pool/clamav
SHA256
3
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
113 Commits 2 Branches 0 Tags 1.5 MiB
Standard ML 100%
06d9b1e3a6
Go to file
Marcus Meissner 06d9b1e3a6 Accepting request 569976 from home:vitezslav_cizek:branches:security 
- Update to security release 0.99.3 (bsc#1077732)
  * CVE-2017-12376 (ClamAV Buffer Overflow in handle_pdfname Vulnerability)
  * CVE-2017-12377 (ClamAV Mew Packet Heap Overflow Vulnerability)
  * CVE-2017-12379 (ClamAV Buffer Overflow in messageAddArgument Vulnerability)
    - these vulnerabilities could have allowed an unauthenticated,
      remote attacker to cause a denial of service (DoS) condition
      or potentially execute arbitrary code on an affected device.
  * CVE-2017-12374 (ClamAV use-after-free Vulnerabilities)
  * CVE-2017-12375 (ClamAV Buffer Overflow Vulnerability)
  * CVE-2017-12378 (ClamAV Buffer Over Read Vulnerability)
  * CVE-2017-12380 (ClamAV Null Dereference Vulnerability)
    - these vulnerabilities could have allowed an unauthenticated,
      remote attacker to cause a denial of service (DoS) condition on an affected device.
  * CVE-2017-6420 (bsc#1052448)
    - this vulnerability allowed remote attackers to cause a denial of service
      (use-after-free) via a crafted PE file with WWPack compression.
  * CVE-2017-6419 (bsc#1052449)
    - ClamAV allowed remote attackers to cause a denial of service
      (heap-based buffer overflow and application crash) or possibly
      have unspecified other impact via a crafted CHM file.
  * CVE-2017-11423 (bsc#1049423)
    - The cabd_read_string function in mspack/cabd.c in libmspack 0.5alpha
      allowed remote attackers to cause a denial of service
      (stack-based buffer over-read and application crash) via a crafted CAB file.
  * CVE-2017-6418 (bsc#1052466)
    - ClamAV 0.99.2 allowed remote attackers to cause a denial
      of service (out-of-bounds read) via a crafted e-mail message.
- drop clamav-0.99.2-openssl-1.1.patch (upstream)

OBS-URL: https://build.opensuse.org/request/show/569976
OBS-URL: https://build.opensuse.org/package/show/security/clamav?expand=0&rev=151
2018-01-26 16:21:11 +00:00
.gitattributes Package cleanup 2013-01-07 13:42:33 +00:00
.gitignore OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/clamav?expand=0&rev=1 2007-01-15 23:07:16 +00:00
clamav-0.99.3.tar.gz Accepting request 569976 from home:vitezslav_cizek:branches:security 2018-01-26 16:21:11 +00:00
clamav-conf.patch - Version 0.98.3 2014-05-08 15:21:16 +00:00
clamav-disable-timestamps.patch Accepting request 569976 from home:vitezslav_cizek:branches:security 2018-01-26 16:21:11 +00:00
clamav-fix_newer_zlib.patch Accepting request 519486 from home:favogt:branches:security 2017-09-05 14:59:05 +00:00
clamav-gcc47.patch Accepting request 109835 from home:dimstar:gcc47 2012-03-20 10:39:33 +00:00
clamav-rpmlintrc OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/clamav?expand=0&rev=13 2008-02-25 16:07:24 +00:00
clamav-tmpfiles.conf Accepting request 412543 from home:faweiss:branches:security 2016-07-21 14:03:06 +00:00
clamav.changes Accepting request 569976 from home:vitezslav_cizek:branches:security 2018-01-26 16:21:11 +00:00
clamav.keyring - Version 0.98 (bnc#841815) 2013-09-28 07:41:14 +00:00
clamav.spec Accepting request 569976 from home:vitezslav_cizek:branches:security 2018-01-26 16:21:11 +00:00
service.clamav-milter Accepting request 314711 from home:pluskalm:branches:security 2015-07-01 13:01:41 +00:00
service.clamd Accepting request 314711 from home:pluskalm:branches:security 2015-07-01 13:01:41 +00:00
service.freshclam Accepting request 226920 from home:bmanojlovic:branches:security 2014-03-28 16:04:21 +00:00