1 clamav-cn (3:0.94-7) stable; urgency=high
3 * Ovisnost o najnovijoj verziji koja ispravlja sigurnosne ispravke
4 - [CVE-2008-6680] Fixed division by zero with --detect-broken.
5 - [CVE-2009-1270] clamd and clamscan get hung up.
7 -- Ivan Rako <Ivan.Rako@CARNet.hr> Wed, 22 Apr 2009 14:30:28 +0200
9 clamav-cn (3:0.94-6) stable; urgency=high
11 * Ispravljen exec bit na /etc/cron.hourly/clamav-sanesecurity
13 -- Ivan Rako <Ivan.Rako@CARNet.hr> Sun, 29 Mar 2009 18:37:06 +0200
15 clamav-cn (3:0.94-5) stable; urgency=high
17 * Nova skripta /etc/cron.hourly/clamav-sanesecurity
18 - dodani potpisi za SecuriteInfo
19 - SaneSecurity potpisi se skidaju sa rsync-om
21 -- Ivan Rako <Ivan.Rako@CARNet.hr> Mon, 26 Jan 2009 13:15:53 +0100
23 clamav-cn (3:0.94-4) stable; urgency=high
25 * Ovisnost o najnovijoj verziji koja ispravlja sigurnosne ispravke
26 * Dodan konflikt sa starim libclamav4 (sad se koristi libclamav5)
28 -- Ivan Rako <Ivan.Rako@CARNet.hr> Tue, 18 Nov 2008 16:11:11 +0100
30 clamav-cn (3:0.94-3) stable; urgency=medium
32 * Ovisnost o najnovijoj verziji koja ispravlja sigurnosne ispravke
34 -- Ivan Rako <Ivan.Rako@CARNet.hr> Tue, 18 Nov 2008 16:11:11 +0100
36 clamav-cn (3:0.94-2) stable; urgency=medium
38 * Sitna izmjena u clamav-sanesecurity
40 -- Ivan Rako <Ivan.Rako@CARNet.hr> Thu, 9 Oct 2008 19:48:44 +0200
42 clamav-cn (3:0.94-1) stable; urgency=medium
44 * Ovisnost o novoj upstream verziji
45 * Dodana skripta za skidanje SANE potpisa za phishing & scam
46 (/etc/cron.hourly/clamav-sanesecurity)
47 * Dodana ovisnost o rsyncu i curlu zbog potreba SANE skripte
49 -- Ivan Rako <Ivan.Rako@CARNet.hr> Mon, 29 Sep 2008 16:02:06 +0200
51 clamav-cn (3:0.93.1-1) stable; urgency=high
53 * Ovisnost o najnovijoj upstream verziji
54 * Dodan konflikt sa libclamav{1,2,3}
56 -- Ivan Rako <Ivan.Rako@CARNet.hr> Tue, 15 Jul 2008 12:50:49 +0200
58 clamav-cn (3:0.92.1-2) stable; urgency=high
60 * Ovisnost o najnovijoj verziji koja ispravlja nekoliko sigurnosnih
62 - libclamav/pe.c: possible integer overflow in wwpack
63 - [CVE-2008-1100]: libclamav/pe.c: possible integer overflow in upack
64 - [CVE-2008-1387]: libclamav/spin.c: possible integer overflow
65 - libclamav/unarj.c: DoS in unarj
67 -- Ivan Rako <Ivan.Rako@CARNet.hr> Tue, 22 Apr 2008 14:57:46 +0200
69 clamav-cn (3:0.92.1-1) stable; urgency=high
71 * Ovisnost o najnovijoj verziji koja ispravlja nekoliko sigurnosnih
73 - [2007-6595]: libclamav/others.c: symlink vulnerability
74 cli_gentempfd now calls open with O_EXCL (closes: #458532)
75 - [CVE-2008-0318]: libclamav/pe.c: possible integer overflow
76 - libclamav/mew.c: possible heap corruption
78 -- Ivan Rako <Ivan.Rako@CARNet.hr> Thu, 21 Feb 2008 19:32:05 +0100
80 clamav-cn (3:0.90.1-1) stable; urgency=medium
82 * izdanje paketa za Etch
83 * prva verzija sa source paketom
85 -- Ivan Rako <Ivan.Rako@CARNet.hr> Tue, 18 Sep 2007 16:28:42 +0200
87 clamav-cn (2:0.91.1-1) carnet-sarge; urgency=high
89 * Ovisnost o novoj upstream verziji:
90 - ispravlja CVE-2007-3725 (DoS in unrarvm.c).
91 * Obnovljen predlozak clamd.conf datoteke, takodjer forsirana i
92 zamjena freshclam.conf jer Debianov paket iskljuci NotifyClamd.
94 -- Zoran Dzelajlija <zoran.dzelajlija@carnet.hr> Fri, 27 Jul 2007 14:29:02 +0200
96 clamav-cn (2:0.90.3-3) carnet-sarge; urgency=medium
98 * Ispravljena opcija AllowSupplementaryGroups
100 -- Ivan Rako <Ivan.Rako@CARNet.hr> Tue, 3 Jul 2007 13:15:02 +0200
102 clamav-cn (2:0.90.3-2) carnet-sarge; urgency=medium
104 * Ispravljena opcija NotifyClamd
106 -- Ivan Rako <Ivan.Rako@CARNet.hr> Fri, 15 Jun 2007 00:52:13 +0200
108 clamav-cn (2:0.90.3-1) carnet-sarge; urgency=high
110 * Nova upstream verzija
111 * Sigurnosne ispravke
113 -- Ivan Rako <Ivan.Rako@CARNet.hr> Sun, 10 Jun 2007 12:52:26 +0200
115 clamav-cn (2:0.90.2-1) carnet-sarge; urgency=high
117 * Nova upstream verzija
120 -- Ivan 'ico' Rako <irako@srce.hr> Tue, 17 Apr 2007 18:17:04 +0200
122 clamav-cn (2:0.88.7-1) carnet-sarge; urgency=medium
124 * Nova upstream verzija, razne ispravke:
125 - libclamav/message.c: handle consecutive errors in base64 decoding
126 - libclamav/mbox.c: honour recursion limit when scanning email messages
127 - clamscan: new option --mail-max-recursion
128 - clamd/clamav-milter: new option MailMaxRecursion
129 - libclamav/untar.c: honour archive limits
131 -- Ivan Rako <Ivan.Rako@CARNet.hr> Fri, 15 Dec 2006 23:56:40 +0100
133 clamav-cn (2:0.88.6-1) carnet-sarge; urgency=medium
135 * Nova upstream verzija, razne ispravke:
136 - freshclam: apply timeout patch from Everton da Silva Marques
137 <everton*lab.ipaccess.diveo.net.br> (new options: ConnectTimeout and
139 - clamd: change stack size at the right place (closes bug#103)
140 Patch from Jonathan Chen <jon+clamav*spock.org>
141 - libclamav/petite.c: sanity check the number of rebuilt sections (speeds
142 up handling of malformed files)
144 -- Ivan Rako <Ivan.Rako@CARNet.hr> Sun, 26 Nov 2006 21:24:12 +0100
146 clamav-cn (2:0.88.5-1) sarge; urgency=high
148 * Nova upstream verzija, sigurnosne ispravke:
149 - libclamav/rebuildpe.c: fix possible heap overflow [IDEF1597]
150 - libclamav/chmunpack.c: fix possible crash [IDEF1736]
152 -- Ivan 'ico' Rako <irako@srce.hr> Thu, 19 Oct 2006 13:03:56 +0200
154 clamav-cn (2:0.88.4-1) sarge; urgency=high
156 * Nova upstream verzija, sigurnosna ispravka:
157 - libclamav/upx.c: fix possible heap overflow
158 See http://www.clamav.net/security/0.88.4.html for details.
160 -- Zoran Dzelajlija <jelly+paketi@adu.hr> Mon, 14 Aug 2006 10:50:39 +0200
162 clamav-cn (2:0.88.3-1) sarge; urgency=high
164 * Nova upstream verzija
166 - libclamav/matcher-ac.c: fix possible false matches of alternatives
167 Problem reported by Nicolas Riendeau <knightr*istop.com>
168 - libclamav: Large binhex files were not being handled gracefully. Tidied
169 the handling code. Note that large binhex are not currently decoded.
171 - libclamav/scanners.c: fix zero allocation warning reported by Sergey
174 -- Ivan 'ico' Rako <irako@srce.hr> Thu, 20 Jul 2006 22:46:35 +0200
176 clamav-cn (2:0.88.2-1) sarge; urgency=high
178 * Nova upstream verzija (kompajlirano iz source paketa sa
179 volatile repozitorija)
181 - freshclam/manager.c: fix possible buffer overflow
182 Reported by Ulf Harnhammar <metaur*telia.com> and Peter <remllov_*gmx.de>
183 See http://www.clamav.net/security/0.88.2.html for details.
184 - libclamav/zziplib/zzip-zip.c: add missing #include "others.h"
185 Patch by Alex Deiter <tiamat*komi.mts.ru>
186 - fix other implicit function declarations
187 Thanks to Paul Fisher <pnfisher*berkeley.edu>, Ludwig Nussel
188 <ludwig.nussel*suse.de> and Stephen Gran <steve*lobefin.net>
189 - shared/cfgparser.c: don't use CL_FULLSTR for file directives
190 Requested by Tomasz Papszun and others
191 - libclamav/mbox.c: fix compilation error on CYGWIN
192 - clamav-milter: Ensure that the quarantine location reported in
193 notifications is correct.
194 Patch by Simon Munton <simon at nidoran.m5data.com>
195 * Ispravlja sigurnosni propust: CVE-2006-1989
197 -- Ivan 'ico' Rako <irako@srce.hr> Thu, 6 Apr 2006 08:04:48 +0200
199 clamav-cn (2:0.88.1-1) sarge; urgency=high
201 * Nova upstream verzija (kompajlirano iz source paketa sa
202 volatile repozitorija)
203 * Ispravke pogresaka:
204 - libclamav/matcher.c: properly handle partial reads in cli_scandesc()
205 - libclamav/mbox.c: sync with CVS, fixes detection of Worm.Bagle.CT
206 - freshclam: fix support for LocalIPAddress
207 Patch by Anton Yuzhaninov <citrin*citrin.ru>
208 - docs/man: multiple manpage typo fixes
209 Patch by A. Costa <agcosta*gis.net>)
210 - shared/output.c: properly handle return value of vsnprintf
211 Thanks to Anton Yuzhaninov <citrin*rambler-co.ru>
212 - libclamav/htmlnorm.c: fix typo spotted by Gianluigi Tiesi
214 - sigtool/sigtool.c: fix possible crash in build(), thanks to Sven
215 - clamd/session.c: remove static timeout (5s) for SESSION
216 Pointed out by Joseph Benden <joe*thrallingpenguin.com>
217 - libclamav/pe.c: fix possible integer overflow reported by Damian Put
218 Note: only exploitable if file size limit (ArchiveMaxFileSize) disabled
219 - libclamav/scanners.c: properly report archive unpacking errors
220 Problem spotted by David F. Skoll <dfs*roaringpenguin.com>
221 - libclamav/others.c: fix possible crash in cli_bitset_test()
222 Reported by David Luyer <david_luyer*pacific.net.au>
223 - libclamav/zziplib: fix possible crash on FreeBSD
224 Reported by Robert Rebbun <robert*desertsurf.com>
225 - clamav-milter: fall back if sendfile() fails
226 * Ispravlja sigurnosne propuste: CVE-2006-1614, CVE-2006-1615,
229 -- Ivan 'ico' Rako <irako@srce.hr> Thu, 6 Apr 2006 08:04:48 +0200
231 clamav-cn (2:0.88-1) sarge; urgency=high
233 * Nova upstream verzija (kompajlirano iz source paketa sa volatile
236 * Ispravlja sigurnosni propust CVE-2006-0162
238 -- Ivan 'ico' Rako <irako@srce.hr> Thu, 12 Jan 2006 18:51:11 +0100
240 clamav-cn (2:0.87.1-1) sarge; urgency=high
242 * Nova upstream verzija (kompajlirano iz source paketa sa volatile
245 * Ispravlja sigurnosne nedostatke: CVE-2005-3239, CVE-2005-3303,
246 CVE-2005-3500 i CVE-2005-3501
248 -- Ivan 'ico' Rako <irako@srce.hr> Sun, 6 Nov 2005 17:23:18 +0100
250 clamav-cn (2:0.87-0) sarge; urgency=high
252 * Nova upstream verzija (kompajlirano iz source paketa sa volatile
254 * Ispravke sigurnosnih bugova prilikom hendlanja UPX i FSG kompresiranih
255 izvrsnih datoteka (CAN-2005-2920 i CAN-2005-2919)
257 -- Ivan 'ico' Rako <irako@srce.hr> Mon, 19 Sep 2005 15:19:58 +0200
259 clamav-cn (2:0.86.2-1) sarge; urgency=high
261 * nova upstream verzija
262 * ovisnost o novoj verziji koja ispravlja sigurnosni nedostatak
263 opisan na <URL:http://www.rem0te.com/public/images/clamav.pdf>
265 -- Ivan 'ico' Rako <irako@srce.hr> Fri, 29 Jul 2005 11:34:53 +0200
267 clamav-cn (2:0.86.1-1.1) sarge; urgency=high
269 * dodana ovisnost o paketu clamav
271 -- Ivan 'ico' Rako <irako@srce.hr> Thu, 14 Jul 2005 22:34:52 +0200
273 clamav-cn (2:0.86.1-1) sarge; urgency=high
275 * nova upstream verzija
276 * ovisnost o novoj verziji koja ispravlja vise sigurnosnih problema
277 (CAN-2005-1922, CAN-2005-1923, CAN-2005-2056, CAN-2005-2070 i DSA 737-1)
279 -- Ivan 'ico' Rako <irako@srce.hr> Wed, 6 Jul 2005 14:41:06 +0200
281 clamav-cn (2:0.85.1-2) sarge; urgency=medium
283 * nova upstream verzija
284 * kozmetika postinsta
285 * restarta clamav-{daemon,freshclam} samo ako je potrebno
287 -- Ivan 'ico' Rako <irako@srce.hr> Thu, 19 May 2005 14:51:41 +0200
289 clamav-cn (2:0.83-3.1) testing; urgency=low
291 * backup_conffile -> cp_backup_conffile
293 -- Ivan 'ico' Rako <irako@srce.hr> Tue, 29 Mar 2005 09:40:02 +0200
295 clamav-cn (2:0.83-3) testing; urgency=low
297 * postinst koristi funkcije iz novog carnet-tools-cn paketa
299 -- Ivan 'ico' Rako <irako@srce.hr> Thu, 17 Mar 2005 15:53:34 +0100
301 clamav-cn (2:0.81-2) testing; urgency=low
303 * nova upstream verzija
305 -- Ivan 'ico' Rako <irako@srce.hr> Fri, 28 Jan 2005 15:36:02 +0100
307 clamav-cn (2:0.80-2) testing; urgency=high
309 * popravlja /etc/logrotate.d/clamav-daemon i
310 /etc/logrotate.d/clamav-freshclam (T# 2005010813000012)
311 * kozmetika postinsta
313 -- Ivan 'ico' Rako <irako@srce.hr> Sun, 9 Jan 2005 13:08:12 +0100
315 clamav-cn (2:0.80-1) testing; urgency=high
317 * /etc/clamav/clamav.conf -> /etc/clamav/clamd.conf
318 * kozmetika postinsta
319 * nova majorna verzija
321 -- Ivan 'ico' Rako <irako@srce.hr> Mon, 8 Nov 2004 14:28:05 +0100
323 clamav-cn (2:0.75.1-1) testing; urgency=high
325 * Ispravljen bug u /etc/clamav/freshclam.conf (OTRS #2004090810000014)
326 * Vracen User clamav i DatabaseOwner clamav
327 * Maknuto divertanje konfiguracijske datoteke
329 -- Ivan 'ico' Rako <irako@srce.hr> Mon, 20 Sep 2004 08:59:22 +0200
331 clamav-cn (2:0.70-2) testing; urgency=high
333 * Inacica paketa koja ispravlja sigurnosni nedostatak Bugtraq ID: 9897
334 ("Udaljeno uskracivanje resursa preko RAR arhiva")
335 * Konflikta s verzijama iz woody distribucije
337 -- Zeljko Boros <zelja@ravnica.ptfos.hr> Tue, 30 Mar 2004 13:07:16 +0200
339 clamav-cn (2:0.70-1) testing; urgency=low
341 * Dodano redirektiranje konfiguracije Debian na CARNetovu konfiguraciju
342 * Pokretanje clamav-freshclam daemona ako nije pokrenut
344 -- Zeljko Boros <zelja@ravnica.ptfos.hr> Mon, 29 Mar 2004 09:46:04 +0200
346 clamav-cn (0.67-2) unstable; urgency=low
348 * Nova inacica paketa
350 -- Zeljko Boros <zelja@ravnica.ptfos.hr> Tue, 24 Feb 2004 19:10:06 +0100