[ubuntu/xenial-proposed] clamav 0.99+dfsg-1ubuntu1 (Accepted)
Louis Bouchard
louis.bouchard at ubuntu.com
Tue Feb 16 09:40:16 UTC 2016
clamav (0.99+dfsg-1ubuntu1) xenial; urgency=medium
Merge from Debian. Remaining changes (LP: #1540491) :
* Explicitly build using llvm-3.6.
* Ignore test results on armhf.
* debian/rules: Restore --with-llvm-linking=dynamic to avoid underlinkage
causing FTBS
* d/p/llvm-don-t-use-system-libs.patch:
Do not use system libraries for linking : We are not linking the .a
files so we don't care about the libs llvm links against (like -ledit)
Dropping this patch will cause FTBS on Ubuntu with unresolvable -ledit
Dropped changes :
* debian/control : libsystemd-dev no longer renamed since it has been
changed upstream.
* d/p/0005-libclamav-use-libmspack.patch : Now part of upstream release.
* d/p/0007-fix-ssize_t-size_t-off_t-printf-modifier.patch : Now part of
upstream release to the exception of the sigtool/sigtool.c cast
identified previously.
d/p/0008-hardcode-LLVM-linker-flag-because-llvm-config-return.patch :
Now part of upstream release.
d/p/0012-remove-AC_CONFIG_SRCDIR-llvm-configure-from-libclama.patch
* d/clamav-daemon.postinst.in: Fix typo which causes a crash while
installing this package over any previous version (upgrading). Fixed
upstream.
* Explicitly build using llvm-3.5. Now build using llvm-3.6.
clamav (0.99+dfsg-1) unstable; urgency=medium
* Import final release of 0.99
* suggest libclamunrar7 instead of libclamunrar6
clamav (0.99~rc2+dfsg-2) experimental; urgency=medium
* Drop LLVM usage on powerpc (it is broken since the v3.6 switch).
clamav (0.99~rc2+dfsg-1) experimental; urgency=medium
[ Andreas Cadhalpun ]
* Import first upstream release candidate for 0.99.
* Drop patches included upstream:
- Avoid-emitting-incremental-progress-messages.patch
- bb-10731-Allow-to-specificy-a-group-for-the-socket.patch
- clamav-milter-add-additinal-SMFIF_-flags.patch
- remove-unnecessary-harmful-flags-from-libclamav.pc.patch
- hardcode-LLVM-linker-flag.patch
* Disable Large File Support because it is incompatible with fts.h, which
is required by the new upstream release.
* Drop patches needing LFS:
- libclamav-use-libmspack.patch
- fix-ssize_t-size_t-off_t-printf-modifier.patch
* Disable valgrind in the test suite again. It is too flaky.
* Print all new options in one build attempt.
* Preserve new OnAccessMountPath, OnAccessDisableDDD and OnAccessPrevention
options in clamd.conf.
* Rename libclamav6 to libclamav7 and update symbols file.
* Add -Wl,--as-needed to LDFLAGS to avoid useless dependencies.
* Remove unused lintian overrides.
* Update debian/copyright.
[ Sebastian Andrzej Siewior ]
* add a LFS safe fts() implementation from glibc
* bring back libmspack related patches (libclamav-use-libmspack.patch +
fix-ssize_t-size_t-off_t-printf-modifier.patch) and -D_FILE_OFFSET_BITS=64
* fix a crash in clamdscan if file is passed via fd
* Import second upstream release candidate for 0.99.
clamav (0.99~beta1+dfsg-1) experimental; urgency=medium
* use T=<timeout> so we can drop
unit_tests-increment-test-timeout-from-40secs-to-5mi from the patch queue.
* import new beta from upstream
* depend on libpcre3-dev, required for YARA support
* add new PCRE related options postist script for clamd
* record new symbols in libclamav6.symbols
* enable valgrind in the test suite and see how well it works across all
architecures.
* Update debian/copyright.
clamav (0.98.7+dfsg-5) unstable; urgency=medium
[ Andreas Cadhalpun ]
* Drop patch numbers, because they cause too much diff noise.
* Fix use-pkg-config-to-determine-CHECK_LIBS.patch so that the tests
actually get run again.
[ Sebastian Andrzej Siewior ]
* Drop LLVM usage on powerpc (it is broken since the v3.6 switch).
clamav (0.98.7+dfsg-4) unstable; urgency=medium
* Add patch to support LLVM 3.6.
* debian/clamav-milter.postinst.in: Update to reflect the change from
examples/clamav-milter.conf to examples/clamav-milter.conf.sample.
Thanks to Christian Schrötter. (Closes: #795190)
* Use 'grep -a' instead of grep in maintainer scripts. (Closes: #799808)
* Restore the SE Linux context when creating /var/lib/ucf/cache.
Thanks to Russell Coker for the patch. (Closes: #802311)
* Adapt debian/watch to new download location www.clamav.net/download.html.
* Add patch to use pkg-config to determine CHECK_LIBS.
The linker flags for check changed making the hardcoded flags useless.
clamav (0.98.7+dfsg-3) unstable; urgency=medium
[ Sebastian Andrzej Siewior ]
* use T=<timeout> so we can drop
unit_tests-increment-test-timeout-from-40secs-to-5mi from the patch queue.
* add 0013-tfm-fix-compile-errors.patch and
0014-tfm-duct-tape-misscompile-on-armhf.patch to get it built on armhf
with gcc-5.
[ Andreas Cadhalpun ]
* Prevent the logrotate scripts from aborting if reloading/restarting fails.
Thanks to John Zaitseff. (Closes: #788652)
clamav (0.98.7+dfsg-2) unstable; urgency=medium
[ Andreas Cadhalpun ]
* Increase MaxRecursion to the upstream default of 16. (Closes: #787249)
* Bump the version for the PidFile removal check in the clamav-daemon and
clamav-freshclam postinst scripts (Closes: #767353)
* Add database existence check also to clamav-daemon.socket.
This works around systemd bug #775458. (Closes: #775112)
[ Sebastian Andrzej Siewior ]
* also remove debian/clamav-freshclam.prerm clean
clamav (0.98.7+dfsg-1) unstable; urgency=high
[ Andreas Cadhalpun ]
* Use SocketUser, SocketGroup and RemoveOnStop systemd socket options
instead of using ExecStartPost and ExecStopPost for that.
* Respect clamav-daemon's LocalSocket* options with the systemd unit by
extending the clamav-daemon.socket file appropriately, when running
dpkg-reconfigure clamav-daemon. (Closes: #783720)
* Disable this extendend configuration, when handling the configuration
file with debconf is disabled.
* Disable clamav-daemon.socket in prerm script.
[ Sebastian Andrzej Siewior ]
* Import new upstream:
- Improvements to PDF processing: decryption, escape sequence
handling, and file property collection.
- Scanning/analysis of additional Microsoft Office 2003 XML format.
- Fix infinite loop condition on crafted y0da cryptor file. Identified
and patch suggested by Sebastian Andrzej Siewior. CVE-2015-2221.
- Fix crash on crafted petite packed file. Reported and patch
supplied by Sebastian Andrzej Siewior. CVE-2015-2222.
- Fix false negatives on files within iso9660 containers. This issue
was reported by Minzhuan Gong.
- Fix a couple crashes on crafted upack packed file. Identified and
patches supplied by Sebastian Andrzej Siewior.
- Fix a crash during algorithmic detection on crafted PE file.
Identified and patch supplied by Sebastian Andrzej Siewior.
- Fix an infinite loop condition on a crafted "xz" archive file.
This was reported by Dimitri Kirchner and Goulven Guiheux.
CVE-2015-2668.
- Fix compilation error after ./configure --disable-pthreads.
Reported and fix suggested by John E. Krokes.
- Apply upstream patch for possible heap overflow in Henry Spencer's
regex library. CVE-2015-2305 (Closes: #778406).
- Fix crash in upx decoder with crafted file. Discovered and patch
supplied by Sebastian Andrzej Siewior. CVE-2015-2170.
- Fix segfault scanning certain HTML files. Reported with sample by
Kai Risku.
- Improve detections within xar/pkg files.
* update GPG key used to verify releases to get uscan/get_orig.sh working
again.
* update symbol version for cl_retflevel due to CL_FLEVEL change.
Date: Mon, 15 Feb 2016 17:32:43 +0100
Changed-By: Louis Bouchard <louis.bouchard at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/clamav/0.99+dfsg-1ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Mon, 15 Feb 2016 17:32:43 +0100
Source: clamav
Binary: clamav-base clamav-docs clamav-dbg clamav libclamav-dev libclamav7 clamav-daemon clamdscan clamav-testfiles clamav-freshclam clamav-milter
Architecture: source
Version: 0.99+dfsg-1ubuntu1
Distribution: xenial
Urgency: high
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Louis Bouchard <louis.bouchard at ubuntu.com>
Description:
clamav - anti-virus utility for Unix - command-line interface
clamav-base - anti-virus utility for Unix - base package
clamav-daemon - anti-virus utility for Unix - scanner daemon
clamav-dbg - debug symbols for ClamAV
clamav-docs - anti-virus utility for Unix - documentation
clamav-freshclam - anti-virus utility for Unix - virus database update utility
clamav-milter - anti-virus utility for Unix - sendmail integration
clamav-testfiles - anti-virus utility for Unix - test files
clamdscan - anti-virus utility for Unix - scanner client
libclamav-dev - anti-virus utility for Unix - development files
libclamav7 - anti-virus utility for Unix - library
Closes: 767353 775112 778406 783720 787249 788652 795190 799808 802311
Launchpad-Bugs-Fixed: 1540491
Changes:
clamav (0.99+dfsg-1ubuntu1) xenial; urgency=medium
.
Merge from Debian. Remaining changes (LP: #1540491) :
* Explicitly build using llvm-3.6.
* Ignore test results on armhf.
* debian/rules: Restore --with-llvm-linking=dynamic to avoid underlinkage
causing FTBS
* d/p/llvm-don-t-use-system-libs.patch:
Do not use system libraries for linking : We are not linking the .a
files so we don't care about the libs llvm links against (like -ledit)
Dropping this patch will cause FTBS on Ubuntu with unresolvable -ledit
Dropped changes :
* debian/control : libsystemd-dev no longer renamed since it has been
changed upstream.
* d/p/0005-libclamav-use-libmspack.patch : Now part of upstream release.
* d/p/0007-fix-ssize_t-size_t-off_t-printf-modifier.patch : Now part of
upstream release to the exception of the sigtool/sigtool.c cast
identified previously.
d/p/0008-hardcode-LLVM-linker-flag-because-llvm-config-return.patch :
Now part of upstream release.
d/p/0012-remove-AC_CONFIG_SRCDIR-llvm-configure-from-libclama.patch
* d/clamav-daemon.postinst.in: Fix typo which causes a crash while
installing this package over any previous version (upgrading). Fixed
upstream.
* Explicitly build using llvm-3.5. Now build using llvm-3.6.
.
clamav (0.99+dfsg-1) unstable; urgency=medium
.
* Import final release of 0.99
* suggest libclamunrar7 instead of libclamunrar6
.
clamav (0.99~rc2+dfsg-2) experimental; urgency=medium
.
* Drop LLVM usage on powerpc (it is broken since the v3.6 switch).
.
clamav (0.99~rc2+dfsg-1) experimental; urgency=medium
.
[ Andreas Cadhalpun ]
* Import first upstream release candidate for 0.99.
* Drop patches included upstream:
- Avoid-emitting-incremental-progress-messages.patch
- bb-10731-Allow-to-specificy-a-group-for-the-socket.patch
- clamav-milter-add-additinal-SMFIF_-flags.patch
- remove-unnecessary-harmful-flags-from-libclamav.pc.patch
- hardcode-LLVM-linker-flag.patch
* Disable Large File Support because it is incompatible with fts.h, which
is required by the new upstream release.
* Drop patches needing LFS:
- libclamav-use-libmspack.patch
- fix-ssize_t-size_t-off_t-printf-modifier.patch
* Disable valgrind in the test suite again. It is too flaky.
* Print all new options in one build attempt.
* Preserve new OnAccessMountPath, OnAccessDisableDDD and OnAccessPrevention
options in clamd.conf.
* Rename libclamav6 to libclamav7 and update symbols file.
* Add -Wl,--as-needed to LDFLAGS to avoid useless dependencies.
* Remove unused lintian overrides.
* Update debian/copyright.
.
[ Sebastian Andrzej Siewior ]
* add a LFS safe fts() implementation from glibc
* bring back libmspack related patches (libclamav-use-libmspack.patch +
fix-ssize_t-size_t-off_t-printf-modifier.patch) and -D_FILE_OFFSET_BITS=64
* fix a crash in clamdscan if file is passed via fd
* Import second upstream release candidate for 0.99.
.
clamav (0.99~beta1+dfsg-1) experimental; urgency=medium
.
* use T=<timeout> so we can drop
unit_tests-increment-test-timeout-from-40secs-to-5mi from the patch queue.
* import new beta from upstream
* depend on libpcre3-dev, required for YARA support
* add new PCRE related options postist script for clamd
* record new symbols in libclamav6.symbols
* enable valgrind in the test suite and see how well it works across all
architecures.
* Update debian/copyright.
.
clamav (0.98.7+dfsg-5) unstable; urgency=medium
.
[ Andreas Cadhalpun ]
* Drop patch numbers, because they cause too much diff noise.
* Fix use-pkg-config-to-determine-CHECK_LIBS.patch so that the tests
actually get run again.
.
[ Sebastian Andrzej Siewior ]
* Drop LLVM usage on powerpc (it is broken since the v3.6 switch).
.
clamav (0.98.7+dfsg-4) unstable; urgency=medium
.
* Add patch to support LLVM 3.6.
* debian/clamav-milter.postinst.in: Update to reflect the change from
examples/clamav-milter.conf to examples/clamav-milter.conf.sample.
Thanks to Christian Schrötter. (Closes: #795190)
* Use 'grep -a' instead of grep in maintainer scripts. (Closes: #799808)
* Restore the SE Linux context when creating /var/lib/ucf/cache.
Thanks to Russell Coker for the patch. (Closes: #802311)
* Adapt debian/watch to new download location www.clamav.net/download.html.
* Add patch to use pkg-config to determine CHECK_LIBS.
The linker flags for check changed making the hardcoded flags useless.
.
clamav (0.98.7+dfsg-3) unstable; urgency=medium
.
[ Sebastian Andrzej Siewior ]
* use T=<timeout> so we can drop
unit_tests-increment-test-timeout-from-40secs-to-5mi from the patch queue.
* add 0013-tfm-fix-compile-errors.patch and
0014-tfm-duct-tape-misscompile-on-armhf.patch to get it built on armhf
with gcc-5.
.
[ Andreas Cadhalpun ]
* Prevent the logrotate scripts from aborting if reloading/restarting fails.
Thanks to John Zaitseff. (Closes: #788652)
.
clamav (0.98.7+dfsg-2) unstable; urgency=medium
.
[ Andreas Cadhalpun ]
* Increase MaxRecursion to the upstream default of 16. (Closes: #787249)
* Bump the version for the PidFile removal check in the clamav-daemon and
clamav-freshclam postinst scripts (Closes: #767353)
* Add database existence check also to clamav-daemon.socket.
This works around systemd bug #775458. (Closes: #775112)
.
[ Sebastian Andrzej Siewior ]
* also remove debian/clamav-freshclam.prerm clean
.
clamav (0.98.7+dfsg-1) unstable; urgency=high
.
[ Andreas Cadhalpun ]
* Use SocketUser, SocketGroup and RemoveOnStop systemd socket options
instead of using ExecStartPost and ExecStopPost for that.
* Respect clamav-daemon's LocalSocket* options with the systemd unit by
extending the clamav-daemon.socket file appropriately, when running
dpkg-reconfigure clamav-daemon. (Closes: #783720)
* Disable this extendend configuration, when handling the configuration
file with debconf is disabled.
* Disable clamav-daemon.socket in prerm script.
.
[ Sebastian Andrzej Siewior ]
* Import new upstream:
- Improvements to PDF processing: decryption, escape sequence
handling, and file property collection.
- Scanning/analysis of additional Microsoft Office 2003 XML format.
- Fix infinite loop condition on crafted y0da cryptor file. Identified
and patch suggested by Sebastian Andrzej Siewior. CVE-2015-2221.
- Fix crash on crafted petite packed file. Reported and patch
supplied by Sebastian Andrzej Siewior. CVE-2015-2222.
- Fix false negatives on files within iso9660 containers. This issue
was reported by Minzhuan Gong.
- Fix a couple crashes on crafted upack packed file. Identified and
patches supplied by Sebastian Andrzej Siewior.
- Fix a crash during algorithmic detection on crafted PE file.
Identified and patch supplied by Sebastian Andrzej Siewior.
- Fix an infinite loop condition on a crafted "xz" archive file.
This was reported by Dimitri Kirchner and Goulven Guiheux.
CVE-2015-2668.
- Fix compilation error after ./configure --disable-pthreads.
Reported and fix suggested by John E. Krokes.
- Apply upstream patch for possible heap overflow in Henry Spencer's
regex library. CVE-2015-2305 (Closes: #778406).
- Fix crash in upx decoder with crafted file. Discovered and patch
supplied by Sebastian Andrzej Siewior. CVE-2015-2170.
- Fix segfault scanning certain HTML files. Reported with sample by
Kai Risku.
- Improve detections within xar/pkg files.
* update GPG key used to verify releases to get uscan/get_orig.sh working
again.
* update symbol version for cl_retflevel due to CL_FLEVEL change.
Checksums-Sha1:
b4e1248fb700d16ee2eebfd5af31c39f0452b648 3136 clamav_0.99+dfsg-1ubuntu1.dsc
ba34853b16e4795c580c86549830a8b21d8b4531 8723548 clamav_0.99+dfsg.orig.tar.xz
85ad05e9d34da255200c3d6a86c3910d986855ed 259188 clamav_0.99+dfsg-1ubuntu1.debian.tar.xz
Checksums-Sha256:
2118aefbd76b90da91f90cbd7f85ca1d2728cfa5e26483e0f4e7b5bca0b486e9 3136 clamav_0.99+dfsg-1ubuntu1.dsc
ffa87c6fbfe617209c6f7c4a1bdf7b3513b47ba6e3d7d4ab5622a98b0fffc03a 8723548 clamav_0.99+dfsg.orig.tar.xz
4590b4ab3a5c49b7a07fa9b1f98088350c80c8dc296aea6c6382d7eb9dbd1239 259188 clamav_0.99+dfsg-1ubuntu1.debian.tar.xz
Files:
ded61bfbc773e4965c27a0d4fe91cfb1 3136 utils optional clamav_0.99+dfsg-1ubuntu1.dsc
5002962d9e9c8c4ff04606b8664879ab 8723548 utils optional clamav_0.99+dfsg.orig.tar.xz
36bb1b094015dfc99fbfbfde9758691c 259188 utils optional clamav_0.99+dfsg-1ubuntu1.debian.tar.xz
Original-Maintainer: ClamAV Team <pkg-clamav-devel at lists.alioth.debian.org>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=jthQ
-----END PGP SIGNATURE-----
More information about the Xenial-changes
mailing list