From mboxrd@z Thu Jan  1 00:00:00 1970
From: Adolf Belka <adolf.belka@ipfire.org>
To: development@lists.ipfire.org
Subject: [PATCH] clamav: Update to version 1.3.1
Date: Tue, 03 Sep 2024 11:17:19 +0200
Message-ID: <20240903091725.7068-1-adolf.belka@ipfire.org>
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============2955122201388010011=="
List-Id: <development.lists.ipfire.org>

--===============2955122201388010011==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable

- Update from version 1.3.0 to 1.3.1
- Update of rootfile not required
- As we can not upgrade currently to version 1.4.0 due to the rust/ruby issue=
 we need to
   update to 1.3.1 as it has a CVE fix in it.
- There are three rust dependencies that have been updated but all have a rus=
t-1.57
   requirement so have no problem with our current rust-1.67.0 version
- Changelog
    1.3.1
      This is a critical patch release with the following fixes:
	- [CVE-2024-20380](https://cve.mitre.org/cgi-bin/cvename.cgi?name=3DCVE-2024=
-20380):
	  Fixed a possible crash in the HTML file parser that could cause a
	  denial-of-service (DoS) condition.
	  This issue affects version 1.3.0 only and does not affect prior versions.
	  - [GitHub pull request](https://github.com/Cisco-Talos/clamav/pull/1242)
	- Updated select Rust dependencies to the latest versions.
	  This resolved Cargo audit complaints and included PNG parser bug fixes.
	  - [GitHub pull request](https://github.com/Cisco-Talos/clamav/pull/1227)
	- Fixed a bug causing some text to be truncated when converting from UTF-16.
	  - [GitHub pull request](https://github.com/Cisco-Talos/clamav/pull/1230)
	- Fixed assorted complaints identified by Coverity static analysis.
	  - [GitHub pull request](https://github.com/Cisco-Talos/clamav/pull/1235)
	- Fixed a bug causing CVDs downloaded by the `DatabaseCustomURL` Freshclam
	  config option to be pruned and then re-downloaded with every update.
	  - [GitHub pull request](https://github.com/Cisco-Talos/clamav/pull/1238)
	- Added the new 'valhalla' database name to the list of optional databases in
	  preparation for future work.
	  - [GitHub pull request](https://github.com/Cisco-Talos/clamav/pull/1238)
	- Added symbols to the `libclamav.map` file to enable additional build
	  configurations.
	  - [GitHub pull request](https://github.com/Cisco-Talos/clamav/pull/1244)

Signed-off-by: Adolf Belka <adolf.belka(a)ipfire.org>
---
 lfs/clamav | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/lfs/clamav b/lfs/clamav
index 5a1089187..32b4aa4f9 100644
--- a/lfs/clamav
+++ b/lfs/clamav
@@ -26,7 +26,7 @@ include Config
=20
 SUMMARY    =3D Antivirus Toolkit
=20
-VER        =3D 1.3.0
+VER        =3D 1.3.1
=20
 THISAPP    =3D clamav-$(VER)
 DL_FILE    =3D $(THISAPP).tar.gz
@@ -34,7 +34,7 @@ DL_FROM    =3D $(URL_IPFIRE)
 DIR_APP    =3D $(DIR_SRC)/$(THISAPP)
 TARGET     =3D $(DIR_INFO)/$(THISAPP)
 PROG       =3D clamav
-PAK_VER    =3D 71
+PAK_VER    =3D 72
=20
 DEPS       =3D
=20
@@ -50,7 +50,7 @@ objects =3D $(DL_FILE)
=20
 $(DL_FILE) =3D $(DL_FROM)/$(DL_FILE)
=20
-$(DL_FILE)_BLAKE2 =3D dc411b1a905d2699c497870877fbe99e3910f8e29bc77830085c8a=
b75161c80066ca1396f47c3cd6a098c06c839464dbe31feb2e7e64622c657ad4a6a9401282
+$(DL_FILE)_BLAKE2 =3D 49fc5f2f9b4497c095c4d19f86ebcdbcd49cac0e1355c0dbaba8bd=
56cbbc5af94404b6e6b04fbfb5e3d4364b7ff110b8461f93ba485ddc3f6b56cd86dbe4b362
=20
=20
 install : $(TARGET)
--=20
2.46.0


--===============2955122201388010011==--