A new stable version of security/clamav is released. Most serious change: 0.88 ---- A possible heap overflow in the UPX code has been fixed. General improvements include better zip and mail processing, and support for a self-protection mode. The security of the UPX, FSG and Petite modules has been improved, too. Other changes since 0.87.1: Mon Jan 9 18:26:21 CET 2006 ---------------------------- V 0.88 * Changes: - libclamav: add support for signature based self-protection mode (tk) - libclamav/upx.c: fix possible heap overflow (acab) Reported by 3Com's Zero Day Initiative - libclamav/upx.c,fsg.c,petite.c: improve code security (acab) - clamd, clamscan: try to detect library version mismatch (tk) - libclamav/mbox.c: Multipart headers: handle end of header lines that are not empty (njh) - libclamav/zziplib/zzip-zip.c: fix pointer misalignment problem on sparc64 Thanks to Clint Adams <schizo*debian.org> - clamd/others.h: fix compilation error on systems with INCOMPLETE_CMSG (tk) Reported by Fukuda Manabu <fukuda*cri-mw.co.jp> - libclamav/pe.c: respect CL_SCAN_BLOCKMAX (tk) - libclamav/zziplib: improve handling of incorrectly created/handcrafted zip archives. Test file provided by Christoph Cordes (tk) - libclamav/zziplib: improve handling of multi-part/broken zip archives (tk) Test files provided by Tomasz Papszun - clamscan/treewalk.c: --exclude-dir was taking bad arguments when used multiple times (tk) Fix: The patch is relative to the port itself: # cd /usr/ports/security # patch -p0 < _the_patch_ <delete clamav/*.orig clamav/files/*.orig files> WBR -- bsam--4itd8SK1OMxEYoyd2PFBBAhYVKEl3eAy91xjlO4YLWFftPcK Content-Type: text/plain; name="clamav.patch" Content-Transfer-Encoding: 7bit Content-Disposition: attachment; filename="clamav.patch" diff -ruN clamav.orig/Makefile clamav/Makefile --- clamav.orig/Makefile Tue Jan 10 13:01:07 2006 +++ clamav/Makefile Tue Jan 10 13:01:36 2006 @@ -6,7 +6,7 @@ # PORTNAME= clamav -PORTVERSION= 0.87.1 +PORTVERSION= 0.88 CATEGORIES= security MASTER_SITES= ${MASTER_SITE_SOURCEFORGE_EXTENDED} MASTER_SITE_SUBDIR= clamav diff -ruN clamav.orig/distinfo clamav/distinfo --- clamav.orig/distinfo Tue Jan 10 13:01:07 2006 +++ clamav/distinfo Tue Jan 10 13:03:26 2006 @@ -1,2 +1,3 @@ -MD5 (clamav-0.87.1.tar.gz) = bf9f038edf0b6d5f76552e1b8d014b81 -SIZE (clamav-0.87.1.tar.gz) = 4468992 +MD5 (clamav-0.88.tar.gz) = 5d23205673c32e2b1b6db95000e6da74 +SHA256 (clamav-0.88.tar.gz) = 7912be29d13dae676691fbad7fa5fc1518eb3b8b45f8d147097908533ca1f8db +SIZE (clamav-0.88.tar.gz) = 4564473 diff -ruN clamav.orig/files/extra-patch-libunrar clamav/files/extra-patch-libunrar --- clamav.orig/files/extra-patch-libunrar Tue Jan 10 13:01:07 2006 +++ clamav/files/extra-patch-libunrar Tue Jan 10 13:27:31 2006 @@ -72,7 +72,7 @@ +} +#endif + - static int cli_scanmschm(int desc, const char **virname, long int *scanned, const struct cl_node *root, const struct cl_limits *limits, unsigned int options, unsigned int arec, unsigned int mrec) + static int cli_scanmschm(int desc, const char **virname, unsigned long int *scanned, const struct cl_node *root, const struct cl_limits *limits, unsigned int options, unsigned int arec, unsigned int mrec) { char *tempname; @@ -1403,8 +1443,13 @@
Responsible Changed From-To: freebsd-ports-bugs->ehaupt Take.
State Changed From-To: open->feedback Awaiting maintainers feedback
State Changed From-To: feedback->closed Committed, thanks!