Univention Bugzilla – Full Text Bug Listing |
Summary: | Update clamav to 0.98.6 (4.0) | ||
---|---|---|---|
Product: | UCS | Reporter: | Moritz Muehlenhoff <jmm> |
Component: | clamav | Assignee: | Moritz Muehlenhoff <jmm> |
Status: | CLOSED FIXED | QA Contact: | Felix Botner <botner> |
Severity: | normal | ||
Priority: | P5 | CC: | gohmann, hahn, walkenhorst |
Version: | UCS 3.2 | ||
Target Milestone: | UCS 4.0-1-errata | ||
Hardware: | Other | ||
OS: | Linux | ||
What kind of report is it?: | --- | What type of bug is this?: | --- |
Who will be affected by this bug?: | --- | How will those affected feel about the bug?: | --- |
User Pain: | Enterprise Customer affected?: | ||
School Customer affected?: | ISV affected?: | ||
Waiting Support: | Flags outvoted (downgraded) after PO Review: | ||
Ticket number: | Bug group (optional): | ||
Max CVSS v3 score: |
Description
Moritz Muehlenhoff
2014-11-24 12:42:43 CET
clamav in 4.0 also needs to be updated along with 3.2, otherwise the version in 4.0 will be lower than in 3.2, resulting in potential update problems. 0.98.6 has been released. 0.98.6 also fixes a security issue: Memory corruption in processing upack archives (CVE-2014-9328) (In reply to Moritz Muehlenhoff from comment #3) > 0.98.6 also fixes a security issue: Memory corruption in processing upack > archives (CVE-2014-9328) Also CVE-2015-1461, CVE-2015-1462, CVE-2015-1463 The new version requires libllvm30 which is only in unmaintained. It has been added to ucs_4.0-1_amd64_dvd.txt and ucs_4.0-1_i386_dvd.txt The new version has been built. Tests with a groupware solution (OX), on the commandline and using univention-dansguardian were successful. (In reply to Moritz Muehlenhoff from comment #5) > The new version requires libllvm30 which is only in unmaintained. > > It has been added to ucs_4.0-1_amd64_dvd.txt and ucs_4.0-1_i386_dvd.txt ClamAV is currently uninstallable and breaks several 40_mail tests, as univention-antivir-mail is not installed automatically anymore as a dependency of univention-mail-server. # dpkg -I ucs_4.0-0/amd64/libllvm3.0_3.0-10.2.201403131403_amd64.deb | grep Source Source: llvm-3.0 $ repo_stat.py llvm-3.0 Package statistics for llvm-3.0 in buildsystem buildsystem/billy.knut.univention.de : 3.0-10 imported on 2014-01-14 19:48:48.804735 Included in release tag 4.0-0-0 (59827) $ repo_admin.py --cherrypick -r 4.0 --releasedest 4.0 --dest errata4.0-1 -p llvm-3.0 $ b40-scope errata4.0-1 llvm-3.0 Package: llvm-3.0 Version: 3.0-10.3.201503091600 Branch: ucs_4.0-0 Scope: errata4.0-1 TODO: Add .yaml file for llvm-3.0 (In reply to Philipp Hahn from comment #8) > # dpkg -I ucs_4.0-0/amd64/libllvm3.0_3.0-10.2.201403131403_amd64.deb | grep > Source > Source: llvm-3.0 > > $ repo_stat.py llvm-3.0 > Package statistics for llvm-3.0 in buildsystem > buildsystem/billy.knut.univention.de : > 3.0-10 imported on 2014-01-14 19:48:48.804735 > Included in release tag 4.0-0-0 (59827) > > $ repo_admin.py --cherrypick -r 4.0 --releasedest 4.0 --dest errata4.0-1 -p > llvm-3.0 > > $ b40-scope errata4.0-1 llvm-3.0 > > Package: llvm-3.0 > Version: 3.0-10.3.201503091600 > Branch: ucs_4.0-0 > Scope: errata4.0-1 > > TODO: Add .yaml file for llvm-3.0 See https://forge.univention.org/bugzilla/show_bug.cgi?id=36966#c5 ucs-test-mail passes as well. YAML files: 2015-03-11-clamav.yaml and 2015-03-11-llvm-3.0.yaml OK - 2015-03-11-llvm-3.0.yaml OK - 2015-03-11-clamav.yaml OK - update/installation OK - virus mail OK - dansguardian content scan OK - ucs-test -s mail OK - clamscan OK - freshclam |