pkgsrc-Changes archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

CVS commit: pkgsrc/security/clamav



Module Name:    pkgsrc
Committed By:   taca
Date:           Tue Dec  3 12:55:16 UTC 2019

Modified Files:
        pkgsrc/security/clamav: Makefile Makefile.common distinfo
        pkgsrc/security/clamav/patches: patch-configure

Log Message:
security/clamav: update to 0.102.1

Update clamav to 0.102.1.

## 0.102.1

ClamAV 0.102.1 is a security patch release to address the following issues.

- Fix for the following vulnerability affecting 0.102.0 and 0.101.4 and prior:
  - [CVE-2019-15961](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15961)
    A Denial-of-Service (DoS) vulnerability may occur when scanning a specially
    crafted email file as a result of excessively long scan times. The issue is
    resolved by implementing several maximums in parsing MIME messages and by
    optimizing use of memory allocation.

- Build system fixes to build clamav-milter, to correctly link with libxml2 when
  detected, and to correctly detect fanotify for on-access scanning feature
  support.

- Signature load time is significantly reduced by changing to a more efficient
  algorithm for loading signature patterns and allocating the AC trie.
  Patch courtesy of Alberto Wu.

- Introduced a new configure option to statically link libjson-c with libclamav.
  Static linking with libjson is highly recommended to prevent crashes in
  applications that use libclamav alongside another JSON parsing library.

- Null-dereference fix in email parser when using the `--gen-json` metadata
  option.

- Fixes for Authenticode parsing and certificate signature (.crb database) bugs.

Special thanks to the following for code contributions and bug reports:

- Alberto Wu
- Joran Dirk Greef
- Reio Remma


To generate a diff of this commit:
cvs rdiff -u -r1.58 -r1.59 pkgsrc/security/clamav/Makefile
cvs rdiff -u -r1.12 -r1.13 pkgsrc/security/clamav/Makefile.common
cvs rdiff -u -r1.30 -r1.31 pkgsrc/security/clamav/distinfo
cvs rdiff -u -r1.6 -r1.7 pkgsrc/security/clamav/patches/patch-configure

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Modified files:

Index: pkgsrc/security/clamav/Makefile
diff -u pkgsrc/security/clamav/Makefile:1.58 pkgsrc/security/clamav/Makefile:1.59
--- pkgsrc/security/clamav/Makefile:1.58        Tue Nov 19 16:20:24 2019
+++ pkgsrc/security/clamav/Makefile     Tue Dec  3 12:55:16 2019
@@ -1,6 +1,4 @@
-# $NetBSD: Makefile,v 1.58 2019/11/19 16:20:24 prlw1 Exp $
-
-PKGREVISION=   1
+# $NetBSD: Makefile,v 1.59 2019/12/03 12:55:16 taca Exp $
 
 .include "Makefile.common"
 

Index: pkgsrc/security/clamav/Makefile.common
diff -u pkgsrc/security/clamav/Makefile.common:1.12 pkgsrc/security/clamav/Makefile.common:1.13
--- pkgsrc/security/clamav/Makefile.common:1.12 Thu Oct 10 15:41:29 2019
+++ pkgsrc/security/clamav/Makefile.common      Tue Dec  3 12:55:16 2019
@@ -1,9 +1,9 @@
-# $NetBSD: Makefile.common,v 1.12 2019/10/10 15:41:29 prlw1 Exp $
+# $NetBSD: Makefile.common,v 1.13 2019/12/03 12:55:16 taca Exp $
 #
 # used by security/clamav/Makefile
 # used by security/clamav-doc/Makefile
 
-DISTNAME=      clamav-0.102.0
+DISTNAME=      clamav-0.102.1
 CATEGORIES=    security
 MASTER_SITES=  http://www.clamav.net/downloads/production/
 

Index: pkgsrc/security/clamav/distinfo
diff -u pkgsrc/security/clamav/distinfo:1.30 pkgsrc/security/clamav/distinfo:1.31
--- pkgsrc/security/clamav/distinfo:1.30        Thu Oct 31 11:22:15 2019
+++ pkgsrc/security/clamav/distinfo     Tue Dec  3 12:55:16 2019
@@ -1,14 +1,14 @@
-$NetBSD: distinfo,v 1.30 2019/10/31 11:22:15 jperkin Exp $
+$NetBSD: distinfo,v 1.31 2019/12/03 12:55:16 taca Exp $
 
-SHA1 (clamav-0.102.0.tar.gz) = 42413ff5eaed69f20a3756fa3b06cbbb63ee7766
-RMD160 (clamav-0.102.0.tar.gz) = ef57b3c3d09ba2441251e13ea8963e7b905500e7
-SHA512 (clamav-0.102.0.tar.gz) = 7228f5f572e5ca32a458c262a5d297694059de04cb4a64364dd92e1d2e4560d58263d05bfb2053641ea7521c4040bef5a49b3cea27e77b907c95195cf4a54d84
-Size (clamav-0.102.0.tar.gz) = 13211357 bytes
+SHA1 (clamav-0.102.1.tar.gz) = 88040368d506b923b627eab3c8a96c941f1719f9
+RMD160 (clamav-0.102.1.tar.gz) = 3b3c652c6b9f01bd2cc0e14390b841e48cfdee90
+SHA512 (clamav-0.102.1.tar.gz) = 2d0cd2dece771ab8228771f9a95eb0342e756083a0107b2bef31bd2f5f46c36aa692e15d7eb2ea321f535ea4e18c8df043c8663ae350d40fbe1bdb4d073dcb90
+Size (clamav-0.102.1.tar.gz) = 13215586 bytes
 SHA1 (patch-Makefile.in) = a11766ea353d81fb281a07c8120e8a1f5c8dc60f
 SHA1 (patch-aa) = 8539a90ac5591c86f7e9f6b8c073f36523f221a5
 SHA1 (patch-ab) = 78793f0267ce8c820b51937186dc17dabb4a1ccf
 SHA1 (patch-af) = d217633ed33c72b6d01a9aeef03f0f5dd33b4336
-SHA1 (patch-configure) = a700ae41e961e0cfc82306f290a87f6c677a32f6
+SHA1 (patch-configure) = fe4b44fe1720f8e0ee31fec794776ca132e347af
 SHA1 (patch-etc_clamav-milter.conf.sample) = 0cbf22bf380213c9e9f2b9baf15d7eba745afd46
 SHA1 (patch-etc_clamd.conf.sample) = 74c995c7df2d5b083bb4465d2ab4cb0cab8670b6
 SHA1 (patch-etc_freshclam.conf.sample) = 520ffbca5421ef2dc270e3c5a13cfb36a469e676

Index: pkgsrc/security/clamav/patches/patch-configure
diff -u pkgsrc/security/clamav/patches/patch-configure:1.6 pkgsrc/security/clamav/patches/patch-configure:1.7
--- pkgsrc/security/clamav/patches/patch-configure:1.6  Thu Oct 31 11:22:15 2019
+++ pkgsrc/security/clamav/patches/patch-configure      Tue Dec  3 12:55:16 2019
@@ -1,11 +1,10 @@
-$NetBSD: patch-configure,v 1.6 2019/10/31 11:22:15 jperkin Exp $
+$NetBSD: patch-configure,v 1.7 2019/12/03 12:55:16 taca Exp $
 
 Portability fixes.
-Move the checks for $have_milter to after it is defined.
 
---- configure.orig     2019-10-01 17:24:08.000000000 +0000
+--- configure.orig     2019-11-20 04:42:24.000000000 +0000
 +++ configure
-@@ -18269,7 +18269,7 @@ else
+@@ -18272,7 +18272,7 @@ else
  fi
  
  
@@ -14,7 +13,7 @@ Move the checks for $have_milter to afte
    BUILD_LIBCLAMAV_ONLY_TRUE=
    BUILD_LIBCLAMAV_ONLY_FALSE='#'
  else
-@@ -18278,8 +18278,8 @@ else
+@@ -18281,8 +18281,8 @@ else
  fi
  
  
@@ -25,7 +24,7 @@ Move the checks for $have_milter to afte
    BUILD_CLAMONACC_TRUE=
    BUILD_CLAMONACC_FALSE='#'
  else
-@@ -21224,7 +21224,7 @@ $as_echo "yes" >&6; }
+@@ -21227,7 +21227,7 @@ $as_echo "yes" >&6; }
        HAVE_LIBCHECK=yes
  fi
  
@@ -34,20 +33,7 @@ Move the checks for $have_milter to afte
      CHECK_CPPFLAGS=$CHECK_CFLAGS
  else
  
-@@ -24689,6 +24689,12 @@ fi
- { $as_echo "$as_me:${as_lineno-$LINENO}: result: checking for systemd system unit installation directory... $with_systemdsystemunitdir" >&5
- $as_echo "checking for systemd system unit installation directory... $with_systemdsystemunitdir" >&6; }
- 
-+# Check whether --enable-milter was given.
-+if test "${enable_milter+set}" = set; then :
-+  enableval=$enable_milter; have_milter=$enableval
-+else
-+  have_milter="no"
-+fi
- 
- if test "$have_milter" = "yes"; then
- 
-@@ -29013,10 +29019,10 @@ fi
+@@ -29918,10 +29918,10 @@ fi
  
                        ;;
                *)
@@ -60,7 +46,7 @@ Move the checks for $have_milter to afte
    BUILD_CLAMONACC_TRUE=
    BUILD_CLAMONACC_FALSE='#'
  else
-@@ -29027,7 +29033,7 @@ fi
+@@ -29932,7 +29932,7 @@ fi
                          ;;
        esac
  else
@@ -69,16 +55,3 @@ Move the checks for $have_milter to afte
    BUILD_CLAMONACC_TRUE=
    BUILD_CLAMONACC_FALSE='#'
  else
-@@ -29296,12 +29302,6 @@ if test $ac_cv_func_setpgrp_void = yes;
- fi
- fi
- 
--# Check whether --enable-milter was given.
--if test "${enable_milter+set}" = set; then :
--  enableval=$enable_milter; have_milter=$enableval
--else
--  have_milter="no"
--fi
- 
- 
- # Check whether --enable-id-check was given.



Home | Main Index | Thread Index | Old Index