Univention Bugzilla – Bug 41623
clamav: Multiple issues (4.1)
Last modified: 2016-10-20 12:40:16 CEST
The following issues have been fixed in ClamAV 0.99.2, a backport from Debian Jessie to Wheezy is expected: * Crash when processing a crafted mew packer executable (CVE-2016-1371) * Multiple vulnerabilities when processing crafted 7z files (CVE-2016-1372) There's a couple of commits (~10) addressing these in the upstream repository, all committed under the clamav bug ID "11514".
Referenz: Ticket#2016062121000103
Upstream Debian package version 0.99.2+dfsg-0+deb7u2 updates the wheezy package to clamav 0.99.2.
repo_admin.py -U -r 4.1 -s errata4.1-3 -d wheezy -p clamav r16747 Package: clamav Version: 0.99.2+dfsg-0.158.201609281328 Branch: ucs_4.1-0 Scope: errata4.1-3 r72870 | Bug #41623: ClamAV UCS-4.1-3 YAML clamav.yaml
Apparently CVE-2016-1405 is also fixed in this update.
The test case 20_appcenter.20_can_apps_be_installed.test failed: http://jenkins.knut.univention.de:8080/job/UCS-4.1/job/UCS-4.1-3/job/AutotestJoin/SambaVersion=s3,Systemrolle=master/75/testReport/20_appcenter/20_can_apps_be_installed/test/ It looks like libclamav7 is a new package which is announced as unmaintained: root@master411:~# apt-get install -s univention-antivir-mail clamav Reading package lists... Done Building dependency tree Reading state information... Done Some packages could not be installed. This may mean that you have requested an impossible situation or if you are using the unstable distribution that some required packages have not yet been created or been moved out of Incoming. The following information may help to resolve the situation: The following packages have unmet dependencies: clamav : Depends: clamav-freshclam (>= 0.99.2+dfsg) but it is not going to be installed or clamav-data Depends: libclamav7 (>= 0.99.1) but it is not installable univention-antivir-mail : Depends: clamav-daemon but it is not going to be installed or kav4fileservers but it is not installable or sophie but it is not installable E: Unable to correct problems, you have held broken packages. root@master411:~# apt-get install -s univention-antivir-mail clamav libclamav7 Reading package lists... Done Building dependency tree Reading state information... Done Package libclamav7 is not available, but is referred to by another package. This may mean that the package is missing, has been obsoleted, or is only available from another source E: Package 'libclamav7' has no installation candidate root@master411:~#
echo libclamav7 >> /var/univention/buildsystem2/cd-contents/ucs_4.1-3_*.maintained QA: ucr set repository/online/server=http://apt.knut.univention.de/ repository/online/component/4.1-3-errata-test=yes repository/online/unmaintained=no apt-get -qq update apt-get install clamav=0.99.2+dfsg-0.158.201609281328 freshclam -v
(In reply to Philipp Hahn from comment #6) > echo libclamav7 >> > /var/univention/buildsystem2/cd-contents/ucs_4.1-3_*.maintained Once again.
Tests: OK Advisory: OK
<http://errata.software-univention.de/ucs/4.1/307.html>