[Git][security-tracker-team/security-tracker][master] Track clamav fixes via 8.11

Salvatore Bonaccorso carnil at debian.org
Sat Jun 23 10:25:20 BST 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
aa31bd3d by Salvatore Bonaccorso at 2018-06-23T11:24:23+02:00
Track clamav fixes via 8.11

Not racking here the final ending upload because already the earlier
upload was in the archive, it was just then superseeded by the 0.100
based version, but the original fixes were already in the jessie-updates
version.

- - - - -


2 changed files:

- data/CVE/list
- data/next-oldstable-point-update.txt


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -49506,7 +49506,7 @@ CVE-2017-12380 (ClamAV AntiVirus software versions 0.99.2 and prior contain a ..
 	{DLA-1261-1}
 	- clamav 0.99.3~beta2+dfsg-1 (bug #888484)
 	[stretch] - clamav 0.99.2+dfsg-6+deb9u1
-	[jessie] - clamav <no-dsa> (clamav is updated via -updates)
+	[jessie] - clamav 0.99.2+dfsg-0+deb8u3
 	NOTE: http://blog.clamav.net/2018/01/clamav-0993-has-been-released.html
 	NOTE: https://bugzilla.clamav.net/show_bug.cgi?id=11945
 	NOTE: https://github.com/vrtadmin/clamav-devel/commit/39c89d14a61aef2958b8ea64ade1be7a5faca897
@@ -49514,7 +49514,7 @@ CVE-2017-12379 (ClamAV AntiVirus software versions 0.99.2 and prior contain a ..
 	{DLA-1261-1}
 	- clamav 0.99.3~beta2+dfsg-1 (bug #888484)
 	[stretch] - clamav 0.99.2+dfsg-6+deb9u1
-	[jessie] - clamav <no-dsa> (clamav is updated via -updates)
+	[jessie] - clamav 0.99.2+dfsg-0+deb8u3
 	NOTE: http://blog.clamav.net/2018/01/clamav-0993-has-been-released.html
 	NOTE: https://bugzilla.clamav.net/show_bug.cgi?id=11944
 	NOTE: https://github.com/vrtadmin/clamav-devel/commit/0604618374dc0dfd148b0ce7bf7a3d2b7528e66b
@@ -49522,7 +49522,7 @@ CVE-2017-12378 (ClamAV AntiVirus software versions 0.99.2 and prior contain a ..
 	{DLA-1261-1}
 	- clamav 0.99.3~beta2+dfsg-1 (bug #888484)
 	[stretch] - clamav 0.99.2+dfsg-6+deb9u1
-	[jessie] - clamav <no-dsa> (clamav is updated via -updates)
+	[jessie] - clamav 0.99.2+dfsg-0+deb8u3
 	NOTE: http://blog.clamav.net/2018/01/clamav-0993-has-been-released.html
 	NOTE: https://bugzilla.clamav.net/show_bug.cgi?id=11946
 	NOTE: https://github.com/vrtadmin/clamav-devel/commit/292d6878fa3e7fd2ab0f7275a78190639ad116d4
@@ -49531,7 +49531,7 @@ CVE-2017-12377 (ClamAV AntiVirus software versions 0.99.2 and prior contain a ..
 	{DLA-1261-1}
 	- clamav 0.99.3~beta2+dfsg-1 (bug #888484)
 	[stretch] - clamav 0.99.2+dfsg-6+deb9u1
-	[jessie] - clamav <no-dsa> (clamav is updated via -updates)
+	[jessie] - clamav 0.99.2+dfsg-0+deb8u3
 	NOTE: http://blog.clamav.net/2018/01/clamav-0993-has-been-released.html
 	NOTE: https://bugzilla.clamav.net/show_bug.cgi?id=11943
 	NOTE: https://github.com/vrtadmin/clamav-devel/commit/38da4800bfb2d6b13579950b6543302d13e3015c
@@ -49540,7 +49540,7 @@ CVE-2017-12376 (ClamAV AntiVirus software versions 0.99.2 and prior contain a ..
 	{DLA-1261-1}
 	- clamav 0.99.3~beta2+dfsg-1 (bug #888484)
 	[stretch] - clamav 0.99.2+dfsg-6+deb9u1
-	[jessie] - clamav <no-dsa> (clamav is updated via -updates)
+	[jessie] - clamav 0.99.2+dfsg-0+deb8u3
 	NOTE: http://blog.clamav.net/2018/01/clamav-0993-has-been-released.html
 	NOTE: https://bugzilla.clamav.net/show_bug.cgi?id=11942
 	NOTE: https://github.com/vrtadmin/clamav-devel/commit/c8ba4ae2e47a4f49add3e85ef7041b166be6bfdb
@@ -49548,7 +49548,7 @@ CVE-2017-12375 (The ClamAV AntiVirus software versions 0.99.2 and prior contain 
 	{DLA-1261-1}
 	- clamav 0.99.3~beta2+dfsg-1 (bug #888484)
 	[stretch] - clamav 0.99.2+dfsg-6+deb9u1
-	[jessie] - clamav <no-dsa> (clamav is updated via -updates)
+	[jessie] - clamav 0.99.2+dfsg-0+deb8u3
 	NOTE: http://blog.clamav.net/2018/01/clamav-0993-has-been-released.html
 	NOTE: https://bugzilla.clamav.net/show_bug.cgi?id=11940
 	NOTE: https://github.com/vrtadmin/clamav-devel/commit/d1100be31a567718ce7c7dd6e6c632eddab55209
@@ -49556,7 +49556,7 @@ CVE-2017-12374 (The ClamAV AntiVirus software versions 0.99.2 and prior contain 
 	{DLA-1261-1}
 	- clamav 0.99.3~beta2+dfsg-1 (bug #888484)
 	[stretch] - clamav 0.99.2+dfsg-6+deb9u1
-	[jessie] - clamav <no-dsa> (clamav is updated via -updates)
+	[jessie] - clamav 0.99.2+dfsg-0+deb8u3
 	NOTE: http://blog.clamav.net/2018/01/clamav-0993-has-been-released.html
 	NOTE: https://bugzilla.clamav.net/show_bug.cgi?id=11939
 	NOTE: https://github.com/vrtadmin/clamav-devel/commit/7cf2a701041b775dda9743d01665279facc9b326
@@ -67896,7 +67896,7 @@ CVE-2017-6420 (The wwunpack function in libclamav/wwunpack.c in ClamAV 0.99.2 al
 	{DLA-1261-1 DLA-1105-1}
 	- clamav 0.99.3~beta1+dfsg-1
 	[stretch] - clamav 0.99.2+dfsg-6+deb9u1
-	[jessie] - clamav <no-dsa> (Gets updated via -updates)
+	[jessie] - clamav 0.99.2+dfsg-0+deb8u3
 	NOTE: https://bugzilla.clamav.net/show_bug.cgi?id=11798
 	NOTE: https://github.com/vrtadmin/clamav-devel/commit/dfc00cd3301a42b571454b51a6102eecf58407bc
 	NOTE: https://github.com/vrtadmin/clamav-devel/commit/60671e3deb1df6c626e5c7e13752c2eec1649f98
@@ -67916,7 +67916,7 @@ CVE-2017-6418 (libclamav/message.c in ClamAV 0.99.2 allows remote attackers to c
 	{DLA-1261-1 DLA-1105-1}
 	- clamav 0.99.3~beta1+dfsg-1
 	[stretch] - clamav 0.99.2+dfsg-6+deb9u1
-	[jessie] - clamav <no-dsa> (Gets updated via -updates)
+	[jessie] - clamav 0.99.2+dfsg-0+deb8u3
 	NOTE: https://bugzilla.clamav.net/show_bug.cgi?id=11797
 	NOTE: https://github.com/vrtadmin/clamav-devel/commit/586a5180287262070637c8943f2f7efd652e4a2c
 CVE-2017-6417 (Code injection vulnerability in Avira Total Security Suite 15.0 (and ...)


=====================================
data/next-oldstable-point-update.txt
=====================================
--- a/data/next-oldstable-point-update.txt
+++ b/data/next-oldstable-point-update.txt
@@ -1,21 +1,3 @@
-CVE-2017-6418
-	[jessie] - clamav 0.99.2+dfsg-0+deb8u3
-CVE-2017-6420
-	[jessie] - clamav 0.99.2+dfsg-0+deb8u3
-CVE-2017-12374
-	[jessie] - clamav 0.99.2+dfsg-0+deb8u3
-CVE-2017-12375
-	[jessie] - clamav 0.99.2+dfsg-0+deb8u3
-CVE-2017-12376
-	[jessie] - clamav 0.99.2+dfsg-0+deb8u3
-CVE-2017-12377
-	[jessie] - clamav 0.99.2+dfsg-0+deb8u3
-CVE-2017-12378
-	[jessie] - clamav 0.99.2+dfsg-0+deb8u3
-CVE-2017-12379
-	[jessie] - clamav 0.99.2+dfsg-0+deb8u3
-CVE-2017-12380
-	[jessie] - clamav 0.99.2+dfsg-0+deb8u3
 CVE-2818-7667
 	[jessie] - adminer 3.3.3-1+deb8u1
 CVE-2018-7487



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/aa31bd3d7b7673fb116b746b978a0fab6cd99f6f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/aa31bd3d7b7673fb116b746b978a0fab6cd99f6f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180623/9af3edf7/attachment.html>

More information about the debian-security-tracker-commits mailing list