Hello community, here is the log from the commit of package clamav checked in at Mon Apr 21 18:37:33 CEST 2008. -------- --- clamav/clamav.changes 2008-02-15 01:17:51.000000000 +0100 +++ /mounts/work_src_done/STABLE/clamav/clamav.changes 2008-04-18 19:24:16.000000000 +0200 @@ -1,0 +2,20 @@ +Fri Apr 18 19:04:35 CEST 2008 - max@suse.de + +- Convert the database to the new format instead of running + freshclam to re-fetch it (bnc#380787). +- Added main.cld and daily.cld as %ghost +- Refined the logic in %post of clamav-db as to when the dist + files need to get copied over. + +------------------------------------------------------------------- +Tue Apr 15 13:07:00 CEST 2008 - max@suse.de + +- Security update 0.93 (bnc#350987, bnc#368963). +- CVE-2007-6595: symlink attack on temporary files +- CVE-2007-6596: recognize Base64 UUEncoded archives +- CVE-2008-1100: Buffer overflow in the cli_scanpe function. +- Remove bogus dependencies from libclamav.pc (bnc#196236) +- Run freshclam on update before restarting clamd to convert the + database into the new format. + +------------------------------------------------------------------- Old: ---- clamav-0.92.1.tar.bz2 New: ---- clamav-0.93.tar.bz2 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ clamav.spec ++++++ --- /var/tmp/diff_new_pack.t21045/_old 2008-04-21 18:37:23.000000000 +0200 +++ /var/tmp/diff_new_pack.t21045/_new 2008-04-21 18:37:23.000000000 +0200 @@ -1,5 +1,5 @@ # -# spec file for package clamav (Version 0.92.1) +# spec file for package clamav (Version 0.93) # # Copyright (c) 2008 SUSE LINUX Products GmbH, Nuernberg, Germany. # This file and all modifications and additions to the pristine @@ -19,19 +19,18 @@ BuildRequires: pwdutils %endif %if 0%{?suse_version} >= 0910 -BuildRequires: tcpd-devel +BuildRequires: sed sendmail sendmail-devel tcpd-devel %endif -BuildRequires: sendmail sendmail-devel Summary: Antivirus Toolkit -Version: 0.92.1 +Version: 0.93 Release: 1 License: GPL v2 or later Group: Productivity/Security Url: http://www.clamav.net Requires: latex2html-pngicons -PreReq: %insserv_prereq %fillup_prereq Obsoletes: clamav-db < 0.88.3 -PreReq: %_sbindir/groupadd %_sbindir/useradd /usr/bin/awk /bin/sed +PreReq: %_sbindir/groupadd %_sbindir/useradd /usr/bin/awk /bin/sed /bin/tar +PreReq: %insserv_prereq %fillup_prereq Source0: %{name}-%{version}.tar.bz2 Source1: clamav-rcclamd Source2: clamav-rcfreshclam @@ -59,9 +58,10 @@ Nigel Horne %package db +License: BSD 3-Clause; GPL v2 or later; LGPL v2.1 or later; Public Domain, Freeware; X11/MIT Group: Productivity/Security Summary: Virus Database for ClamAV -PreReq: clamav sed /bin/cp +PreReq: clamav sed /bin/cp /usr/bin/awk /bin/rm %description db This package contains a snapshot of the virus description database for @@ -81,10 +81,10 @@ %patch3 %build -%if %suse_version >= 1010 -SP="-fstack-protector" +%if 0%{?suse_version} >= 1010 +CFLAGS="-fstack-protector" %endif -export CFLAGS="%optflags -fno-strict-aliasing $SP" +export CFLAGS="%optflags -fno-strict-aliasing $CFLAGS" ./configure \ --prefix=%_prefix \ --libdir=%_libdir \ @@ -97,8 +97,10 @@ --with-group=vscan \ --with-tcpwrappers \ --with-libcurl \ - --disable-zlib-vcheck \ - --enable-milter +%if 0%{?suse_version} >= 0910 + --enable-milter \ +%endif + --disable-zlib-vcheck make %{?jobs:-j%jobs} # SLES8 does not support %check %if 0%{?suse_version} > 810 || 0%{!?suse_version:1} @@ -125,10 +127,15 @@ mv $f $f.dist touch $f done +touch %buildroot/var/lib/clamav/{main,daily}.cld mkdir -p %buildroot/var/spool/amavis -%if 0%{?suse_version:%suse_version} > 1020 +%if 0%{?suse_version} > 1020 rm %buildroot/%_libdir/*.la %endif +%if 0%{?suse_version} > 0810 +# Remove bogus dependencies from libclamav.pc +sed -i 's/^Libs: .*/Libs: -lclamav/' %buildroot%_libdir/pkgconfig/libclamav.pc +%endif %clean rm -rf %buildroot @@ -149,6 +156,7 @@ %dir %attr(700,vscan,root) /var/spool/amavis %dir /var/lib/clamav %ghost /var/lib/clamav/*.pid +%ghost /var/lib/clamav/*.cld %ghost /var/lib/clamav/*.cvd /var/adm/fillup-templates/* @@ -163,12 +171,11 @@ %_sbindir/usermod vscan -g vscan 2> /dev/null || : %post -%run_ldconfig +/sbin/ldconfig %{?fillup_only:%fillup_only -n clamav-milter} # merge config files on update test "0$1" -lt 2 && exit 0 -# The old default to run clamd in foreground mode was wrong -OVERRIDE="Foreground no" +umask 022 for f in /etc/clamd.conf /etc/freshclam.conf; do if test -e $f.rpmnew; then echo "Merging $f and $f.rpmnew" @@ -181,6 +188,30 @@ fi fi done +# convert virus database file format when updating from < 0.93 +DBDIR=$(awk '/^[[:space:]]*DatabaseDirectory/{print $NF}' /etc/clamd.conf) +cd ${DBDIR:=/var/lib/clamav} +umask 022 +TMPFILE=$PWD/tmp.$$ +for type in main daily; do + rm -f $TMPFILE + if test ! -f $type.cvd -a ! -f $type.cld -a -d $type.inc; then + cd $type.inc + test -f COPYING -a -f $type.info -a -f $type.db \ + -a -f $type.hdb -a -f $type.mdb -a -f $type.ndb \ + -a -f $type.zmd -a -f $type.fp || continue + awk 'NR==1{printf $0; for (i=length($0); i<512; i++) printf " "}' \ + $type.info > $TMPFILE || continue + tar -c -f- COPYING $type.info $type.db $type.hdb $type.mdb \ + $type.ndb $type.zmd $type.fp >> $TMPFILE || continue + cd .. + if test -f $TMPFILE; then + chown --reference $type.inc $TMPFILE 2>/dev/null + mv $TMPFILE $type.cld + fi + fi +done +rm -f $TMPFILE %triggerpostun -- %name < 0.88.3 # Move clamav.conf to clamd.conf when updating from an old version @@ -200,7 +231,7 @@ %stop_on_removal clamd freshclam %postun -%run_ldconfig +/sbin/ldconfig %restart_on_update clamd freshclam %insserv_cleanup @@ -214,15 +245,34 @@ echo 0 fi } -cd /var/lib/clamav -for distfile in {main,daily}.cvd.dist; do - datafile=${distfile%.dist} - if test $(getversion $distfile) -gt $(getversion $datafile); then - cp -a $distfile $datafile +DBDIR=$(awk '/^[[:space:]]*DatabaseDirectory/{print $NF}' /etc/clamd.conf) +cd ${DBDIR:=/var/lib/clamav} +for f in main daily; do + vdist=$(getversion $f.cvd.dist) + vcvd=$(getversion $f.cvd) + vcld=$(getversion $f.cld) + v=$((vcld > vcvd ? vcld : vcvd)) + if test $vdist -gt $v; then + cp -a $f.cvd.dist $f.cvd + rm -f $f.cld fi done %changelog +* Fri Apr 18 2008 max@suse.de +- Convert the database to the new format instead of running + freshclam to re-fetch it (bnc#380787). +- Added main.cld and daily.cld as %%ghost +- Refined the logic in %%post of clamav-db as to when the dist + files need to get copied over. +* Tue Apr 15 2008 max@suse.de +- Security update 0.93 (bnc#350987, bnc#368963). +- CVE-2007-6595: symlink attack on temporary files +- CVE-2007-6596: recognize Base64 UUEncoded archives +- CVE-2008-1100: Buffer overflow in the cli_scanpe function. +- Remove bogus dependencies from libclamav.pc (bnc#196236) +- Run freshclam on update before restarting clamd to convert the + database into the new format. * Wed Feb 13 2008 max@suse.de - Security update 0.92.1: (bnc#361374) * CVE-2008-0318: libclamav PE File Integer Overflow Vulnerability ++++++ clamav-0.92.1.tar.bz2 -> clamav-0.93.tar.bz2 ++++++ clamav/clamav-0.92.1.tar.bz2 /mounts/work_src_done/STABLE/clamav/clamav-0.93.tar.bz2 differ: byte 11, line 1 ++++++ clamav-rcclamd ++++++ --- clamav/clamav-rcclamd 2007-03-05 16:00:08.000000000 +0100 +++ /mounts/work_src_done/STABLE/clamav/clamav-rcclamd 2008-04-18 12:13:47.000000000 +0200 @@ -149,21 +149,16 @@ case "$1" in start) - echo -n "Starting Clam AntiVirus daemon " - # Check if there is a virus definition file - if ! test -f $CLAMD_DBDIR/main.cvd -o -d $CLAMD_DBDIR/main.inc ; then - echo "" - echo " Virus definitions are missing from $CLAMD_DB." - echo " Either install the clamav-db package or run freshclam " - echo -n " to get the virus definitions." - rc_failed 6 - else - ## Start daemon with startproc(8). If this fails - ## the return value is set appropriately by startproc. + echo -n "Starting Clam AntiVirus daemon " + if ! test -f $CLAMD_DBDIR/main.cvd -o -f $CLAMD_DBDIR/main.cld ; then + rc_failed + rc_status -v + echo " ClamAV Virus definition files are missing from $CLAMD_DBDIR." + echo " Either install the clamav-db package or run freshclam." + else startproc -p $CLAMD_PIDFILE $CLAMD_BIN + rc_status -v fi - # Remember status and be verbose - rc_status -v ;; stop) echo -n "Shutting down Clam AntiVirus daemon " ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Remember to have fun... --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-commit+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-commit+help@opensuse.org
participants (1)
-
root@Hilbert.suse.de