clamav

pool/clamav

SHA256

Fork 1

Commit Graph

Author	SHA256	Message	Date
Marcus Meissner	862d152324	Accepting request 689169 from home:EGDFree:branches:security - Update to version 0.101.2 * CVE-2019-1787: An out-of-bounds heap read condition may occur when scanning PDF documents. The defect is a failure to correctly keep track of the number of bytes remaining in a buffer when indexing file data. * CVE-2019-1789: An out-of-bounds heap read condition may occur when scanning PE files (i.e. Windows EXE and DLL files) that have been packed using Aspack as a result of inadequate bound-checking. * CVE-2019-1788: An out-of-bounds heap write condition may occur when scanning OLE2 files such as Microsoft Office 97-2003 documents. The invalid write happens when an invalid pointer is mistakenly used to initialize a 32bit integer to zero. This is likely to crash the application. - added clamav-max_patch.patch to fix build OBS-URL: https://build.opensuse.org/request/show/689169 OBS-URL: https://build.opensuse.org/package/show/security/clamav?expand=0&rev=181	2019-03-29 10:03:13 +00:00
Reinhard Max	72865bd263	- Update to version 0.101.1: * more details will be added later - Add missing include for str.h to libclamav/others_common.c (clamav-str-h.patch) OBS-URL: https://build.opensuse.org/package/show/security/clamav?expand=0&rev=180	2019-01-21 17:35:52 +00:00

Author

SHA256

Message

Date

Marcus Meissner

862d152324

Accepting request 689169 from home:EGDFree:branches:security

- Update to version 0.101.2
  * CVE-2019-1787:
    An out-of-bounds heap read condition may occur when scanning PDF
    documents. The defect is a failure to correctly keep track of the number
    of bytes remaining in a buffer when indexing file data.
  * CVE-2019-1789:
    An out-of-bounds heap read condition may occur when scanning PE files
    (i.e. Windows EXE and DLL files) that have been packed using Aspack as a
    result of inadequate bound-checking.
  * CVE-2019-1788:
    An out-of-bounds heap write condition may occur when scanning OLE2 files
    such as Microsoft Office 97-2003 documents. The invalid write happens when
    an invalid pointer is mistakenly used to initialize a 32bit integer to
    zero. This is likely to crash the application.
- added clamav-max_patch.patch to fix build

OBS-URL: https://build.opensuse.org/request/show/689169
OBS-URL: https://build.opensuse.org/package/show/security/clamav?expand=0&rev=181

2019-03-29 10:03:13 +00:00

Reinhard Max

72865bd263

- Update to version 0.101.1:

* more details will be added later
- Add missing include for str.h to libclamav/others_common.c
  (clamav-str-h.patch)

OBS-URL: https://build.opensuse.org/package/show/security/clamav?expand=0&rev=180

2019-01-21 17:35:52 +00:00

2 Commits