Summary: | <app-antivirus/clamav-0.99.3: multiple vulnerabilities | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | tomas charvat <tc> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | major | CC: | antivirus, ap, himbeere, hydrapolic, net-mail+disabled, toto |
Priority: | High | Flags: | stable-bot:
sanity-check+
|
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://blog.clamav.net/2018/01/clamav-0993-has-been-released.html | ||
Whiteboard: | B1 [glsa+ cve] | ||
Package list: |
app-antivirus/clamav-0.99.3-r1
|
Runtime testing required: | --- |
Bug Depends on: | 649314 | ||
Bug Blocks: |
Description
tomas charvat
2018-01-26 12:09:27 UTC
@ tomas: Please do not add version information to summary when you report vulnerabilities. Thank you. *** Bug 645806 has been marked as a duplicate of this bug. *** 0.99.3 is not in the Gentoo repository yet. Please do not put the version in the summary until an unaffected ebuild is committed. The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=f2ba0e7dfb1e0e5290366cef02a553c3e56120b9 commit f2ba0e7dfb1e0e5290366cef02a553c3e56120b9 Author: Thomas Deutschmann <whissi@gentoo.org> AuthorDate: 2018-01-26 14:46:05 +0000 Commit: Thomas Deutschmann <whissi@gentoo.org> CommitDate: 2018-01-26 14:52:33 +0000 app-antivirus/clamav: bump, fixes multiple vulnerabilites Bug: https://bugs.gentoo.org/645794 Package-Manager: Portage-2.3.20, Repoman-2.3.6 app-antivirus/clamav/Manifest | 1 + app-antivirus/clamav/clamav-0.99.3.ebuild | 158 ++++++++++++++++++++++++++++++ 2 files changed, 159 insertions(+)} @ Arches, please test and mark stable: =app-antivirus/clamav-0.99.3 I'll push -r1 to fix a fd leak problem in cli scanner. Pushed, https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=194c79e18139961a9411a22566eb29d764081ef2 New GLSA request filed. amd64 stable x86 stable This issue was resolved and addressed in GLSA 201801-19 at https://security.gentoo.org/glsa/201801-19 by GLSA coordinator Thomas Deutschmann (whissi). Re-opening for remaining architectures. Thanks for adding 0.99.3 - I just got home a bit earlier and was going to have a go at it, but looks like you saved me some work ;) I have tested 0.99.3-r1 and problem with hang on daily.cvd signatures is gone. Its working well. ia64 stable ppc stable hppa stable Superseded by bug 649314. Stable on alpha. Cleanup will happen with GLSA release. |