: #465203)
* clamav-milter: off-by-one programming error in pingServer
(closes: #458204)
* Copyright now complete (thanks Scott Kitterman <email address hidden>)
(closes: #456770)
* Attempt to work around clamav-milter not bothering to check if another
instance is running on startup (reported as LP bug 179169)
clamav (0.92~dfsg-3) unstable; urgency=low
* Copyright clarifications (closes: #456770) (thanks
Scott Kitterman <email address hidden>)
-- Scott Kitterman <email address hidden> Thu, 17 Apr 2008 23:45:03 -0400
-
clamav (0.92~dfsg-2~dapper1ubuntu0.2) dapper-security; urgency=low
* SECURITY UPDATE: Possible heap corruption
* Added 28_mew.c.CVE-2008-0728.dpatch
* References: CVE-2008-0728 ( LP: #213500 )
-- Leonel Nunez <email address hidden> Tue, 8 Apr 2008 08:34:30 -0600
-
clamav (0.92~dfsg-2~dapper1ubuntu0.1) dapper-security; urgency=low
* SECURITY UPDATE: possible integer overflow and tempfile symlink
vulnerability
* Added : 27_others.c.CVE-2007-6595.dpatch Fixes Tempfile symlink
vulnerability
* Added 26_pe.c.CVE-2008-0318.dpatch: Fixes posible integer overflow
* References CVE-2007-6595 CVE-2008-0318 (LP: 191150)
-- Leonel Nunez <email address hidden> Mon, 11 Feb 2008 22:52:13 -0700
-
clamav (0.92~dfsg-2~dapper1) dapper-backports; urgency=low
* Source backport for dapper-backports. Changes:
- Change ${binary:Version} and ${source:Version} depends to
{Source-Version} in debian/control and drop dpkg-dev
dependency to (>= 1.13.11) as a result
- Add CC=gcc-3.4 to configure options in debian/rules and build-dep for
gcc-3.4 to avoid GCC bug 28045
- Remove leading comments from debian/clamav-base.templates and
debian/clamav-freshclam.templates to work around Dapper tool chain
problem (inserts extra line in the template.
-- Scott Kitterman <email address hidden> Mon, 21 Jan 2008 11:36:20 -0500
-
clamav (0.88.7-1ubuntu1~dapper) dapper-backports; urgency=low
* Drop build-dep for dpkg-dev to 1.13.11 for Dapper and associate
debian/control changes
-- Scott Kitterman <email address hidden> Thu, 12 Jul 2007 08:32:01 -0400
-
clamav (0.88.4-1ubuntu1~dapper1) dapper-backports; urgency=low
* Automated backport upload; no source changes.
-- John Dong <email address hidden> Wed, 13 Sep 2006 05:02:33 +0100
-
clamav (0.88.2-1ubuntu1.3) dapper-security; urgency=low
* SECURITY UPDATE: Fix a MIME decode bypass vulnerability.
* Add 'debian/patches/35_message_c_mimedecode_bypass.dpatch'
for the fix, taken from the difference of liblcamav/message.c
between this and the fixed version (0.88.7).
* References:
CVE 2006-6406.
* Also disable the use of podebconf in debian rules, since it
mangles debian/control and updates the translations, which is
not suited for a security update.
-- Stefan Potyra <email address hidden> Sat, 6 Jan 2007 05:35:31 +0000
-
clamav (0.88.2-1ubuntu1.2) dapper-security; urgency=low
* SECURITY UPDATE: multiple denial of service attacks in file processors.
* Add 'debian/patches/30_pe_chm_overflows.dpatch' to close overflows.
Patch from Debian stable (Closes Malone #66510).
* References
CVE-2006-4182, CVE-2006-5295
-- Kees Cook <email address hidden> Mon, 23 Oct 2006 12:28:30 -0700
-
clamav (0.88.2-1ubuntu1.1) dapper-security; urgency=low
* Add 'debian/patches/20_cve-2006-4018.dpatch'. Patch from upstream
version 0.88.4. Fixes heap overflow in UPX unpacker, which could
cause denial of service or remote code execution.
* CVE-2006-4018
-- Kees Cook <email address hidden> Sun, 17 Sep 2006 21:50:03 -0700
-
clamav (0.88.2-1ubuntu1) dapper; urgency=low
* Merged new (debian) upstream
* Re-Added fixed from Martin Pitt (0.88.1-1ubuntu1)
and Chuck Short (0.88.1-1ubuntu2)
clamav (0.88.2-1) unstable; urgency=high
* New upstream version
- CVE-2006-1989
freshclam/manager.c: lack of proper check for the size of header data
* Typo fix in debian/control (closes: #363201)
* Fix cut-n-paste error in clamav-config.1 (closes: #364563)
* Removed dpatches merged upstream
* Upgrade to Standards Version 3.7.0 (no changes)
* For security team: 0.88.1-1 fixed the following CVE's:
CVE-2006-1614 (libclamav/pe.c,libclamav/others.h)
CVE-2006-1615 (shared/ouput.c)
CVE-2006-1630 (libclamav/others.c)
These CVE Ids were unavailable at upload time.
-- Stephan Hermann <email address hidden> Sun, 14 May 2006 11:45:42 +0200
-
clamav (0.88.1-1ubuntu2) dapper; urgency=low
* debian/clamav-daemon.init.
+ Fixed init script. (Closes: Malone #39263)
-- Chuck Short <email address hidden> Thu, 4 May 2006 16:10:19 -0400
-
clamav (0.88.1-1ubuntu1) dapper; urgency=low
* Synchronize to Debian to get new upstream microrelease (UVF exception
approved by Daniel Holbach). This fixes the following vulnerabilities:
- CVE-2006-1614: integer overflow in the PE header parser
- CVE-2006-1615: format string vulnerabilities in logging code
- CVE-2006-1630: DoS due to invalid memory access in cli_bitset_set()
* debian/clamav-base.init-stub: Protect 'x && y' with '|| true' to not break
init script if it's run under set -e.
clamav (0.88.1-1) unstable; urgency=low
* New upstream release
- Fixes segfault in bitset routine (closes: #360159)
- Remerge patches (17_freshclam.conf_typos removed)
* Rebuilding should fix libcurl linkage (closes: #355509)
* Path to example conf file in clamav-daemon.init was wrong
* New translation:
- cs: (thanks Miroslav Kure <email address hidden>)(closes: #356547)
clamav (0.88-4) unstable; urgency=low
* Only use ucf, userdel, and groupdel conditionally in clamav-base postrm
(closes: #351198)
* Only use ucf conditionally in clamav-freshclam postrm (closes: #351225)
* Manpage typo fixes (closes: #351005, #351006, #351007, #351008)
clamav (0.88-3) unstable; urgency=low
* Reupload to try to triggter a rebuild with fixed debhelper
-- Martin Pitt <email address hidden> Tue, 11 Apr 2006 10:27:47 +0200
-
clamav (0.88-2ubuntu1) dapper; urgency=low
* Ship a new file, /etc/clamav/clamav-base.init, which is a stub
containing common setup functions required for each of the other
three init scripts. Currently, all it does is create the /var/run
directory that we need if /var/run is on tmpfs.
* Make all three of our init scripts source the above file.
-- Adam Conrad <email address hidden> Fri, 24 Feb 2006 19:07:26 +1100
-
clamav (0.88-2) unstable; urgency=low
* Actually rebuild ./configure with the magic to make pass_all work
-- Stephen Gran <email address hidden> Tue, 10 Jan 2006 02:55:18 +0000
-
clamav (0.87.1-1) unstable; urgency=low
* New upstream release
- Upstream fix for possible infinite loop
libclamav/tnef.c: IDEF1169]
- Upstream fix for possible infinite loop
libclamav/mspack/cabd.c: IDEF1180]
- Upstream fix for buffer size calculation
libclamav/fsg.c: ZDI-CAN-004]
- Upstream fix for possible infinite loop
libclamav/others.c,h, libclamav/ole2_extract.c: CAN-2005-3239]
(closes: #333566)
- Upstream fix for boundary checks
libclamav/petite.c]
- Upstream fix to scan attachments that have no file names
libclamav/mbox.c]
* Some more lsb changes to init scripts
* New Translations:
- it (Thanks Cristian Rigamonti <email address hidden>)(closes: #330240)
- sv (Thanks Daniel Nylander <email address hidden>)(closes: #333400)
* Move to dpatch for patch management, and add build-dependencies (dpatch
and cpp)
* Apply patch for bus error on sparc in zzip routines (closes: #322396)
-- Stephen Gran <email address hidden> Thu, 3 Nov 2005 23:21:30 +0000
