Univention Bugzilla – Bug 36966
Update clamav to 0.98.6 (4.0)
Last modified: 2015-03-25 16:36:38 CET
+++ This bug was initially created as a clone of Bug #36965 +++ clamav 0.98.5 has been released. We should update to this version in 3.2 and 4.0 to keep up-to-date with handling engine features required for malware scanning. The release also adresses two security issues: Buffer overflow when parsing crafted y0da Crypter PE files (CVE-2014-9050) Segmentation fault when parsing malformed Javascript files (CVE-2013-6497)
clamav in 4.0 also needs to be updated along with 3.2, otherwise the version in 4.0 will be lower than in 3.2, resulting in potential update problems.
0.98.6 has been released.
0.98.6 also fixes a security issue: Memory corruption in processing upack archives (CVE-2014-9328)
(In reply to Moritz Muehlenhoff from comment #3) > 0.98.6 also fixes a security issue: Memory corruption in processing upack > archives (CVE-2014-9328) Also CVE-2015-1461, CVE-2015-1462, CVE-2015-1463
The new version requires libllvm30 which is only in unmaintained. It has been added to ucs_4.0-1_amd64_dvd.txt and ucs_4.0-1_i386_dvd.txt
The new version has been built. Tests with a groupware solution (OX), on the commandline and using univention-dansguardian were successful.
(In reply to Moritz Muehlenhoff from comment #5) > The new version requires libllvm30 which is only in unmaintained. > > It has been added to ucs_4.0-1_amd64_dvd.txt and ucs_4.0-1_i386_dvd.txt ClamAV is currently uninstallable and breaks several 40_mail tests, as univention-antivir-mail is not installed automatically anymore as a dependency of univention-mail-server.
# dpkg -I ucs_4.0-0/amd64/libllvm3.0_3.0-10.2.201403131403_amd64.deb | grep Source Source: llvm-3.0 $ repo_stat.py llvm-3.0 Package statistics for llvm-3.0 in buildsystem buildsystem/billy.knut.univention.de : 3.0-10 imported on 2014-01-14 19:48:48.804735 Included in release tag 4.0-0-0 (59827) $ repo_admin.py --cherrypick -r 4.0 --releasedest 4.0 --dest errata4.0-1 -p llvm-3.0 $ b40-scope errata4.0-1 llvm-3.0 Package: llvm-3.0 Version: 3.0-10.3.201503091600 Branch: ucs_4.0-0 Scope: errata4.0-1 TODO: Add .yaml file for llvm-3.0
(In reply to Philipp Hahn from comment #8) > # dpkg -I ucs_4.0-0/amd64/libllvm3.0_3.0-10.2.201403131403_amd64.deb | grep > Source > Source: llvm-3.0 > > $ repo_stat.py llvm-3.0 > Package statistics for llvm-3.0 in buildsystem > buildsystem/billy.knut.univention.de : > 3.0-10 imported on 2014-01-14 19:48:48.804735 > Included in release tag 4.0-0-0 (59827) > > $ repo_admin.py --cherrypick -r 4.0 --releasedest 4.0 --dest errata4.0-1 -p > llvm-3.0 > > $ b40-scope errata4.0-1 llvm-3.0 > > Package: llvm-3.0 > Version: 3.0-10.3.201503091600 > Branch: ucs_4.0-0 > Scope: errata4.0-1 > > TODO: Add .yaml file for llvm-3.0 See https://forge.univention.org/bugzilla/show_bug.cgi?id=36966#c5
ucs-test-mail passes as well. YAML files: 2015-03-11-clamav.yaml and 2015-03-11-llvm-3.0.yaml
OK - 2015-03-11-llvm-3.0.yaml OK - 2015-03-11-clamav.yaml OK - update/installation OK - virus mail OK - dansguardian content scan OK - ucs-test -s mail OK - clamscan OK - freshclam
<http://errata.univention.de/ucs/4.0/117.html>
<http://errata.univention.de/ucs/4.0/118.html>