rpms/clamav/EL-4 clamav-0.93.3-initoff.patch, NONE, 1.1 clamav-0.93.3-pid.patch, NONE, 1.1 .cvsignore, 1.9, 1.10 clamav.spec, 1.36, 1.37 sources, 1.22, 1.23 clamav-0.80-initoff.patch, 1.2, NONE
Robert Scheck (robert)
fedora-extras-commits at redhat.com
Mon Jul 14 10:35:43 UTC 2008
- Previous message (by thread): rpms/rhythmbox/devel rhythmbox.spec,1.194,1.195
- Next message (by thread): rpms/clamav/EL-5 clamav-0.93.3-initoff.patch, NONE, 1.1 clamav-0.93.3-pid.patch, NONE, 1.1 .cvsignore, 1.9, 1.10 clamav.spec, 1.51, 1.52 sources, 1.25, 1.26 clamav-0.80-initoff.patch, 1.2, NONE
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
Author: robert
Update of /cvs/pkgs/rpms/clamav/EL-4
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv18433/EL-4
Modified Files:
.cvsignore clamav.spec sources
Added Files:
clamav-0.93.3-initoff.patch clamav-0.93.3-pid.patch
Removed Files:
clamav-0.80-initoff.patch
Log Message:
- Upgrade to 0.93.3 (SECURITY), rediffed -initoff patch:
- CVE-2008-2713 Out-of-bounds read on petite files
- Put pid instead of pgrp into pid file of clamav-milter (#452359)
clamav-0.93.3-initoff.patch:
--- NEW FILE clamav-0.93.3-initoff.patch ---
--- clamav-0.93.3/contrib/init/RedHat/clamav-milter.initoff
+++ clamav-0.93.3/contrib/init/RedHat/clamav-milter
@@ -2,7 +2,7 @@
#
# clamav-milter This script starts and stops the clamav-milter daemon
#
-# chkconfig: 2345 79 40
+# chkconfig: - 79 40
#
# description: clamav-milter is a daemon which hooks into sendmail and routes \
# email messages for virus scanning with ClamAV
clamav-0.93.3-pid.patch:
--- NEW FILE clamav-0.93.3-pid.patch ---
Try to fix https://bugzilla.redhat.com/show_bug.cgi?id=452359; RH/Fedora
initscripts do not support killing of whole processgroups. Hence, disable
feature which posts negative pgrp into pidfile and use plain pid instead
of.
diff -up clamav-0.93.3/clamav-milter/clamav-milter.c.~1~ clamav-0.93.3/clamav-milter/clamav-milter.c
--- clamav-0.93.3/clamav-milter/clamav-milter.c.~1~ 2008-07-07 20:02:10.000000000 +0200
+++ clamav-0.93.3/clamav-milter/clamav-milter.c 2008-07-13 20:15:12.000000000 +0200
@@ -1985,7 +1985,7 @@ main(int argc, char **argv)
logg(_("!Can't save PID in file %s\n"), pidfile);
return EX_CONFIG;
}
-#ifdef C_LINUX
+#if defined(C_LINUX) && 0
/* Ensure that all threads are kill()ed */
fprintf(fd, "-%d\n", (int)getpgrp());
#else
Index: .cvsignore
===================================================================
RCS file: /cvs/pkgs/rpms/clamav/EL-4/.cvsignore,v
retrieving revision 1.9
retrieving revision 1.10
diff -u -r1.9 -r1.10
--- .cvsignore 18 Jun 2008 10:10:58 -0000 1.9
+++ .cvsignore 14 Jul 2008 10:33:58 -0000 1.10
@@ -1 +1 @@
-clamav-0.93.1-norar.tar.bz2
+clamav-0.93.3-norar.tar.bz2
Index: clamav.spec
===================================================================
RCS file: /cvs/pkgs/rpms/clamav/EL-4/clamav.spec,v
retrieving revision 1.36
retrieving revision 1.37
diff -u -r1.36 -r1.37
--- clamav.spec 18 Jun 2008 10:10:58 -0000 1.36
+++ clamav.spec 14 Jul 2008 10:33:58 -0000 1.37
@@ -1,5 +1,3 @@
-## $Id$
-
## Fedora Extras specific customization below...
# %bcond_without fedora
##
@@ -15,7 +13,7 @@
Summary: End-user tools for the Clam Antivirus scanner
Name: clamav
-Version: 0.93.1
+Version: 0.93.3
Release: 1%{?dist}
License: GPLv2
@@ -37,9 +35,10 @@
Source7: clamd.SERVICE.init
Source8: clamav-notify-servers
Patch21: clamav-0.93.1-path.patch
-Patch22: clamav-0.80-initoff.patch
+Patch22: clamav-0.93.3-initoff.patch
Patch24: clamav-0.90rc3-private.patch
Patch25: clamav-0.92-open.patch
+Patch26: clamav-0.93.3-pid.patch
BuildRoot: %_tmppath/%name-%version-%release-root
Requires: clamav-lib = %version-%release
Requires: data(clamav)
@@ -230,6 +229,7 @@
%patch22 -p1 -b .initoff
%patch24 -p1 -b .private
%patch25 -p1 -b .open
+%patch26 -p1 -b .pid
mkdir -p libclamunrar{,_iface}
touch libclamunrar/{Makefile.in,all,install}
@@ -501,8 +501,13 @@
%changelog
+* Mon Jul 14 2008 Robert Scheck <robert at fedoraproject.org> - 0.93.3-1
+- Upgrade to 0.93.3 (SECURITY), rediffed -initoff patch:
+- CVE-2008-2713 Out-of-bounds read on petite files
+- Put pid instead of pgrp into pid file of clamav-milter (#452359)
+
* Wed Jun 18 2008 Robert Scheck <robert at fedoraproject.org> - 0.93.1-1
-- Upgrade to 0.93.1, rediffed -path patch
+- Upgrade to 0.93.1 (SECURITY), rediffed -path patch:
- CVE-2008-2713 Invalid Memory Access Denial Of Service Vulnerability
* Mon Apr 14 2008 Robert Scheck <robert at fedoraproject.org> - 0.93-1
Index: sources
===================================================================
RCS file: /cvs/pkgs/rpms/clamav/EL-4/sources,v
retrieving revision 1.22
retrieving revision 1.23
diff -u -r1.22 -r1.23
--- sources 18 Jun 2008 10:10:58 -0000 1.22
+++ sources 14 Jul 2008 10:33:58 -0000 1.23
@@ -1 +1 @@
-c9eca40bd39cc049b3b2b424879fa06e clamav-0.93.1-norar.tar.bz2
+53d288ddafd9cc198eeb69ffe8c83d02 clamav-0.93.3-norar.tar.bz2
--- clamav-0.80-initoff.patch DELETED ---
- Previous message (by thread): rpms/rhythmbox/devel rhythmbox.spec,1.194,1.195
- Next message (by thread): rpms/clamav/EL-5 clamav-0.93.3-initoff.patch, NONE, 1.1 clamav-0.93.3-pid.patch, NONE, 1.1 .cvsignore, 1.9, 1.10 clamav.spec, 1.51, 1.52 sources, 1.25, 1.26 clamav-0.80-initoff.patch, 1.2, NONE
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the fedora-extras-commits
mailing list