* [Buildroot] [PATCH 1/1] package/clamav: security bump version to 0.102.2
@ 2020-02-06 18:43 Bernd Kuhls
2020-02-06 20:03 ` Peter Korsgaard
2020-03-10 21:47 ` Peter Korsgaard
0 siblings, 2 replies; 3+ messages in thread
From: Bernd Kuhls @ 2020-02-06 18:43 UTC (permalink / raw)
To: buildroot
Release notes:
https://lists.clamav.net/pipermail/clamav-announce/2020/000045.html
Fixes CVE-2020-3123.
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
---
package/clamav/clamav.hash | 2 +-
package/clamav/clamav.mk | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/package/clamav/clamav.hash b/package/clamav/clamav.hash
index 72ce1b1c44..613d9b4122 100644
--- a/package/clamav/clamav.hash
+++ b/package/clamav/clamav.hash
@@ -1,5 +1,5 @@
# Locally calculated
-sha256 0dbda8d0d990d068732966f13049d112a26dce62145d234383467c1d877dedd6 clamav-0.102.1.tar.gz
+sha256 89fcdcc0eba329ca84d270df09d2bb89ae55f5024b0c3bddb817512fb2c907d3 clamav-0.102.2.tar.gz
sha256 0c4fd2fa9733fc9122503797648710851e4ee6d9e4969dd33fcbd8c63cd2f584 COPYING
sha256 d72a145c90918184a05ef65a04c9e6f7466faa59bc1b82c8f6a8ddc7ddcb9bed COPYING.bzip2
sha256 dfb818a0d41411c6fb1c193c68b73018ceadd1994bda41ad541cbff292894bc6 COPYING.file
diff --git a/package/clamav/clamav.mk b/package/clamav/clamav.mk
index a4059ae200..b8d7de52fa 100644
--- a/package/clamav/clamav.mk
+++ b/package/clamav/clamav.mk
@@ -4,7 +4,7 @@
#
################################################################################
-CLAMAV_VERSION = 0.102.1
+CLAMAV_VERSION = 0.102.2
CLAMAV_SITE = https://www.clamav.net/downloads/production
CLAMAV_LICENSE = GPL-2.0
CLAMAV_LICENSE_FILES = COPYING COPYING.bzip2 COPYING.file COPYING.getopt \
--
2.20.1
^ permalink raw reply related [flat|nested] 3+ messages in thread
* [Buildroot] [PATCH 1/1] package/clamav: security bump version to 0.102.2
2020-02-06 18:43 [Buildroot] [PATCH 1/1] package/clamav: security bump version to 0.102.2 Bernd Kuhls
@ 2020-02-06 20:03 ` Peter Korsgaard
2020-03-10 21:47 ` Peter Korsgaard
1 sibling, 0 replies; 3+ messages in thread
From: Peter Korsgaard @ 2020-02-06 20:03 UTC (permalink / raw)
To: buildroot
>>>>> "Bernd" == Bernd Kuhls <bernd.kuhls@t-online.de> writes:
> Release notes:
> https://lists.clamav.net/pipermail/clamav-announce/2020/000045.html
> Fixes CVE-2020-3123.
> Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Extended the commit message with a description of the CVE and committed,
thanks.
--
Bye, Peter Korsgaard
^ permalink raw reply [flat|nested] 3+ messages in thread
* [Buildroot] [PATCH 1/1] package/clamav: security bump version to 0.102.2
2020-02-06 18:43 [Buildroot] [PATCH 1/1] package/clamav: security bump version to 0.102.2 Bernd Kuhls
2020-02-06 20:03 ` Peter Korsgaard
@ 2020-03-10 21:47 ` Peter Korsgaard
1 sibling, 0 replies; 3+ messages in thread
From: Peter Korsgaard @ 2020-03-10 21:47 UTC (permalink / raw)
To: buildroot
>>>>> "Bernd" == Bernd Kuhls <bernd.kuhls@t-online.de> writes:
> Release notes:
> https://lists.clamav.net/pipermail/clamav-announce/2020/000045.html
> Fixes CVE-2020-3123.
> Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Committed to 2019.11.x, thanks.
According to the CVE info the issue was only introduced in 0.102.0, so I
have not backported it to 2019.02.x:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3123
--
Bye, Peter Korsgaard
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2020-03-10 21:47 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2020-02-06 18:43 [Buildroot] [PATCH 1/1] package/clamav: security bump version to 0.102.2 Bernd Kuhls
2020-02-06 20:03 ` Peter Korsgaard
2020-03-10 21:47 ` Peter Korsgaard
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.