buildroot/package/clamav, branch 2019.02-op-build

package/clamav: security bump to version 0.101.2

2019-03-28T09:53:59+00:00

Release notes: https://blog.clamav.net/2019/03/clamav-01012-and-01003-patches-have.html - Fixes for the following vulnerabilities affecting 0.101.1 and prior: - CVE-2019-1787: An out-of-bounds heap read condition may occur when scanning PDF documents. The defect is a failure to correctly keep track of the number of bytes remaining in a buffer when indexing file data. - CVE-2019-1789: An out-of-bounds heap read condition may occur when scanning PE files (i.e. Windows EXE and DLL files) that have been packed using Aspack as a result of inadequate bound-checking. - CVE-2019-1788: An out-of-bounds heap write condition may occur when scanning OLE2 files such as Microsoft Office 97-2003 documents. The invalid write happens when an invalid pointer is mistakenly used to initialize a 32bit integer to zero. This is likely to crash the application. - Fixes for the following vulnerabilities affecting 0.101.1 and 0.101.0 only: - CVE-2019-1786: An out-of-bounds heap read condition may occur when scanning malformed PDF documents as a result of improper bounds-checking. - CVE-2019-1785: A path-traversal write condition may occur as a result of improper input validation when scanning RAR archives. Issue reported by aCaB. - CVE-2019-1798: A use-after-free condition may occur as a result of improper error handling when scanning nested RAR archives. Issue reported by David L. Signed-off-by: Bernd Kuhls Signed-off-by: Peter Korsgaard (cherry picked from commit 4037c0a39717df45d8fbaeb7dcaebaaa5cd2facb) Signed-off-by: Peter Korsgaard

package/clamav: link with libatomic when needed

2019-02-24T20:37:28+00:00

Configure check for OpenSSL fails: /accts/mlweber1/rclinux/rc-buildroot-test/scripts/instance-3/output/host/sparc-buildroot-linux-uclibc/sysroot/usr/lib/libcrypto.a(threads_pthread.o): In function `CRYPTO_atomic_add': threads_pthread.c:(.text+0x1dc): undefined reference to `__atomic_is_lock_free' threads_pthread.c:(.text+0x1f4): undefined reference to `__atomic_fetch_add_4' Fixes http://autobuild.buildroot.net/results/cae8da81adff3ba493154e0ba8b21d90367f82eb/ Signed-off-by: Bernd Kuhls Signed-off-by: Thomas Petazzoni

package/clamav: needs wchar

2019-02-10T10:25:11+00:00

Fixes http://autobuild.buildroot.net/results/77c/77cd536a0fab78eabe27e055d28db2da354008d7/ Signed-off-by: Bernd Kuhls Signed-off-by: Thomas Petazzoni

clamav: needs C++

2019-01-28T21:05:15+00:00

clamav needs C++ since bump to version 0.101.1 and https://github.com/Cisco-Talos/clamav-devel/commit/d39cb6581f3c854476044f069d2393fc44702c36 Fixes: - http://autobuild.buildroot.org/results/be14aa571309cda32a5963feed9fd7f220e87fe6 Signed-off-by: Fabrice Fontaine Acked-by: Bernd Kuhls Signed-off-by: Peter Korsgaard

package/clamav: add optional dependency to pcre2

2019-01-27T09:49:47+00:00

Upstream recommends pcre2 over pcre: https://github.com/Cisco-Talos/clamav-devel/commit/1f71c2b21ccaef412280471444f4d01ec9b8099d Signed-off-by: Bernd Kuhls Signed-off-by: Peter Korsgaard

package/clamav: bump version to 0.101.1

2019-01-27T09:49:33+00:00

Removed patch applied upstream. Signed-off-by: Bernd Kuhls Signed-off-by: Peter Korsgaard

clamav: add optional systemd dependency

2018-12-13T20:31:26+00:00

clamav has an optional systemd dependency Moreover, since the bump to 1.5.3, pkgconf prepends the sysroot to all absolute paths found in the .pc file. This is correct when the paths refer to something in STAGING_DIR (e.g. libdir, includedir), but not when it refers to something used for the target. clamav uses the systemdsystemunitdir variable from systemd.pc to decide where to install things. Since DESTDIR is prepended to the install destination, this will end up in the wrong location. Until a better solution is found in pkgconf, pass the systemdsystemunitdir to use explicitly instead of relying on systemd.pc. Fixes: - http://autobuild.buildroot.org/results/fe526c60542527112e6441e453b4df5de49242d9 Signed-off-by: Fabrice Fontaine Signed-off-by: Thomas Petazzoni

package/clamav: security bump to 0.100.2

2018-10-04T12:21:52+00:00

Fixes CVE-2018-15378, CVE-2018-14680, CVE-2018-14681 & CVE-2018-14682: http://lists.clamav.net/pipermail/clamav-announce/2018/000033.html Signed-off-by: Bernd Kuhls Signed-off-by: Thomas Petazzoni

package/clamav: security bump to 0.100.1

2018-07-10T08:25:09+00:00

Fixes CVE-2017-16932, CVE-2018-0360 & CVE-2018-0361: http://lists.clamav.net/pipermail/clamav-announce/2018/000032.html Signed-off-by: Bernd Kuhls Signed-off-by: Peter Korsgaard

clamav: add patch to fix build failure caused by lack of libcurl

2018-05-13T20:59:53+00:00

When json-c is enabled but libcurl is disabled, clamav tries to build the clamsubmit program, which fails with: CC clamsubmit.o clamsubmit.c:6:23: fatal error: curl/curl.h: No such file or directory #include This is due to an incorrect curl-config detection logic, leading to /bin/curl-config being present making the configure script believe that curl is available, even when --without-libcurl is explicitly passed. This commit adds a patch, submitted upstream, which fixes this problem. Fixes: http://autobuild.buildroot.net/results/c43d2ebd8ab30016969d642dbd71c297dc5f6bab/ Signed-off-by: Thomas Petazzoni Reviewed-by: "Yann E. MORIN" Signed-off-by: Thomas Petazzoni