Register | Log in

clamav

anti-virus utility for Unix - command-line interface

Choose email to subscribe with

general

source: clamav (main)
version: 0.100.2+dfsg-1
maintainer: ClamAV Team (archive) [DMD]
uploaders: Andreas Cadhalpun [DMD] – Michael Tautschnig [DMD] – Michael Meskes [DMD] – Scott Kitterman [DMD] – Sebastian Andrzej Siewior [DMD]
arch: all any
std-ver: 4.1.5
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 0.99+dfsg-0+deb7u2
o-o-sec: 0.99.4+dfsg-1+deb7u1
o-o-upd: 0.99+dfsg-0+deb7u2
oldstable: 0.100.0+dfsg-0+deb8u1
old-sec: 0.100.1+dfsg-0+deb8u1
old-upd: 0.99.2+dfsg-0+deb8u3
stable: 0.100.0+dfsg-0+deb9u2
stable-upd: 0.100.1+dfsg-0+deb9u1
stable-p-u: 0.100.1+dfsg-0+deb9u1
testing: 0.100.2+dfsg-1
unstable: 0.100.2+dfsg-1

versioned links

0.99+dfsg-0+deb7u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.99.2+dfsg-0+deb8u3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.99.4+dfsg-1+deb7u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.100.0+dfsg-0+deb8u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.100.0+dfsg-0+deb9u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.100.1+dfsg-0+deb8u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.100.1+dfsg-0+deb9u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.100.2+dfsg-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

clamav
clamav-base
clamav-daemon
clamav-docs
clamav-freshclam
clamav-milter
clamav-testfiles
clamdscan
libclamav-dev
libclamav7

action needed

1 security issue in jessie high

There is 1 open security issue in jessie.

1 important issue:

CVE-2018-15378: A vulnerability in ClamAV versions prior to 0.100.2 could allow an attacker to cause a denial of service (DoS) condition. The vulnerability is due to an error related to the MEW unpacker within the "unmew11()" function (libclamav/mew.c), which can be exploited to trigger an invalid read memory access via a specially crafted EXE file.

Please fix it.

Created: 2018-10-06 Last update: 2018-10-17 08:02

lintian reports 1 error and 7 warnings high

Lintian reports 1 error and 7 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2018-06-08 Last update: 2018-08-12 07:42

Depends on packages which need a new maintainer normal

The packages that clamav depends on which need a new maintainer are:

json-c (#844452)
- Depends: libjson-c3 libjson-c3
- Build-Depends: libjson-c-dev libjson0-dev
sendmail (#740070)
- Depends: libmilter1.0.1
- Build-Depends: libmilter-dev

Created: 2017-12-02 Last update: 2018-10-17 07:44

3 ignored security issues in stretch low

There are 3 open security issues in stretch.

3 issues skipped by the security teams:

CVE-2018-0361: ClamAV before 0.100.1 lacks a PDF object length check, resulting in an unreasonably long time to parse a relatively small file.
CVE-2018-15378: A vulnerability in ClamAV versions prior to 0.100.2 could allow an attacker to cause a denial of service (DoS) condition. The vulnerability is due to an error related to the MEW unpacker within the "unmew11()" function (libclamav/mew.c), which can be exploited to trigger an invalid read memory access via a specially crafted EXE file.
CVE-2018-0360: ClamAV before 0.100.1 has an HWP integer overflow with a resultant infinite loop via a crafted Hangul Word Processor file. This is in parsehwp3_paragraph() in libclamav/hwp.c.

Please fix them.

Created: 2018-07-17 Last update: 2018-10-17 08:02

Build log checks report 2 warnings low

Build log checks report 2 warnings

Created: 2017-10-26 Last update: 2018-04-13 02:11

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.2.1 instead of 4.1.5).

Created: 2018-08-20 Last update: 2018-10-10 09:46

testing migrations

This package will soon be part of the auto-json-c transition. You might want to ensure that your package is ready for it. You can probably find supplementary information in the debian-release archives or in the corresponding release.debian.org bug.

news

[2018-10-12] clamav 0.100.2+dfsg-1 MIGRATED to testing (Debian testing watch)
[2018-10-09] Accepted clamav 0.100.2+dfsg-1 (source) into unstable (Sebastian Andrzej Siewior)
[2018-08-19] Accepted clamav 0.100.1+dfsg-0+deb8u1 (source all amd64) into oldstable, oldstable (Santiago Ruano Rincón)
[2018-07-22] Accepted clamav 0.100.1+dfsg-0+deb9u1 (source) into proposed-updates->stable-new, proposed-updates (Sebastian Andrzej Siewior)
[2018-07-14] clamav 0.100.1+dfsg-1 MIGRATED to testing (Debian testing watch)
[2018-07-11] Accepted clamav 0.100.1+dfsg-1 (source) into unstable (Sebastian Andrzej Siewior)
[2018-07-06] Accepted clamav 0.100.0+dfsg-0+deb9u2 (source) into proposed-updates->stable-new, proposed-updates (Sebastian Andrzej Siewior)
[2018-04-30] Accepted clamav 0.100.0+dfsg-0+deb8u1 (source all) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates (Sebastian Andrzej Siewior)
[2018-04-30] Accepted clamav 0.100.0+dfsg-0+deb9u1 (source) into proposed-updates->stable-new, proposed-updates (Sebastian Andrzej Siewior)
[2018-04-18] clamav 0.100.0+dfsg-1 MIGRATED to testing (Debian testing watch)
[2018-04-11] Accepted clamav 0.100.0+dfsg-1 (source) into unstable (Sebastian Andrzej Siewior)
[2018-03-16] Accepted clamav 0.99.4+dfsg-1+deb7u1 (source all armhf) into oldoldstable (Santiago R.R.) (signed by: Santiago Ruano Rincón)
[2018-03-16] Accepted clamav 0.99.4+dfsg-1+deb7u1 (source all armhf) into oldoldstable (Santiago R.R.) (signed by: Santiago Ruano Rincón)
[2018-03-16] clamav 0.100.0~beta+dfsg-2 MIGRATED to testing (Debian testing watch)
[2018-03-10] Accepted clamav 0.100.0~beta+dfsg-2 (source) into unstable (Sebastian Andrzej Siewior)
[2018-03-04] Accepted clamav 0.99.4+dfsg-1+deb8u1 (source all) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates (Sebastian Andrzej Siewior)
[2018-03-04] Accepted clamav 0.99.4+dfsg-1+deb9u1 (source) into proposed-updates->stable-new, proposed-updates (Sebastian Andrzej Siewior)
[2018-02-15] clamav 0.100.0~beta+dfsg-1 MIGRATED to testing (Debian testing watch)
[2018-02-12] Accepted clamav 0.99.2+dfsg-0+deb7u5 (source all amd64) into oldoldstable (Thorsten Alteholz)
[2018-02-10] Accepted clamav 0.100.0~beta+dfsg-1 (source all amd64) into unstable (Scott Kitterman) (signed by: Donald Scott Kitterman)
[2018-01-28] Accepted clamav 0.99.2+dfsg-0+deb8u3 (source all) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates (Sebastian Andrzej Siewior)
[2018-01-28] Accepted clamav 0.99.2+dfsg-6+deb9u1 (source) into proposed-updates->stable-new, proposed-updates (Sebastian Andrzej Siewior)
[2018-01-28] Accepted clamav 0.99.2+dfsg-0+deb7u4 (source all amd64) into oldoldstable (Roberto C. Sanchez)
[2018-01-14] clamav 0.99.3~beta2+dfsg-1 MIGRATED to testing (Debian testing watch)
[2018-01-08] Accepted clamav 0.99.3~beta2+dfsg-1 (source) into unstable (Sebastian Andrzej Siewior)
[2017-11-27] clamav 0.99.3~beta1+dfsg-4 MIGRATED to testing (Debian testing watch)
[2017-11-21] Accepted clamav 0.99.3~beta1+dfsg-4 (source) into unstable (Sebastian Andrzej Siewior)
[2017-11-20] Accepted clamav 0.99.3~beta1+dfsg-3 (source) into unstable (Sebastian Andrzej Siewior)
[2017-09-22] Accepted clamav 0.99.2+dfsg-0+deb7u3 (source all amd64) into oldoldstable (Hugo Lefeuvre)
[2017-09-08] clamav 0.99.3~beta1+dfsg-2 MIGRATED to testing (Debian testing watch)

1
2

bugs [bug history graph]

all: 16
RC: 1
I&N: 6
M&W: 9
F&P: 0
patch: 0

links

homepage
lintian (1, 7)
buildd: logs, checks, clang, reproducibility
popcon
debci
browse source code
edit tags
security tracker
screenshots

ubuntu

[Information about Ubuntu for Debian Developers]

version: 0.100.2+dfsg-0ubuntu1
35 bugs
patches for 0.100.2+dfsg-0ubuntu1

Debian Package Tracker — Copyright 2013-2018 The Distro Tracker Developers

Report problems to the tracker.debian.org pseudo-package in the Debian BTS.

Documentation — Bugs — Git Repository — Contributing