Accepting request 1104230 from home:adkorte:branches:security

- Update to 0.103.9 * CVE-2023-20197: Fixed a possible denial of service vulnerability in the HFS+ file parser. This issue affects versions 1.1.0, 1.0.1 through 1.0.0, 0.105.2 through 0.105.0, 0.104.4 through 0.104.0, and 0.103.8 through 0.103.0. (boo#1214342) * Fixed compiler warnings that may turn into errors in Clang 16. OBS-URL: https://build.opensuse.org/request/show/1104230 OBS-URL: https://build.opensuse.org/package/show/security/clamav?expand=0&rev=241
2023-08-16 18:49:44 +00:00 · 2023-08-16 18:49:44 +00:00 · 79bdf6ebb0
commit 79bdf6ebb0
parent 8dcf736f6a
6 changed files with 30 additions and 20 deletions
--- a/clamav-0.103.8.tar.gz
+++ b/clamav-0.103.8.tar.gz
@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:6f49da6ee927936de13d359e559d3944248e3a257d40b80b6c99ebe6fe8c8c3f
-size 16524716
--- a/clamav-0.103.8.tar.gz.sig
+++ b/clamav-0.103.8.tar.gz.sig
@ -1,16 +0,0 @@
-----BEGIN PGP SIGNATURE-----
-
-iQIcBAABAgAGBQJj6kjVAAoJEGCbAk8rPt0HoSYP/1xl4m+Gn9KamEiSGW0D4S5T
-CrNAL+TFEoqAPXdHbLDnePIpSDE6oqS9dPzFcZmdiUaEvq+anY5ZZVrLvmXepgst
-5o49feMWs5HxSpYGYe3MkCfDnJLJSF+aiPnJQuU011M0ZTszzeSAjCwTeu3Hc14h
-iumavdj5n3qYjJZnct7R/M1TJN91P8obB1os1CqbSPlsZGjgvccNrbkTg+Sira0M
-pt1gZ8fwQ1t3AejKfR+3fqafcXArWk77jBrKGS7he6QCwe4cYz/I3U0jLXwTU87o
-HHdz/Exa9ed6JPe6Qlr19GMCXsQDIVs6xMfmQlpNENT1GtFVlTlRg4N6Ofy9Ejo2
-G2pUYIaDvqd6qxNXG9wW1rwWjNFAXYrYZ2NgQ4AcpMmjEuoxi5g+etA6ogyGfCNy
-eZldAerq4TwyQCya9rv0JjnAOQC+cvlwxCysGAW1DC3gyVkkojlBLL4EqDlrHrTx
-hRVS4scgRV397YHZJ/AT+tu7Rds8syTMU5Z0q8sOsZUQjtUXWye+lpNXlA2V0JyI
-3590whZ31GSecc+rmlLnJ4IIAlW/ze4nsbw5IMmCvv4NLeW/YnbGWAq0M6+3oXLi
-MH9OAplxvPtBRie+kvwghJUHCnDpr02o4MOWFNZTdoqgxuvgI9zt/eLgJ2NW7u2b
-M4yqmhNqOSwDywRv40qU
-=hkkT
-----END PGP SIGNATURE-----
--- a/clamav-0.103.9.tar.gz
+++ b/clamav-0.103.9.tar.gz
@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:bd9345671c8089b2bbbd8c34be3bca04cffa3142cf7a3afc12527037dfd3aa88
+size 16530718
--- a/clamav-0.103.9.tar.gz.sig
+++ b/clamav-0.103.9.tar.gz.sig
@ -0,0 +1,16 @@
+-----BEGIN PGP SIGNATURE-----
+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+=6jk5
+-----END PGP SIGNATURE-----
--- a/clamav.changes
+++ b/clamav.changes
@ -1,3 +1,13 @@
+-------------------------------------------------------------------
+Wed Aug 16 17:32:03 UTC 2023 - Arjen de Korte <suse+build@de-korte.org>
+
+- Update to 0.103.9
+  * CVE-2023-20197: Fixed a possible denial of service vulnerability in
+    the HFS+ file parser. This issue affects versions 1.1.0, 1.0.1 through
+    1.0.0, 0.105.2 through 0.105.0, 0.104.4 through 0.104.0, and 0.103.8
+    through 0.103.0. (boo#1214342)
+  * Fixed compiler warnings that may turn into errors in Clang 16.
+
 -------------------------------------------------------------------
 Wed Feb 15 17:26:43 UTC 2023 - Arjen de Korte <suse+build@de-korte.org>

--- a/clamav.spec
+++ b/clamav.spec
@ -19,7 +19,7 @@
 %bcond_with	clammspack
 %bcond_with	valgrind
 Name:           clamav
-Version:        0.103.8
+Version:        0.103.9
 Release:        0
 Summary:        Antivirus Toolkit
 License:        GPL-2.0-only