- Update to 0.103.2
* CVE-2021-1386: Fix for UnRAR DLL load privilege escalation.
Affects 0.103.1 and prior on Windows only.
* CVE-2021-1252: Fix for Excel XLM parser infinite loop. Affects
0.103.0 and 0.103.1 only.
* CVE-2021-1404: Fix for PDF parser buffer over-read; possible
crash. Affects 0.103.0 and 0.103.1 only.
* CVE-2021-1405: Fix for mail parser NULL-dereference crash.
Affects 0.103.1 and prior.
* Fix possible memory leak in PNG parser.
* Fix ClamOnAcc scan on file-creation race condition so files are
scanned after their contents are written.
* FreshClam: Deprecate the SafeBrowsing config option. The
SafeBrowsing option will no longer do anything.
* For more details, see our blog post from last year about the
future of the ClamAV Safe Browsing database.
* FreshClam: Improved HTTP 304, 403, & 429 handling.
* FreshClam: Added back the mirrors.dat file to the database directory.
* FreshClam will now exit with a failure in daemon mode if an HTTP 403
(Forbidden) was received, because retrying later won't help any. The
FreshClam user will have to take actions to get unblocked.
* Fix the FreshClam mirror-sync issue where a downloaded database is
"older than the version advertised."
- Update package signing key (from https://www.clamav.net/downloads)
% clamav.keyring
- Package clamav-milter in a subpackage
- Remove virus signatures upon uninstall
- Check for database existence before starting clamd
- Restart clamd when it exits
OBS-URL: https://build.opensuse.org/request/show/883689
OBS-URL: https://build.opensuse.org/package/show/security/clamav?expand=0&rev=219
* FIXME: Add upstream changes here before submitting to Factory.
* Obsoletes clamav-fix_newer_zlib.patch
- Update key ring and add signature file.
- Remove the logic around building the embedded llvm as the
system-wide llvm is now auto-detected and used.
- Move pc files from the main to the devel package.
OBS-URL: https://build.opensuse.org/package/show/security/clamav?expand=0&rev=161
