Navigation:
Browse pkgsrc
(this page)| 2020-01-26 18:32:28 by Roland Illig | Files touched by this commit (981) |
Log message: all: migrate homepages from http to https pkglint -r --network --only "migrate" As a side-effect of migrating the homepages, pkglint also fixed a few indentations in unrelated lines. These and the new homepages have been checked manually. |
| 2020-01-18 22:51:16 by Jonathan Perkin | Files touched by this commit (1836) |
Log message: *: Recursive revision bump for openssl 1.1.1. |
| 2020-01-12 21:20:50 by Ryo ONODERA | Files touched by this commit (574) |
Log message: *: Recursive revbump from devel/boost-libs |
2019-12-03 13:55:16 by Takahiro Kambe | Files touched by this commit (4) |  |
Log message:
security/clamav: update to 0.102.1
Update clamav to 0.102.1.
## 0.102.1
ClamAV 0.102.1 is a security patch release to address the following issues.
- Fix for the following vulnerability affecting 0.102.0 and 0.101.4 and prior:
- [CVE-2019-15961](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15961)
A Denial-of-Service (DoS) vulnerability may occur when scanning a specially
crafted email file as a result of excessively long scan times. The issue is
resolved by implementing several maximums in parsing MIME messages and by
optimizing use of memory allocation.
- Build system fixes to build clamav-milter, to correctly link with libxml2 when
detected, and to correctly detect fanotify for on-access scanning feature
support.
- Signature load time is significantly reduced by changing to a more efficient
algorithm for loading signature patterns and allocating the AC trie.
Patch courtesy of Alberto Wu.
- Introduced a new configure option to statically link libjson-c with libclamav.
Static linking with libjson is highly recommended to prevent crashes in
applications that use libclamav alongside another JSON parsing library.
- Null-dereference fix in email parser when using the `--gen-json` metadata
option.
- Fixes for Authenticode parsing and certificate signature (.crb database) bugs.
Special thanks to the following for code contributions and bug reports:
- Alberto Wu
- Joran Dirk Greef
- Reio Remma
|
| 2019-11-19 17:20:24 by Patrick Welche | Files touched by this commit (1) |
Log message: Substitute CLAMAV_DBDIR (the point of patch-etc.clam*.conf.sample) |
| 2019-10-31 12:22:16 by Jonathan Perkin | Files touched by this commit (3) |
Log message: clamav: Fix install with the milter option enabled. |
| 2019-10-10 17:43:44 by Patrick Welche | Files touched by this commit (1) |
Log message: remove pkgrevision |
| 2019-10-10 17:41:30 by Patrick Welche | Files touched by this commit (8) | |
Log message:
Update clamav to 0.102.0
* The On-Access Scanning feature has been migrated out of clamd and
into a brand new utility named clamonacc, which is disabled in this
package as it is for Linux only.
* The freshclam database update utility has undergone a significant
update. This includes:
+ Added support for HTTPS.
+ Support for database mirrors hosted on ports other than 80.
+ Removal of the mirror management feature (mirrors.dat).
+ An all new libfreshclam library API.
* Added support for extracting ESTsoft .egg archives. This feature is
new code developed from scratch using ESTsoft's Egg-archive
specification and without referencing the UnEgg library provided by
ESTsoft. This was necessary because the UnEgg library's license
includes restrictions limiting the commercial use of the UnEgg library.
Full release notes available at:
https://github.com/Cisco-Talos/clamav-devel/blob/rel/0.102/NEWS.md
|
| 2019-10-05 22:52:52 by Niclas Rosenvik | Files touched by this commit (1) |
Log message:
Fix clamav install when PKG_SYSCONFDIR not set to ${PREFIX}/etc
Use PKG_SYSCONFDIR when moving files to EGDIR.
Fixes install when PKG_SYSCONFDIR is set to something else than
${PREFIX}/etc
|
| 2019-09-06 11:22:49 by Jonathan Perkin | Files touched by this commit (1) |
Log message: clamav: Disable mapfile on SunOS. There are a couple of functions that aren't defined, and this is easier than patching (and doesn't impact other OS). |
New packages: