pkgsrc/security/clamav
taca 96d637a4a8 security/clamav: update to 0.103.5
0.103.5 (2022-01-12)

ClamAV 0.103.5 is a critical patch release with the following fixes:

* CVE-2022-20698<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-20698>:
  Fix for invalid pointer read that may cause a crash. This issue affects
  0.104.1, 0.103.4 and prior when ClamAV is compiled with libjson-c and the
  CL_SCAN_GENERAL_COLLECT_METADATA scan option (the clamscan --gen-json
  option) is enabled.

  Cisco would like to thank Laurent Delosieres of ManoMano for reporting
  this vulnerability.

* Fixed ability to disable the file size limit with libclamav C API, like
  this:

  cl_engine_set_num(engine, CL_ENGINE_MAX_FILESIZE, 0);

  This issue didn't affect ClamD or ClamScan which also can disable the
  limit by setting it to zero using MaxFileSize 0 in clamd.conf for ClamD,
  or clamscan --max-filesize=0 for ClamScan.

  Note: Internally, the max file size is still set to 2 GiB. Disabling the
  limit for a scan will fall back on the internal 2 GiB limitation.

* Increased the maximum line length for ClamAV config files from 512 bytes
  to 1,024 bytes to allow for longer config option strings.

* SigTool: Fix insufficient buffer size for --list-sigs that caused a
  failure when listing a database containing one or more very long
  signatures. This fix was backported from 0.104.

Special thanks to the following for code contributions and bug reports:

* Laurent Delosieres
2022-01-13 15:28:22 +00:00
..
files security/clamav: add clamav-milter startup script 2020-09-14 16:54:35 +00:00
patches security/clamav: update to 0.103.4 2021-11-08 14:49:23 +00:00
buildlink3.mk revbump for icu and libffi 2021-12-08 16:01:42 +00:00
DEINSTALL
DESCR
distinfo security/clamav: update to 0.103.5 2022-01-13 15:28:22 +00:00
Makefile security/clamav: update to 0.103.5 2022-01-13 15:28:22 +00:00
Makefile.common security/clamav: update to 0.103.5 2022-01-13 15:28:22 +00:00
MESSAGE
options.mk security/clamav: add clamav-milter startup script 2020-09-14 16:54:35 +00:00
PLIST Update clamav to 0.102.0 2019-10-10 15:41:29 +00:00