- Fix pkg-plist to delete directories installed out of PREFIX (on /var) [1]
- Bump PORTREVISION because of [1]
PR: ports/145448 [1]
Submitted by: sahil@ [1]
- Fix error on make check when LC_ALL != en and subversion is installed [1]
PR: ports/145340 [1]
Submitted by: Alexander Wittig <alexander@wittig.name> [1]
Obtained from: https://wwws.clamav.net/bugzilla/show_bug.cgi?id=1922 [1]
This version fixes lock problem reported at ports/122534
Most important changes:
*libclamav:
- New logic in scan limits: provides much more efficient protection against
DoS attacks but also results in different command line and config options
to clamscan and clamd (see below)
- New/improved modules: unzip, SIS, cabinet, CHM, SZDD, text normalisator,
entity converter
- Improved filetype detection; filetype definitions can be remotely updated
- Support for .cld containers (which replace .inc directories)
- Improved pattern matcher and signature formats
- More efficient scanning of HTML files
- Many other improvements
* clamd:
- NEW CONFIG FILE OPTIONS: MaxScanSize, MaxFileSize, MaxRecursion, MaxFiles
- ** THE FOLLOWING OPTIONS ARE NO LONGER SUPPORTED **: MailMaxRecursion,
ArchiveMaxFileSize, ArchiveMaxRecursion, ArchiveMaxFiles,
ArchiveMaxCompressionRatio, ArchiveBlockMax
* clamscan:
- NEW CMDLINE OPTIONS: --max-filesize, --max-scansize
- REMOVED OPTIONS: --block-max, --max-space, --max-ratio
* freshclam:
- NEW CONFIG OPTION CompressLocalDatabase
- NEW CMDLINE SWITCH --no-warnings
- main.inc and daily.inc directories are no longer used by ClamAV; please
remove them manually from your database directory
PR: ports/122770 [1] (based on)
ports/122534 [2]
Submitted by: Michael Scheidell <scheidell@secnap.net> [1]
Sebastian Inacker <inacker@fmsweb.de> [2]
Security: http://secunia.com/advisories/29000
- Add a new OPTION (RAR) because unrar code is optional to fix a license
issue
- Some cosmetic changes
- Chase library version bump and bump PORTREVISION of all dependant ports
Approved by: portmgr (pav)
Security: CVE-2007-6335, CVE-2007-6336, CVE-2007-6337
- Add a patch to increase performance of clamd in threaded systems [1]
- Change clamav-milter rc.d script to use a var to determine seconds of timeout
to wait clamd socket be started [2]
- Add support to gethostbyname_r() on FreeBSD 6 and above [3]
- Install clamav-config.h [3]
- Fix all dependencies for klamav work fine [3]
PR: ports/111130 [2], ports/111478 [3]
Submitted by: Anton Yuzhaninov <citrin@rambler-co.ru> [1]
Denis Eremenko <moonshade@pnhz.kz> [2]
Anderson S. Ferreira <anderson@cnpm.embrapa.br> [3]
Obtained from: https://wwws.clamav.net/bugzilla/show_bug.cgi?id=434 [1]
- Use -lthr to build clamav since it has problems with libpthread
- Bump PORTREVISION of dependant ports, libclamav version was bumped
- Fix clamcour to build with clamav-0.90.x using patch sent by maintainer
* CVE-2006-1614
Damian Put discovered an integer overflow in the PE header parser.
This is only exploitable if the ArchiveMaxFileSize option is disabled.
* CVE-2006-1615
Format string vulnerabilities in the logging code have been discovered,
which might lead to the execution of arbitrary code.
* CVE-2006-1630
David Luyer discovered, that ClamAV can be tricked into an invalid
memory access in the cli_bitset_set() function, which may lead to
a denial of service.
- Use USE_RC_SUBR=script
PR: ports/95403
Submitted by: garga
Approved by: maintainer timeout (mnag on behalf of secteam)
Security: VuXML 6a5174bd-c580-11da-9110-00123ffe8333
2. Shut down clamav daemons in the right order
on uninstall (or else they may refuse to quit.)
3. Use rcorder(8) keywords to guarantee the right
startup/shutdown order of the clamav services.
PR: ports/75607
Approved by: the maintainer
directory to /var/db/clamav and fix removal of db on deinstall)
For the sake of coherence, the ClamAV database should be
installed in /var/db/clamav, not /usr/local/share/clamav.
Also fixes the database removal on package deinstallation.
PR: ports/74172
Submitted by: Jean-Yves Lefort <jylefort@brutele.be>
Approved by: Rob Evers <rob@debank.tv>
+ JPEG comment exploit (MS04-028) detection
*** IMPORTANT ***
The configruration file for the clamd daemon has changed from
/usr/local/etc/clamav.conf to /usr/local/etc/clamd.conf.
PR: 72203
Approved by: Rob Evers <revers@infraqon.nl> (maintainer)
- new thread manager (with better SMP support)
- new switch ArchiveDetectEncrypted
- new directive: ArchiveDetectEncrypted
- see /usr/local/share/doc/clamav/NEWS
- install html documentation to /usr/local/share/doc/clamav/html
added CLAMAVUSER/CLAMAVGROUP support
Adopted the port to ensure timely fixes in case I broke something :P
Please reset the maintainer if TERAMOTO Masahiro shows up again.
updated periodically. Loosely based on the script in the PR.
2. Reorder some operations in the various Makefile targets.
3. Bump PORTREVISION.
PR: 61966 [1]
Submitted by: Douglas K. Rand <rand@meridian-enviro.com>
- correct typo in the name of the socket variable (used to remove a stale
socket)
- install the startup script with the correct name (important if you use
clamav-milter too)
Submitted by: Marius Strobl <marius@alchemy.franken.de>
Approved by: maintainer (implizit, this is a bugfix for the previous
version)
be started before clamav-milter the startup-script for clamd
must alphabetically arranged before the startup-script for
clamav-milter. It was decided to use the clamd statup-scrtipt
from security/clamav-devel (clamav-clamd.sh), so users running
an older version of security/clamav have to change
'clamd_enable="YES"' to 'clamav_clamd_enable="YES"' in
/etc/rc.conf. On the other hand this changes makes it easier
to switch between security/clamav and security/clamav-devel.
- Respect PTHREAD_CFLAGS.
- Use USE_LIBTOOL_VER=14 as the libtool shipping with clamav 0.65
erroneously links against libc _and_ libc_r on FreeBSD 4.
- Don't link against libcipher on FreeBSD < 501100, clamav doesn't
depend on it. The linker warnings suggesting that it is required
were triggered by linking against both, libc and libc_r.
- Unconditionally depend on math/libgmp4. Otherwise, if libgmp4 is
already installed on a FreeBSD 4-STABLE system compilation of
security/clamav fails, as the headers of libgmp4 are used but the
base libgmp is used for linking.
- Fix generation of clamav-milter.8 when building with WITH_MILTER
(part of new files/patch-clamav-milter::Makefile.in).
- Don't USE_GETOPT_LONG when compiling with WITH_MILTER, clamav
uses its own getopt_long() regardless if a devel/libgnugetopt is
installed or the version in the base of FreeBSD 5 is present.
- Allow compilation of WITH_MILTER with mail/sendmail.
- Install a startup-script (taken from security/clamav-devel with some
fixes in comments) for clamav-milter when compiled with WITH_MILTER.
- In pkg-descr remove the note that clamav-milter doesn't build on
FreeBSD 4 with base gcc, it builds fine there. Mention that
clamav-milter can be optionally used (taken from pkg-descr of
security/clamav-devel).
- Fix compilation when an older version of security/clamav is installed.
If there's an older version of libclamav installed clamav 0.65 will
link against it instead of the newly built one. This is not a problem
if the installed version is compatible with the new one as libclamav
gets linked dynamically and the installed version will be replaced
with the new one. However, if the older version is incompatible
linking of clamav 0.65 fails. This problem was discovered by
Jan-Peter Koopmann Jan-Peter.Koopmann@seceidos.de and the fix
(most of the new patches in the files directory) confirmed working.
- In clamav-milter replace the path to the used sendmail executable with
the location of the mailwrapper(8) (/usr/sbin/sendmail). Obtained
from security/clamav-devel.
PR: 59948
Submitted by: Marius Strobl <marius@alchemy.franken.de>
Approved by: maintainer
- use included libtool (seems heavily patched)
- make packageable and include a working configure file
- add a rcNG start/stop script
- added web site
- don't install useless .la files
- use DATADIR
- 510001 is FreeBSD 5.10, 5.1-CURRENT is 501100
- minor cleanup
PR: 57256
Submitted by: eikemeier@fillmore-labs.com
o Remove unnecsesary patches for current.
o Add/remove users when installing/removing.
o Set permissions on virus database dir.
PR: ports/53305
Submitted by: Rob Evers<rob@debank.tv>
Approved by: TERAMOTO Masahiro <markun@onohara.to> (maintainer)
Turn on building clamd and clamdscan.
PR: 53056
Pointed out by: Olivier Tharan <olive@oban.frmug.org>
Submitted by: TERAMOTO Masahiro <markun@onohara.to>
