OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/clamav?expand=0&rev=12

clamav-open.patch

@@ -0,0 +1,11 @@
+--- shared/misc.c
++++ shared/misc.c
+@@ -165,7 +165,7 @@
+     if((s = open(src, O_RDONLY|O_BINARY)) == -1)
+ 	return -1;
+ 
+-    if((d = open(dest, O_CREAT|O_WRONLY|O_TRUNC|O_BINARY)) == -1) {
++    if((d = open(dest, O_CREAT|O_WRONLY|O_TRUNC|O_BINARY, 0600)) == -1) {
+ 	close(s);
+ 	return -1;
+     }

clamav.changes

@@ -1,3 +1,8 @@
+-------------------------------------------------------------------
+Tue Jan 15 21:21:41 CET 2008 - aj@suse.de
+
+- Fix open call to build again.
+
 -------------------------------------------------------------------
 Tue Aug 21 18:55:36 CEST 2007 - max@suse.de
 

clamav.spec

@@ -1,7 +1,7 @@
 #
 # spec file for package clamav (Version 0.91.2)
 #
-# Copyright (c) 2007 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2008 SUSE LINUX Products GmbH, Nuernberg, Germany.
 # This file and all modifications and additions to the pristine
 # package are under the same license as the package itself.
 #
@@ -19,19 +19,20 @@ BuildRequires:  pwdutils
 %endif
 Summary:        Antivirus Toolkit
 Version:        0.91.2
-Release:        1
+Release:        34
 License:        GPL v2 or later
 Group:          Productivity/Security
-URL:            http://www.clamav.net
+Url:            http://www.clamav.net
 Requires:       latex2html-pngicons
 Obsoletes:      clamav-db < 0.88.3
-Prereq:         %_sbindir/groupadd %_sbindir/useradd /usr/bin/awk /bin/sed
+PreReq:         %_sbindir/groupadd %_sbindir/useradd /usr/bin/awk /bin/sed
 Source0:        %{name}-%{version}.tar.bz2
 Source1:        clamav-rcclamd
 Source2:        clamav-rcfreshclam
 Source3:        clamav-updateclamconf
 Source4:        clamav-rpmlintrc
 Patch1:         %name-conf.patch
+Patch2:         %name-open.patch
 BuildRoot:      %{_tmppath}/%{name}-%{version}-build
 
 %description
@@ -52,7 +53,7 @@ Authors:
 %package db
 Group:          Productivity/Security
 Summary:        Virus Database for ClamAV
-Prereq:         clamav sed
+PreReq:         clamav sed
 
 %description db
 This package contains a snapshot of the virus description database for
@@ -69,6 +70,7 @@ Authors:
 %prep
 %setup -q
 %patch1
+%patch2
 
 %build
 %if %suse_version >= 1010
@@ -126,7 +128,6 @@ rm -rf %buildroot
 %doc docs/*.pdf docs/html
 %doc %_mandir/*/*
 %_bindir/*
-
 %_sbindir/*
 %_includedir/*
 %_libdir/lib*
@@ -143,11 +144,8 @@ rm -rf %buildroot
 /var/lib/clamav/*.cvd.dist
 
 %pre
-
 %_sbindir/groupadd -r vscan 2> /dev/null || :
-
 %_sbindir/useradd -r -o -g vscan -u 65 -s /bin/false -c "Vscan account" -d /var/spool/amavis vscan 2> /dev/null || :
-
 %_sbindir/usermod vscan -g vscan 2> /dev/null || :
 
 %post
@@ -209,22 +207,24 @@ for distfile in {main,daily}.cvd.dist; do
 done
 
 %changelog
-* Tue Aug 21 2007 - max@suse.de
+* Tue Jan 15 2008 aj@suse.de
+- Fix open call to build again.
+* Tue Aug 21 2007 max@suse.de
 - Bugfix update 0.91.2.
 - Fixes some NULL dereferences and variable initialisation problems
 - Fix some rpmlint warnings in init scripts.
-* Thu Aug 09 2007 - max@suse.de
+* Thu Aug 09 2007 max@suse.de
 - Inform the user that to use Clamuko, clamd needs to run as root,
   so that it can read the files it needs to scan (#201730).
-* Tue Jul 17 2007 - max@suse.de
+* Tue Jul 17 2007 max@suse.de
 - Stability and bugfix update: 0.91.1 (#292297)
 - Run ldconfig on (un)installation.
 - Make %%check conditional to fix building on SLES8.
-* Sun Jul 15 2007 - lrupp@suse.de
+* Sun Jul 15 2007 lrupp@suse.de
 - add zlib-devel to build requires
 - suppress some false positives from rpmlint
 - added %%check section and remove unneeded INSTALL file from %%doc
-* Wed Jul 11 2007 - max@suse.de
+* Wed Jul 11 2007 max@suse.de
 - Update to version 0.91 (#289830)
 - improved handling of .mdb files (fixes long startup times)
 - Adds anti-phishing support
@@ -238,7 +238,7 @@ done
 - better handling of PE & UPX
 - removed dependency on libcurl (improves stability)
 - many other improvements and bugfixes
-* Thu May 31 2007 - max@suse.de
+* Thu May 31 2007 max@suse.de
 - Security update: 0.90.3 (#279536)
 - libclamav/unsp.c: fix end of buffer calculation (bb#464)
 - libclamav/others.c: use strict permissions (0600) for temporary files
@@ -247,21 +247,21 @@ done
   rar archive, better handle truncated files
 - libclamav/phishcheck.c: isURL() regex execution hangs on Solaris
 - libclamav/ole2_extract.c: detect block list loop (bb#466)
-* Fri Apr 13 2007 - max@suse.de
+* Fri Apr 13 2007 max@suse.de
 - Security update: 0.90.2 (#264189)
 - CVE-2007-1997: CAB File Unstore Buffer Overflow Vulnerability
 - CVE-2007-1745: file descriptor leak in CHM handler
 - File descriptor leaks in libclamav/pdf.c and libclamav/lockdb.c
-* Mon Mar 05 2007 - max@suse.de
+* Mon Mar 05 2007 max@suse.de
 - Extended the database presence check in rcclamd to accept the
   main.inc directory in addition to the main.cvd file, because
   freshclam can delete the file during a scripted update.
-* Fri Mar 02 2007 - max@suse.de
+* Fri Mar 02 2007 max@suse.de
 - Update to version 0.90.1 (#250566)
 - Some bug fixes and code improvements
 - Bumps the version of libclamav's soname, which should have been
   done in 0.90 already.
-* Tue Feb 20 2007 - max@suse.de
+* Tue Feb 20 2007 max@suse.de
 - Update to version 0.90 (#246214) to fix two Vulnerabilities:
   - CAB File Denial of Service (CVE-2007-0897)
   - MIME Parsing Directory Traversal (CVE-2007-0898)
@@ -288,27 +288,27 @@ done
   that link against libclamav. Affected functions are: cl_loaddb,
   cl_loaddir and cl_scanbuff.
 - Cleaned up daemonizing of clamd and freshclam.
-* Tue Dec 12 2006 - max@suse.de
+* Tue Dec 12 2006 max@suse.de
 - Security update: 0.88.7 (#227827, CVE-2006-5874)
   - handle consecutive errors in base64 decoding
   - honour recursion limit when scanning email messages
   - clamscan: new option --mail-max-recursion
   - libclamav/untar.c: honour archive limits
-* Tue Nov 07 2006 - max@suse.de
+* Tue Nov 07 2006 max@suse.de
 - Add homedir of user vscan to the package (FATE300731).
-* Mon Nov 06 2006 - max@suse.de
+* Mon Nov 06 2006 max@suse.de
 - Bugfix release: 0.88.6 (#218313)
 - freshclam: apply timeout patch from Everton da Silva Marques
   (new options: ConnectTimeout and ReceiveTimeout)
 - clamd: change stack size at the right place (closes bug#103)
 - libclamav/petite.c: sanity check the number of rebuilt sections
   (speeds up handling of malformed files)
-* Tue Oct 17 2006 - max@suse.de
+* Tue Oct 17 2006 max@suse.de
 - Bugfix release 0.88.5 fixes two serious security issues.
   [#212898], CVE-2006-4182, CVE-2006-5295
-* Tue Aug 08 2006 - lnussel@suse.de
+* Tue Aug 08 2006 lnussel@suse.de
 - New version 0.88.4 fixes heap overflow in UPX decoder
-* Thu Jul 06 2006 - max@suse.de
+* Thu Jul 06 2006 max@suse.de
 - Bugfix release 0.88.3:
   - fix possible false matches of alternatives
   - Large binhex files were not being handled gracefully.
@@ -320,72 +320,72 @@ done
 - Renamed clamav.conf to clamd.conf for SLES9.
 - Added the db subpackage to SLES9.
 - Bugzilla: 190647
-* Tue May 02 2006 - max@suse.de
+* Tue May 02 2006 max@suse.de
 - New version: 0.88.2
 - Fixes a buffer overflow in freshclam's get_database function
   (CVE-2006-1989, Bug #171496).
-* Mon Apr 10 2006 - meissner@suse.de
+* Mon Apr 10 2006 meissner@suse.de
 - Fixed several implicit warnings which lead to failures
   on 64bit platforms.
-* Wed Apr 05 2006 - max@suse.de
+* Wed Apr 05 2006 max@suse.de
 - New version: 0.88.1, fixes several security issues:
   CVE-2006-1614, CVE-2006-1615, CVE-2006-1630, bug #164039.
-* Thu Feb 09 2006 - max@suse.de
+* Thu Feb 09 2006 max@suse.de
 - Removed unneeded dependencies from the init script to break a
   dependency loop.
-* Wed Jan 25 2006 - mls@suse.de
+* Wed Jan 25 2006 mls@suse.de
 - converted neededforbuild to BuildRequires
-* Sat Jan 14 2006 - kukuk@suse.de
+* Sat Jan 14 2006 kukuk@suse.de
 - Add gmp-devel to nfb
-* Thu Jan 12 2006 - max@suse.de
+* Thu Jan 12 2006 max@suse.de
 - Added gcc-4.1 stack protection (-fstack-protector).
-* Mon Jan 09 2006 - max@suse.de
+* Mon Jan 09 2006 max@suse.de
 - New version: 0.88 (Bug #142298).
-* Mon Nov 07 2005 - lnussel@suse.de
+* Mon Nov 07 2005 lnussel@suse.de
 - Security update: version 0.87.1 (#132305, CVE-2005-3239,
   CVE-2005-3303)
-* Mon Sep 19 2005 - max@suse.de
+* Mon Sep 19 2005 max@suse.de
 - New version: 0.87 (bug #117648).
-* Mon Jul 25 2005 - max@suse.de
+* Mon Jul 25 2005 max@suse.de
 - New version: 0.86.2
-* Thu Jul 14 2005 - max@suse.de
+* Thu Jul 14 2005 max@suse.de
 - New version: 0.86.1
-* Tue Jun 21 2005 - max@suse.de
+* Tue Jun 21 2005 max@suse.de
 - New version: 0.86
-* Tue May 17 2005 - max@suse.de
+* Tue May 17 2005 max@suse.de
 - New version: 0.85.1 (Bug #81264).
-* Wed May 11 2005 - max@suse.de
+* Wed May 11 2005 max@suse.de
 - New version: 0.85 (Bug #81264).
-* Tue May 03 2005 - max@suse.de
+* Tue May 03 2005 max@suse.de
 - New version: 0.84 (Bug #81264).
 - Added and special-cased the patch that is needed for 9.1/SLES9.
-* Fri Mar 11 2005 - max@suse.de
+* Fri Mar 11 2005 max@suse.de
 - Fixed %%doc file list (wildcards matched too much).
-* Mon Feb 28 2005 - max@suse.de
+* Mon Feb 28 2005 max@suse.de
 - New version: 0.83
-* Mon Feb 07 2005 - max@suse.de
+* Mon Feb 07 2005 max@suse.de
 - New version: 0.82
-* Thu Jan 27 2005 - max@suse.de
+* Thu Jan 27 2005 max@suse.de
 - New version: 0.81
-* Thu Nov 11 2004 - max@suse.de
+* Thu Nov 11 2004 max@suse.de
 - pkgconfig files go to libdir rather than /usr/lib.
-* Thu Nov 11 2004 - coolo@suse.de
+* Thu Nov 11 2004 coolo@suse.de
 - fixing file list for debug packages
-* Wed Nov 03 2004 - max@suse.de
+* Wed Nov 03 2004 max@suse.de
 - Fixed path to freshclam in init script, and rcfreshclam link.
-* Mon Oct 18 2004 - max@suse.de
+* Mon Oct 18 2004 max@suse.de
 - Updated to the final 0.80 release.
 - Added a runlevel script for freshclam.
-* Mon Oct 11 2004 - max@suse.de
+* Mon Oct 11 2004 max@suse.de
 - Updated to 0.80rc4.
-* Wed Sep 29 2004 - max@suse.de
+* Wed Sep 29 2004 max@suse.de
 - Updated to 0.80rc3. The README says:
   "This release candidate eliminates possible false positive alerts
   in UPX/FSG compressed files and clarifies behaviour of default
   actions in clamd and freshclam."
 - This also eliminates the need to patch configure.in in order to
   recognize resolv.
-* Thu Sep 23 2004 - max@suse.de
+* Thu Sep 23 2004 max@suse.de
 - Updated to 0.80rc2 which fixes a critical bug in the handling of
   empty lines in text/plain emails.
 - Build with curl support.
@@ -393,33 +393,33 @@ done
 - Removed unneeded %%run_ldconfig calls.
 - Fixed file lists.
 - Check for main.cvd instead of daily.cvd on daemon startup.
-* Mon Sep 20 2004 - max@suse.de
+* Mon Sep 20 2004 max@suse.de
 - Updated to version 0.80rc which adds support for more file
   formats, and HTML parsing. See the README file for details.
 - Added a warning to the init script if no virus database is
   installed.
-* Thu Aug 05 2004 - max@suse.de
+* Thu Aug 05 2004 max@suse.de
 - New version: 0.75.1
 - Moved the virus database files into a subpackage, as they are
   large and not needed if the database is kept up to date with
   freshclam.
-* Fri Jul 23 2004 - max@suse.de
+* Fri Jul 23 2004 max@suse.de
 - New version: 0.75
-* Thu Jul 08 2004 - max@suse.de
+* Thu Jul 08 2004 max@suse.de
 - Added -fno-strict-aliasing to CFLAGS.
-* Mon Jul 05 2004 - max@suse.de
+* Mon Jul 05 2004 max@suse.de
 - New version: 0.74
-* Tue Jun 15 2004 - max@suse.de
+* Tue Jun 15 2004 max@suse.de
 - New version: 0.73
-* Mon Apr 26 2004 - max@suse.de
+* Mon Apr 26 2004 max@suse.de
 - New version: 0.70
 - Changes the format of the virus definition file.
-* Mon Feb 16 2004 - max@suse.de
+* Mon Feb 16 2004 max@suse.de
 - New version: 0.67
 - Added support for tcpd (/etc/hosts.{allow,deny}).
 - Obsoletes clamav-manager.patch.
-* Fri Feb 13 2004 - max@suse.de
+* Fri Feb 13 2004 max@suse.de
 - New version: 0.66
 - Fixes a remote DoS vulnerability (Bug #34412).
-* Tue Jan 27 2004 - max@suse.de
+* Tue Jan 27 2004 max@suse.de
 - New package: ClamAV Anti-Virus Toolkit