diff --git a/clamav-open.patch b/clamav-open.patch new file mode 100644 index 0000000..d5c009c --- /dev/null +++ b/clamav-open.patch @@ -0,0 +1,11 @@ +--- shared/misc.c ++++ shared/misc.c +@@ -165,7 +165,7 @@ + if((s = open(src, O_RDONLY|O_BINARY)) == -1) + return -1; + +- if((d = open(dest, O_CREAT|O_WRONLY|O_TRUNC|O_BINARY)) == -1) { ++ if((d = open(dest, O_CREAT|O_WRONLY|O_TRUNC|O_BINARY, 0600)) == -1) { + close(s); + return -1; + } diff --git a/clamav.changes b/clamav.changes index ec4db87..9fa403b 100644 --- a/clamav.changes +++ b/clamav.changes @@ -1,3 +1,8 @@ +------------------------------------------------------------------- +Tue Jan 15 21:21:41 CET 2008 - aj@suse.de + +- Fix open call to build again. + ------------------------------------------------------------------- Tue Aug 21 18:55:36 CEST 2007 - max@suse.de diff --git a/clamav.spec b/clamav.spec index f321ce6..b6f01fb 100644 --- a/clamav.spec +++ b/clamav.spec @@ -1,7 +1,7 @@ # # spec file for package clamav (Version 0.91.2) # -# Copyright (c) 2007 SUSE LINUX Products GmbH, Nuernberg, Germany. +# Copyright (c) 2008 SUSE LINUX Products GmbH, Nuernberg, Germany. # This file and all modifications and additions to the pristine # package are under the same license as the package itself. # @@ -19,19 +19,20 @@ BuildRequires: pwdutils %endif Summary: Antivirus Toolkit Version: 0.91.2 -Release: 1 +Release: 34 License: GPL v2 or later Group: Productivity/Security -URL: http://www.clamav.net +Url: http://www.clamav.net Requires: latex2html-pngicons Obsoletes: clamav-db < 0.88.3 -Prereq: %_sbindir/groupadd %_sbindir/useradd /usr/bin/awk /bin/sed +PreReq: %_sbindir/groupadd %_sbindir/useradd /usr/bin/awk /bin/sed Source0: %{name}-%{version}.tar.bz2 Source1: clamav-rcclamd Source2: clamav-rcfreshclam Source3: clamav-updateclamconf Source4: clamav-rpmlintrc Patch1: %name-conf.patch +Patch2: %name-open.patch BuildRoot: %{_tmppath}/%{name}-%{version}-build %description @@ -52,7 +53,7 @@ Authors: %package db Group: Productivity/Security Summary: Virus Database for ClamAV -Prereq: clamav sed +PreReq: clamav sed %description db This package contains a snapshot of the virus description database for @@ -69,6 +70,7 @@ Authors: %prep %setup -q %patch1 +%patch2 %build %if %suse_version >= 1010 @@ -126,7 +128,6 @@ rm -rf %buildroot %doc docs/*.pdf docs/html %doc %_mandir/*/* %_bindir/* - %_sbindir/* %_includedir/* %_libdir/lib* @@ -143,11 +144,8 @@ rm -rf %buildroot /var/lib/clamav/*.cvd.dist %pre - %_sbindir/groupadd -r vscan 2> /dev/null || : - %_sbindir/useradd -r -o -g vscan -u 65 -s /bin/false -c "Vscan account" -d /var/spool/amavis vscan 2> /dev/null || : - %_sbindir/usermod vscan -g vscan 2> /dev/null || : %post @@ -209,22 +207,24 @@ for distfile in {main,daily}.cvd.dist; do done %changelog -* Tue Aug 21 2007 - max@suse.de +* Tue Jan 15 2008 aj@suse.de +- Fix open call to build again. +* Tue Aug 21 2007 max@suse.de - Bugfix update 0.91.2. - Fixes some NULL dereferences and variable initialisation problems - Fix some rpmlint warnings in init scripts. -* Thu Aug 09 2007 - max@suse.de +* Thu Aug 09 2007 max@suse.de - Inform the user that to use Clamuko, clamd needs to run as root, so that it can read the files it needs to scan (#201730). -* Tue Jul 17 2007 - max@suse.de +* Tue Jul 17 2007 max@suse.de - Stability and bugfix update: 0.91.1 (#292297) - Run ldconfig on (un)installation. - Make %%check conditional to fix building on SLES8. -* Sun Jul 15 2007 - lrupp@suse.de +* Sun Jul 15 2007 lrupp@suse.de - add zlib-devel to build requires - suppress some false positives from rpmlint - added %%check section and remove unneeded INSTALL file from %%doc -* Wed Jul 11 2007 - max@suse.de +* Wed Jul 11 2007 max@suse.de - Update to version 0.91 (#289830) - improved handling of .mdb files (fixes long startup times) - Adds anti-phishing support @@ -238,7 +238,7 @@ done - better handling of PE & UPX - removed dependency on libcurl (improves stability) - many other improvements and bugfixes -* Thu May 31 2007 - max@suse.de +* Thu May 31 2007 max@suse.de - Security update: 0.90.3 (#279536) - libclamav/unsp.c: fix end of buffer calculation (bb#464) - libclamav/others.c: use strict permissions (0600) for temporary files @@ -247,21 +247,21 @@ done rar archive, better handle truncated files - libclamav/phishcheck.c: isURL() regex execution hangs on Solaris - libclamav/ole2_extract.c: detect block list loop (bb#466) -* Fri Apr 13 2007 - max@suse.de +* Fri Apr 13 2007 max@suse.de - Security update: 0.90.2 (#264189) - CVE-2007-1997: CAB File Unstore Buffer Overflow Vulnerability - CVE-2007-1745: file descriptor leak in CHM handler - File descriptor leaks in libclamav/pdf.c and libclamav/lockdb.c -* Mon Mar 05 2007 - max@suse.de +* Mon Mar 05 2007 max@suse.de - Extended the database presence check in rcclamd to accept the main.inc directory in addition to the main.cvd file, because freshclam can delete the file during a scripted update. -* Fri Mar 02 2007 - max@suse.de +* Fri Mar 02 2007 max@suse.de - Update to version 0.90.1 (#250566) - Some bug fixes and code improvements - Bumps the version of libclamav's soname, which should have been done in 0.90 already. -* Tue Feb 20 2007 - max@suse.de +* Tue Feb 20 2007 max@suse.de - Update to version 0.90 (#246214) to fix two Vulnerabilities: - CAB File Denial of Service (CVE-2007-0897) - MIME Parsing Directory Traversal (CVE-2007-0898) @@ -288,27 +288,27 @@ done that link against libclamav. Affected functions are: cl_loaddb, cl_loaddir and cl_scanbuff. - Cleaned up daemonizing of clamd and freshclam. -* Tue Dec 12 2006 - max@suse.de +* Tue Dec 12 2006 max@suse.de - Security update: 0.88.7 (#227827, CVE-2006-5874) - handle consecutive errors in base64 decoding - honour recursion limit when scanning email messages - clamscan: new option --mail-max-recursion - libclamav/untar.c: honour archive limits -* Tue Nov 07 2006 - max@suse.de +* Tue Nov 07 2006 max@suse.de - Add homedir of user vscan to the package (FATE300731). -* Mon Nov 06 2006 - max@suse.de +* Mon Nov 06 2006 max@suse.de - Bugfix release: 0.88.6 (#218313) - freshclam: apply timeout patch from Everton da Silva Marques (new options: ConnectTimeout and ReceiveTimeout) - clamd: change stack size at the right place (closes bug#103) - libclamav/petite.c: sanity check the number of rebuilt sections (speeds up handling of malformed files) -* Tue Oct 17 2006 - max@suse.de +* Tue Oct 17 2006 max@suse.de - Bugfix release 0.88.5 fixes two serious security issues. [#212898], CVE-2006-4182, CVE-2006-5295 -* Tue Aug 08 2006 - lnussel@suse.de +* Tue Aug 08 2006 lnussel@suse.de - New version 0.88.4 fixes heap overflow in UPX decoder -* Thu Jul 06 2006 - max@suse.de +* Thu Jul 06 2006 max@suse.de - Bugfix release 0.88.3: - fix possible false matches of alternatives - Large binhex files were not being handled gracefully. @@ -320,72 +320,72 @@ done - Renamed clamav.conf to clamd.conf for SLES9. - Added the db subpackage to SLES9. - Bugzilla: 190647 -* Tue May 02 2006 - max@suse.de +* Tue May 02 2006 max@suse.de - New version: 0.88.2 - Fixes a buffer overflow in freshclam's get_database function (CVE-2006-1989, Bug #171496). -* Mon Apr 10 2006 - meissner@suse.de +* Mon Apr 10 2006 meissner@suse.de - Fixed several implicit warnings which lead to failures on 64bit platforms. -* Wed Apr 05 2006 - max@suse.de +* Wed Apr 05 2006 max@suse.de - New version: 0.88.1, fixes several security issues: CVE-2006-1614, CVE-2006-1615, CVE-2006-1630, bug #164039. -* Thu Feb 09 2006 - max@suse.de +* Thu Feb 09 2006 max@suse.de - Removed unneeded dependencies from the init script to break a dependency loop. -* Wed Jan 25 2006 - mls@suse.de +* Wed Jan 25 2006 mls@suse.de - converted neededforbuild to BuildRequires -* Sat Jan 14 2006 - kukuk@suse.de +* Sat Jan 14 2006 kukuk@suse.de - Add gmp-devel to nfb -* Thu Jan 12 2006 - max@suse.de +* Thu Jan 12 2006 max@suse.de - Added gcc-4.1 stack protection (-fstack-protector). -* Mon Jan 09 2006 - max@suse.de +* Mon Jan 09 2006 max@suse.de - New version: 0.88 (Bug #142298). -* Mon Nov 07 2005 - lnussel@suse.de +* Mon Nov 07 2005 lnussel@suse.de - Security update: version 0.87.1 (#132305, CVE-2005-3239, CVE-2005-3303) -* Mon Sep 19 2005 - max@suse.de +* Mon Sep 19 2005 max@suse.de - New version: 0.87 (bug #117648). -* Mon Jul 25 2005 - max@suse.de +* Mon Jul 25 2005 max@suse.de - New version: 0.86.2 -* Thu Jul 14 2005 - max@suse.de +* Thu Jul 14 2005 max@suse.de - New version: 0.86.1 -* Tue Jun 21 2005 - max@suse.de +* Tue Jun 21 2005 max@suse.de - New version: 0.86 -* Tue May 17 2005 - max@suse.de +* Tue May 17 2005 max@suse.de - New version: 0.85.1 (Bug #81264). -* Wed May 11 2005 - max@suse.de +* Wed May 11 2005 max@suse.de - New version: 0.85 (Bug #81264). -* Tue May 03 2005 - max@suse.de +* Tue May 03 2005 max@suse.de - New version: 0.84 (Bug #81264). - Added and special-cased the patch that is needed for 9.1/SLES9. -* Fri Mar 11 2005 - max@suse.de +* Fri Mar 11 2005 max@suse.de - Fixed %%doc file list (wildcards matched too much). -* Mon Feb 28 2005 - max@suse.de +* Mon Feb 28 2005 max@suse.de - New version: 0.83 -* Mon Feb 07 2005 - max@suse.de +* Mon Feb 07 2005 max@suse.de - New version: 0.82 -* Thu Jan 27 2005 - max@suse.de +* Thu Jan 27 2005 max@suse.de - New version: 0.81 -* Thu Nov 11 2004 - max@suse.de +* Thu Nov 11 2004 max@suse.de - pkgconfig files go to libdir rather than /usr/lib. -* Thu Nov 11 2004 - coolo@suse.de +* Thu Nov 11 2004 coolo@suse.de - fixing file list for debug packages -* Wed Nov 03 2004 - max@suse.de +* Wed Nov 03 2004 max@suse.de - Fixed path to freshclam in init script, and rcfreshclam link. -* Mon Oct 18 2004 - max@suse.de +* Mon Oct 18 2004 max@suse.de - Updated to the final 0.80 release. - Added a runlevel script for freshclam. -* Mon Oct 11 2004 - max@suse.de +* Mon Oct 11 2004 max@suse.de - Updated to 0.80rc4. -* Wed Sep 29 2004 - max@suse.de +* Wed Sep 29 2004 max@suse.de - Updated to 0.80rc3. The README says: "This release candidate eliminates possible false positive alerts in UPX/FSG compressed files and clarifies behaviour of default actions in clamd and freshclam." - This also eliminates the need to patch configure.in in order to recognize resolv. -* Thu Sep 23 2004 - max@suse.de +* Thu Sep 23 2004 max@suse.de - Updated to 0.80rc2 which fixes a critical bug in the handling of empty lines in text/plain emails. - Build with curl support. @@ -393,33 +393,33 @@ done - Removed unneeded %%run_ldconfig calls. - Fixed file lists. - Check for main.cvd instead of daily.cvd on daemon startup. -* Mon Sep 20 2004 - max@suse.de +* Mon Sep 20 2004 max@suse.de - Updated to version 0.80rc which adds support for more file formats, and HTML parsing. See the README file for details. - Added a warning to the init script if no virus database is installed. -* Thu Aug 05 2004 - max@suse.de +* Thu Aug 05 2004 max@suse.de - New version: 0.75.1 - Moved the virus database files into a subpackage, as they are large and not needed if the database is kept up to date with freshclam. -* Fri Jul 23 2004 - max@suse.de +* Fri Jul 23 2004 max@suse.de - New version: 0.75 -* Thu Jul 08 2004 - max@suse.de +* Thu Jul 08 2004 max@suse.de - Added -fno-strict-aliasing to CFLAGS. -* Mon Jul 05 2004 - max@suse.de +* Mon Jul 05 2004 max@suse.de - New version: 0.74 -* Tue Jun 15 2004 - max@suse.de +* Tue Jun 15 2004 max@suse.de - New version: 0.73 -* Mon Apr 26 2004 - max@suse.de +* Mon Apr 26 2004 max@suse.de - New version: 0.70 - Changes the format of the virus definition file. -* Mon Feb 16 2004 - max@suse.de +* Mon Feb 16 2004 max@suse.de - New version: 0.67 - Added support for tcpd (/etc/hosts.{allow,deny}). - Obsoletes clamav-manager.patch. -* Fri Feb 13 2004 - max@suse.de +* Fri Feb 13 2004 max@suse.de - New version: 0.66 - Fixes a remote DoS vulnerability (Bug #34412). -* Tue Jan 27 2004 - max@suse.de +* Tue Jan 27 2004 max@suse.de - New package: ClamAV Anti-Virus Toolkit