Please Backport clamav-0.92.1~dfsg2-1 from Hardy to Dapper
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Dapper Backports |
Fix Released
|
Medium
|
Unassigned |
Bug Description
Source backport required. Tested. Ack from ubuntu-backporters.
clamav (0.92.1~
* Source backport for dapper-backports. Changes:
- Change ${binary:Version} and ${source:Version} depends to
{
dependency to (>= 1.13.11) as a result
- Add CC=gcc-3.4 to configure options in debian/rules and build-dep for
gcc-3.4 to avoid GCC bug 28045
- Remove leading comments from debian/
debian/
problem (inserts extra line in the template).
-- Scott Kitterman <email address hidden> Thu, 17 Apr 2008 23:45:03 -0400
clamav (0.92.1~dfsg2-1) unstable; urgency=high
* libclamav/pe.c: possible integer overflow in wwpack
* [CVE-2008-1100]: libclamav/pe.c: possible integer overflow in upack
* [CVE-2008-1387]: libclamav/spin.c: possible integer overflow
* libclamav/unarj.c: DoS in unarj
-- Stephen Gran <email address hidden> Tue, 15 Apr 2008 17:48:43 +0100
clamav (0.92.1~dfsg2-0.1) unstable; urgency=low
* Non-maintainer upload.
* Remove non-free unrar files and repack orig.tar.gz (Closes: #470073)
-- Scott Kitterman <email address hidden> Sat, 08 Mar 2008 19:29:19 -0500
clamav (0.92.1~dfsg-1) unstable; urgency=low
* New upstream bugfix release
- [2007-6595]: libclamav/others.c: symlink vulnerability
cli_gentempfd now calls open with O_EXCL (closes: #458532)
- [CVE-2008-0318]: libclamav/pe.c: possible integer overflow
- libclamav/mew.c: possible heap corruption
* Add a note to NEWS.Debian about unrar support being dropped
(closes: #465203)
* clamav-milter: off-by-one programming error in pingServer
(closes: #458204)
* Copyright now complete (thanks Scott Kitterman <email address hidden>)
(closes: #456770)
* Attempt to work around clamav-milter not bothering to check if another
instance is running on startup (reported as LP bug 179169)
-- Stephen Gran <email address hidden> Tue, 12 Feb 2008 02:25:20 +0000
clamav (0.92~dfsg-3) unstable; urgency=low
* Copyright clarifications (closes: #456770) (thanks
Scott Kitterman <email address hidden>)
-- Stephen Gran <email address hidden> Thu, 20 Dec 2007 15:28:12 +0000
Source backport uploaded.