openSUSE Build Service

Reinhard Max (rmax) committed almost 6 years ago (revision 174)

Remove clutter

Reinhard Max (rmax) committed almost 6 years ago (revision 173)

- bsc#1101654: Disable YARA support for licensing reasons
  (clamav-disable-yara.patch).
- Do not ignore errors from useradd et al.

Reinhard Max (rmax) committed almost 6 years ago (revision 172)

- Disable YARA support for licensing reasons (bsc#1101654).

Reinhard Max (rmax) accepted request 625316 from

Martin Pluskal (pluskalm) almost 6 years ago (revision 171)

- Update dendencies (pcre2, libjson-c and systemd)
- Modernise spec file with spec-cleaner

Andreas Stieger (AndreasStieger) committed almost 6 years ago (revision 170)

bugzilla refs

Andreas Stieger (AndreasStieger) accepted request 623475 from

Andreas Stieger (AndreasStieger) almost 6 years ago (revision 169)

- fix library-without-ldconfig warnings on libclammspack

Andreas Stieger (AndreasStieger) accepted request 622505 from

Andrey Karepin (EGDFree) almost 6 years ago (revision 168)

- Update to version 0.100.1
  * CVE-2017-16932: Vulnerability in libxml2 dependency (affects
    ClamAV on Windows only).
  * CVE-2018-0360: HWP integer overflow, infinite loop
    vulnerability. Reported by Secunia Research at Flexera.
  * CVE-2018-0361: ClamAV PDF object length check, unreasonably
    long time to parse relatively small file. Reported by aCaB.
  * Buffer over-read in unRAR code due to missing max value checks
    in table initialization. Reported by Rui Reis.
  * Libmspack heap buffer over-read in CHM parser. Reported by
    Hanno Böck.
  * Buffer length checks when reading integers from non-NULL
    terminated strings.
  * Buffer length tracking when reading strings from dictionary
    objects.
  * HTTPS support for clamsubmit.
  * Fix for DNS resolution for users on IPv4-only machines where
    IPv6 is not available or is link-local only. Patch provided by
    Guilherme Benkenstein.

buildservice-autocommit accepted request 601641 from

Reinhard Max (rmax) about 6 years ago (revision 167)

baserev update by copy to link target

Reinhard Max (rmax) committed about 6 years ago (revision 166)

- Turn off LLVM for now, because the bundled copy is deprecated,
  the versions we have are too new and the performance gain over
  the  byte code interpreter are negligable, according to upstream.
- Put libclammspack0 into its own subpackage to follow the letter
  of the shlib packaging policy, even though it really makes no
  sense here.

Reinhard Max (rmax) committed about 6 years ago (revision 165)

- Move pkgconfig stuff from main to devel package.
- Re-introduce removed options as deprecated, so that clamd and
  freshclam don't exit on startup with an old config file
  (clamav-obsolete-config.patch).

Reinhard Max (rmax) committed about 6 years ago (revision 164)

Reinhard Max (rmax) committed about 6 years ago (revision 163)

- On update, remove obsolete option SubmitDetectionStats from
  /etc/freshclam.conf otherwise freshclam refuses to start.

Reinhard Max (rmax) committed about 6 years ago (revision 162)

  * Add interfaces to the Prelude SIEM open source package for
    collecting ClamAV virus events.
  * Support libmspack internal code or as a shared object
    library. The internal library is the default and includes
    modifications to enable parsing of CAB files that do not
    entirely adhere to the CAB file format.
  * Link with OpenSSL 1.1.0.
  * Deprecate of the AllowSupplementaryGroups parameter
    statement in clamd, clamav-milter, and freshclam.
    Use of supplementary is now in effect by default.
  * Deprecate internal LLVM code support.
  * Compute and check PE import table hash (a.k.a. "imphash")
    signatures.
  * Support file property collection and analysis for MHTML files.
  * Raw scanning of PostScript files.
  * Fix clamsubmit to use the new virus and false positive
    submission web interface.
  * Optionally, flag files with the virus
    "Heuristic.Limits.Exceeded" when size limitations are exceeded.
  * Improved decoders for PDF files.
  * Reduced number of compile time warnings.
  * Improved support for C++11.
  * Improved detection of system installed libraries.
  * Fixes to ClamAV's Container system and the introduction of
    Intermediates for more descriptive signatures.
  * Improvements to clamd's On-Access scanning capabilities
    for Linux.
- Use system-wide LLVM instead of the deprecated bundled one.
- Move pkgconfig stuff the main to the devel package.

Reinhard Max (rmax) committed about 6 years ago (revision 161)

- Update to version 0.100.0 (bsc#1089502):
  * FIXME: Add upstream changes here before submitting to Factory.
  * Obsoletes clamav-fix_newer_zlib.patch
- Update key ring and add signature file.
- Remove the logic around building the embedded llvm as the
  system-wide llvm is now auto-detected and used.
- Move pc files from the main to the devel package.

buildservice-autocommit accepted request 583965 from

Reinhard Max (rmax) about 6 years ago (revision 160)

baserev update by copy to link target

Reinhard Max (rmax) committed about 6 years ago (revision 159)

- Update to security release 0.99.4 (bsc#1083915):
  * CVE-2012-6706
  * CVE-2017-6419
  * CVE-2017-11423
  * CVE-2018-1000085 (bsc#1082858)
  * CVE-2018-0202
- Obsolete patches:
  * clamav-CVE-2012-6706.patch
  * clamav-gcc47.patch

buildservice-autocommit accepted request 578702 from

Factory Maintainer (factory-maintainer) over 6 years ago (revision 158)

baserev update by copy to link target

Reinhard Max (rmax) committed over 6 years ago (revision 157)

Reinhard Max (rmax) committed over 6 years ago (revision 156)

Reinhard Max (rmax) committed over 6 years ago (revision 155)

- Fix zlib version detection (clamav-zlib-version.patch).
- bsc#1045490, CVE-2012-6706: VMSF_DELTA filter in libclamunrar
  allows arbitrary memory write (clamav-CVE-2012-6706.patch).
- Buildrequire curl-devel to enable clamsubmit.

Places

Revisions of clamav

Places