-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 3.0 (quilt) Source: clamav Binary: clamav-base, clamav-docs, clamav-dbg, clamav, libclamav-dev, libclamav6, clamav-daemon, clamdscan, clamav-testfiles, clamav-freshclam, clamav-milter Architecture: any all Version: 0.98.7+dfsg-0+deb8u1 Maintainer: ClamAV Team <[email protected]> Uploaders: Stephen Gran <[email protected]>, Michael Meskes <[email protected]>, Michael Tautschnig <[email protected]>, Scott Kitterman <[email protected]>, Sebastian Andrzej Siewior <[email protected]>, Andreas Cadhalpun <[email protected]> Homepage: http://www.clamav.net/ Standards-Version: 3.9.6 Vcs-Browser: https://anonscm.debian.org/cgit/pkg-clamav/clamav.git Vcs-Git: git://anonscm.debian.org/pkg-clamav/clamav.git Testsuite: autopkgtest Build-Depends: automake, bc, check, debhelper (>= 8.9.7), dh-autoreconf, dh-systemd, electric-fence, libbz2-dev, libcurl4-openssl-dev, libjson-c-dev | libjson0-dev, libltdl-dev, libmilter-dev, libmspack-dev, libncurses5-dev, libssl-dev, libsystemd-dev [linux-any], libtommath-dev, libxml2-dev, llvm-dev [i386 amd64 powerpc kfreebsd-amd64 kfreebsd-i386], perl, pkg-config, po-debconf, python, zlib1g-dev Package-List: clamav deb utils optional arch=any clamav-base deb utils optional arch=all clamav-daemon deb utils optional arch=any clamav-dbg deb debug extra arch=any clamav-docs deb doc optional arch=all clamav-freshclam deb utils optional arch=any clamav-milter deb utils extra arch=any clamav-testfiles deb utils optional arch=all clamdscan deb utils optional arch=any libclamav-dev deb libdevel optional arch=any libclamav6 deb libs optional arch=any Checksums-Sha1: d00df0b36ca5ef72518e891e5cb2bdf7ffbf9b9c 8322932 clamav_0.98.7+dfsg.orig.tar.xz db1cdda13f1f6b30dd051f31809a4277a9efcd6b 242188 clamav_0.98.7+dfsg-0+deb8u1.debian.tar.xz Checksums-Sha256: 3a153ccdde90702dc175bd251784b66f09431b517da4ca8c99407ecd3e295fa5 8322932 clamav_0.98.7+dfsg.orig.tar.xz aa6c16cfcdf6d8eac26348926e493524360aa5abaf3eeaf9d9e0b8c67949e3d1 242188 clamav_0.98.7+dfsg-0+deb8u1.debian.tar.xz Files: 7a012088d4389bd3ac2ac35442b98d37 8322932 clamav_0.98.7+dfsg.orig.tar.xz 3e6e3b0aa9469b01afd2df00032d4ffb 242188 clamav_0.98.7+dfsg-0+deb8u1.debian.tar.xz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCAAGBQJVRj+6AAoJEHjX3vua1ZrxWuwP/RRALOMAXaSv9wGf7Nults66 UVsnk0slwvTN9yV0z6XXpZZb0azogSHpvgyxsvDhnL/QXmbceMjnmS68I0Xr3YK7 qKXohpbupt8kLMGxYIz42K84dgSie5AWQOmMHhtuBRna5v2kD1Sc7Pd7AlPVZFvf jI3X55lthD+3IhDhHGTo1GlVJ0EJaXsaVd3b7c57IQhHnEJ+2j2qbw2TwNFJZaxa cfQnJQ0cAXu3KE2MxqcviGjowjSEUyt8VdcPdEBUtQiGIK63TiYJAThTmnIOKwJi ModaaJHHx0iVXRZQGN7T9Jtt2k0MP337CkaVx99AQAKAhrVov8+vGwYkXx2KjmuB slf6jD2O6ySOSNrHcwlYPaX2bNhlRSuerdHLDlUYHw9Djk32yIXmNbVLQO+w6wxe YDud/TYIpk1+5No1E3GhHZCXPc4SnaayCDrhpahu/OuBecqxpQSCBGOIsGmeedWa 8+SpoKoaF8wo3zW7mEqbuaElS4TTfS47qUOFzh0MazSW1QDLUgLh8P9X0Jr1yMti trERWLRGkapzuiYGN4+jW1GzJ1DSbOCN7NALHLe+B7W1+nlYQftqbMkkACW2rpVT Bmwp0Yz7VGz62FsuqiDu5aqhhyGCIKnoTnvqygv7/HCWyQ0mWFNu6LbwsXAHsIka ewOyMMIbjYWrQD5oyuA2 =aX+L -----END PGP SIGNATURE----- Changes: clamav (0.98.7+dfsg-0+deb8u1) stable; urgency=high [ Andreas Cadhalpun ] * Fix variable name mismatch in clamav-milter.postinst in order to make preseeding work correctly. (Closes: #778445) * Rename DEBCONFILE to DEBCONFFILE in clamav-freshclam.postinst making it consistent with the other postinst scripts. * Build against libsystemd-dev. (Closes: #779758) * Drop 'XS-Testsuite: autopkgtest' from debian/control. Debhelper automatically adds the Testsuite field. This fixes the lintian warning xs-testsuite-header-in-debian-control. * Shorten debian/copyright. This fixes some lintian warnings: - dep5-copyright-license-name-not-unique - wildcard-matches-nothing-in-dep5-copyright - unused-file-paragraph-in-dep5-copyright * Use pathfind to avoid hardcoding paths. This fixes command-with-path-in-maintainer-script lintian warnings. * Fix syntax errors in clamav-freshclam.postinst. Thanks piuparts! * Fix cleanup on purge in clamav-base.postrm. * Use SocketUser, SocketGroup and RemoveOnStop systemd socket options instead of using ExecStartPost and ExecStopPost for that. * Respect clamav-daemon's LocalSocket* options with the systemd unit by extending the clamav-daemon.socket file appropriately, when running dpkg-reconfigure clamav-daemon. (Closes: #783720) * Disable this extendend configuration, when handling the configuration file with debconf is disabled. * Disable clamav-daemon.socket in prerm script. [ Sebastian Andrzej Siewior ] * Replace ” with " in debian/common_functions (Closes: #781088) * Drop __DATE__ from tfm to make the package build reproducible with -Werror=date-time. With this change faketime is no longer required. * Import new upstream: - Improvements to PDF processing: decryption, escape sequence handling, and file property collection. - Scanning/analysis of additional Microsoft Office 2003 XML format. - Fix infinite loop condition on crafted y0da cryptor file. Identified and patch suggested by Sebastian Andrzej Siewior. CVE-2015-2221. - Fix crash on crafted petite packed file. Reported and patch supplied by Sebastian Andrzej Siewior. CVE-2015-2222. - Fix false negatives on files within iso9660 containers. This issue was reported by Minzhuan Gong. - Fix a couple crashes on crafted upack packed file. Identified and patches supplied by Sebastian Andrzej Siewior. - Fix a crash during algorithmic detection on crafted PE file. Identified and patch supplied by Sebastian Andrzej Siewior. - Fix an infinite loop condition on a crafted "xz" archive file. This was reported by Dimitri Kirchner and Goulven Guiheux. CVE-2015-2668. - Fix compilation error after ./configure --disable-pthreads. Reported and fix suggested by John E. Krokes. - Apply upstream patch for possible heap overflow in Henry Spencer's regex library. CVE-2015-2305 (Closes: #778406). - Fix crash in upx decoder with crafted file. Discovered and patch supplied by Sebastian Andrzej Siewior. CVE-2015-2170. - Fix segfault scanning certain HTML files. Reported with sample by Kai Risku. - Improve detections within xar/pkg files. * update GPG key used to verify releases to get uscan/get_orig.sh working again. * update symbol version for cl_retflevel due to CL_FLEVEL change. -- Sebastian Andrzej Siewior <[email protected]> Sat, 02 May 2015 23:27:36 +0200
