1 clamav-cn (3:0.92.1-2) stable; urgency=high
3 * Ovisnost o najnovijoj verziji koja ispravlja nekoliko sigurnosnih
5 - libclamav/pe.c: possible integer overflow in wwpack
6 - [CVE-2008-1100]: libclamav/pe.c: possible integer overflow in upack
7 - [CVE-2008-1387]: libclamav/spin.c: possible integer overflow
8 - libclamav/unarj.c: DoS in unarj
10 -- Ivan Rako <Ivan.Rako@CARNet.hr> Tue, 22 Apr 2008 14:57:46 +0200
12 clamav-cn (3:0.92.1-1) stable; urgency=high
14 * Ovisnost o najnovijoj verziji koja ispravlja nekoliko sigurnosnih
16 - [2007-6595]: libclamav/others.c: symlink vulnerability
17 cli_gentempfd now calls open with O_EXCL (closes: #458532)
18 - [CVE-2008-0318]: libclamav/pe.c: possible integer overflow
19 - libclamav/mew.c: possible heap corruption
21 -- Ivan Rako <Ivan.Rako@CARNet.hr> Thu, 21 Feb 2008 19:32:05 +0100
23 clamav-cn (3:0.90.1-1) stable; urgency=medium
25 * izdanje paketa za Etch
26 * prva verzija sa source paketom
28 -- Ivan Rako <Ivan.Rako@CARNet.hr> Tue, 18 Sep 2007 16:28:42 +0200
30 clamav-cn (2:0.91.1-1) carnet-sarge; urgency=high
32 * Ovisnost o novoj upstream verziji:
33 - ispravlja CVE-2007-3725 (DoS in unrarvm.c).
34 * Obnovljen predlozak clamd.conf datoteke, takodjer forsirana i
35 zamjena freshclam.conf jer Debianov paket iskljuci NotifyClamd.
37 -- Zoran Dzelajlija <zoran.dzelajlija@carnet.hr> Fri, 27 Jul 2007 14:29:02 +0200
39 clamav-cn (2:0.90.3-3) carnet-sarge; urgency=medium
41 * Ispravljena opcija AllowSupplementaryGroups
43 -- Ivan Rako <Ivan.Rako@CARNet.hr> Tue, 3 Jul 2007 13:15:02 +0200
45 clamav-cn (2:0.90.3-2) carnet-sarge; urgency=medium
47 * Ispravljena opcija NotifyClamd
49 -- Ivan Rako <Ivan.Rako@CARNet.hr> Fri, 15 Jun 2007 00:52:13 +0200
51 clamav-cn (2:0.90.3-1) carnet-sarge; urgency=high
53 * Nova upstream verzija
56 -- Ivan Rako <Ivan.Rako@CARNet.hr> Sun, 10 Jun 2007 12:52:26 +0200
58 clamav-cn (2:0.90.2-1) carnet-sarge; urgency=high
60 * Nova upstream verzija
63 -- Ivan 'ico' Rako <irako@srce.hr> Tue, 17 Apr 2007 18:17:04 +0200
65 clamav-cn (2:0.88.7-1) carnet-sarge; urgency=medium
67 * Nova upstream verzija, razne ispravke:
68 - libclamav/message.c: handle consecutive errors in base64 decoding
69 - libclamav/mbox.c: honour recursion limit when scanning email messages
70 - clamscan: new option --mail-max-recursion
71 - clamd/clamav-milter: new option MailMaxRecursion
72 - libclamav/untar.c: honour archive limits
74 -- Ivan Rako <Ivan.Rako@CARNet.hr> Fri, 15 Dec 2006 23:56:40 +0100
76 clamav-cn (2:0.88.6-1) carnet-sarge; urgency=medium
78 * Nova upstream verzija, razne ispravke:
79 - freshclam: apply timeout patch from Everton da Silva Marques
80 <everton*lab.ipaccess.diveo.net.br> (new options: ConnectTimeout and
82 - clamd: change stack size at the right place (closes bug#103)
83 Patch from Jonathan Chen <jon+clamav*spock.org>
84 - libclamav/petite.c: sanity check the number of rebuilt sections (speeds
85 up handling of malformed files)
87 -- Ivan Rako <Ivan.Rako@CARNet.hr> Sun, 26 Nov 2006 21:24:12 +0100
89 clamav-cn (2:0.88.5-1) sarge; urgency=high
91 * Nova upstream verzija, sigurnosne ispravke:
92 - libclamav/rebuildpe.c: fix possible heap overflow [IDEF1597]
93 - libclamav/chmunpack.c: fix possible crash [IDEF1736]
95 -- Ivan 'ico' Rako <irako@srce.hr> Thu, 19 Oct 2006 13:03:56 +0200
97 clamav-cn (2:0.88.4-1) sarge; urgency=high
99 * Nova upstream verzija, sigurnosna ispravka:
100 - libclamav/upx.c: fix possible heap overflow
101 See http://www.clamav.net/security/0.88.4.html for details.
103 -- Zoran Dzelajlija <jelly+paketi@adu.hr> Mon, 14 Aug 2006 10:50:39 +0200
105 clamav-cn (2:0.88.3-1) sarge; urgency=high
107 * Nova upstream verzija
109 - libclamav/matcher-ac.c: fix possible false matches of alternatives
110 Problem reported by Nicolas Riendeau <knightr*istop.com>
111 - libclamav: Large binhex files were not being handled gracefully. Tidied
112 the handling code. Note that large binhex are not currently decoded.
114 - libclamav/scanners.c: fix zero allocation warning reported by Sergey
117 -- Ivan 'ico' Rako <irako@srce.hr> Thu, 20 Jul 2006 22:46:35 +0200
119 clamav-cn (2:0.88.2-1) sarge; urgency=high
121 * Nova upstream verzija (kompajlirano iz source paketa sa
122 volatile repozitorija)
124 - freshclam/manager.c: fix possible buffer overflow
125 Reported by Ulf Harnhammar <metaur*telia.com> and Peter <remllov_*gmx.de>
126 See http://www.clamav.net/security/0.88.2.html for details.
127 - libclamav/zziplib/zzip-zip.c: add missing #include "others.h"
128 Patch by Alex Deiter <tiamat*komi.mts.ru>
129 - fix other implicit function declarations
130 Thanks to Paul Fisher <pnfisher*berkeley.edu>, Ludwig Nussel
131 <ludwig.nussel*suse.de> and Stephen Gran <steve*lobefin.net>
132 - shared/cfgparser.c: don't use CL_FULLSTR for file directives
133 Requested by Tomasz Papszun and others
134 - libclamav/mbox.c: fix compilation error on CYGWIN
135 - clamav-milter: Ensure that the quarantine location reported in
136 notifications is correct.
137 Patch by Simon Munton <simon at nidoran.m5data.com>
138 * Ispravlja sigurnosni propust: CVE-2006-1989
140 -- Ivan 'ico' Rako <irako@srce.hr> Thu, 6 Apr 2006 08:04:48 +0200
142 clamav-cn (2:0.88.1-1) sarge; urgency=high
144 * Nova upstream verzija (kompajlirano iz source paketa sa
145 volatile repozitorija)
146 * Ispravke pogresaka:
147 - libclamav/matcher.c: properly handle partial reads in cli_scandesc()
148 - libclamav/mbox.c: sync with CVS, fixes detection of Worm.Bagle.CT
149 - freshclam: fix support for LocalIPAddress
150 Patch by Anton Yuzhaninov <citrin*citrin.ru>
151 - docs/man: multiple manpage typo fixes
152 Patch by A. Costa <agcosta*gis.net>)
153 - shared/output.c: properly handle return value of vsnprintf
154 Thanks to Anton Yuzhaninov <citrin*rambler-co.ru>
155 - libclamav/htmlnorm.c: fix typo spotted by Gianluigi Tiesi
157 - sigtool/sigtool.c: fix possible crash in build(), thanks to Sven
158 - clamd/session.c: remove static timeout (5s) for SESSION
159 Pointed out by Joseph Benden <joe*thrallingpenguin.com>
160 - libclamav/pe.c: fix possible integer overflow reported by Damian Put
161 Note: only exploitable if file size limit (ArchiveMaxFileSize) disabled
162 - libclamav/scanners.c: properly report archive unpacking errors
163 Problem spotted by David F. Skoll <dfs*roaringpenguin.com>
164 - libclamav/others.c: fix possible crash in cli_bitset_test()
165 Reported by David Luyer <david_luyer*pacific.net.au>
166 - libclamav/zziplib: fix possible crash on FreeBSD
167 Reported by Robert Rebbun <robert*desertsurf.com>
168 - clamav-milter: fall back if sendfile() fails
169 * Ispravlja sigurnosne propuste: CVE-2006-1614, CVE-2006-1615,
172 -- Ivan 'ico' Rako <irako@srce.hr> Thu, 6 Apr 2006 08:04:48 +0200
174 clamav-cn (2:0.88-1) sarge; urgency=high
176 * Nova upstream verzija (kompajlirano iz source paketa sa volatile
179 * Ispravlja sigurnosni propust CVE-2006-0162
181 -- Ivan 'ico' Rako <irako@srce.hr> Thu, 12 Jan 2006 18:51:11 +0100
183 clamav-cn (2:0.87.1-1) sarge; urgency=high
185 * Nova upstream verzija (kompajlirano iz source paketa sa volatile
188 * Ispravlja sigurnosne nedostatke: CVE-2005-3239, CVE-2005-3303,
189 CVE-2005-3500 i CVE-2005-3501
191 -- Ivan 'ico' Rako <irako@srce.hr> Sun, 6 Nov 2005 17:23:18 +0100
193 clamav-cn (2:0.87-0) sarge; urgency=high
195 * Nova upstream verzija (kompajlirano iz source paketa sa volatile
197 * Ispravke sigurnosnih bugova prilikom hendlanja UPX i FSG kompresiranih
198 izvrsnih datoteka (CAN-2005-2920 i CAN-2005-2919)
200 -- Ivan 'ico' Rako <irako@srce.hr> Mon, 19 Sep 2005 15:19:58 +0200
202 clamav-cn (2:0.86.2-1) sarge; urgency=high
204 * nova upstream verzija
205 * ovisnost o novoj verziji koja ispravlja sigurnosni nedostatak
206 opisan na <URL:http://www.rem0te.com/public/images/clamav.pdf>
208 -- Ivan 'ico' Rako <irako@srce.hr> Fri, 29 Jul 2005 11:34:53 +0200
210 clamav-cn (2:0.86.1-1.1) sarge; urgency=high
212 * dodana ovisnost o paketu clamav
214 -- Ivan 'ico' Rako <irako@srce.hr> Thu, 14 Jul 2005 22:34:52 +0200
216 clamav-cn (2:0.86.1-1) sarge; urgency=high
218 * nova upstream verzija
219 * ovisnost o novoj verziji koja ispravlja vise sigurnosnih problema
220 (CAN-2005-1922, CAN-2005-1923, CAN-2005-2056, CAN-2005-2070 i DSA 737-1)
222 -- Ivan 'ico' Rako <irako@srce.hr> Wed, 6 Jul 2005 14:41:06 +0200
224 clamav-cn (2:0.85.1-2) sarge; urgency=medium
226 * nova upstream verzija
227 * kozmetika postinsta
228 * restarta clamav-{daemon,freshclam} samo ako je potrebno
230 -- Ivan 'ico' Rako <irako@srce.hr> Thu, 19 May 2005 14:51:41 +0200
232 clamav-cn (2:0.83-3.1) testing; urgency=low
234 * backup_conffile -> cp_backup_conffile
236 -- Ivan 'ico' Rako <irako@srce.hr> Tue, 29 Mar 2005 09:40:02 +0200
238 clamav-cn (2:0.83-3) testing; urgency=low
240 * postinst koristi funkcije iz novog carnet-tools-cn paketa
242 -- Ivan 'ico' Rako <irako@srce.hr> Thu, 17 Mar 2005 15:53:34 +0100
244 clamav-cn (2:0.81-2) testing; urgency=low
246 * nova upstream verzija
248 -- Ivan 'ico' Rako <irako@srce.hr> Fri, 28 Jan 2005 15:36:02 +0100
250 clamav-cn (2:0.80-2) testing; urgency=high
252 * popravlja /etc/logrotate.d/clamav-daemon i
253 /etc/logrotate.d/clamav-freshclam (T# 2005010813000012)
254 * kozmetika postinsta
256 -- Ivan 'ico' Rako <irako@srce.hr> Sun, 9 Jan 2005 13:08:12 +0100
258 clamav-cn (2:0.80-1) testing; urgency=high
260 * /etc/clamav/clamav.conf -> /etc/clamav/clamd.conf
261 * kozmetika postinsta
262 * nova majorna verzija
264 -- Ivan 'ico' Rako <irako@srce.hr> Mon, 8 Nov 2004 14:28:05 +0100
266 clamav-cn (2:0.75.1-1) testing; urgency=high
268 * Ispravljen bug u /etc/clamav/freshclam.conf (OTRS #2004090810000014)
269 * Vracen User clamav i DatabaseOwner clamav
270 * Maknuto divertanje konfiguracijske datoteke
272 -- Ivan 'ico' Rako <irako@srce.hr> Mon, 20 Sep 2004 08:59:22 +0200
274 clamav-cn (2:0.70-2) testing; urgency=high
276 * Inacica paketa koja ispravlja sigurnosni nedostatak Bugtraq ID: 9897
277 ("Udaljeno uskracivanje resursa preko RAR arhiva")
278 * Konflikta s verzijama iz woody distribucije
280 -- Zeljko Boros <zelja@ravnica.ptfos.hr> Tue, 30 Mar 2004 13:07:16 +0200
282 clamav-cn (2:0.70-1) testing; urgency=low
284 * Dodano redirektiranje konfiguracije Debian na CARNetovu konfiguraciju
285 * Pokretanje clamav-freshclam daemona ako nije pokrenut
287 -- Zeljko Boros <zelja@ravnica.ptfos.hr> Mon, 29 Mar 2004 09:46:04 +0200
289 clamav-cn (0.67-2) unstable; urgency=low
291 * Nova inacica paketa
293 -- Zeljko Boros <zelja@ravnica.ptfos.hr> Tue, 24 Feb 2004 19:10:06 +0100