headers
Philipp Kern | 14 Jan 23:32
Picon
Favicon

[VUA 60-3] Updated clamav version for Etch

---------------------------------------------------------------------------
Debian Volatile Update Announcement VUA 60-3     http://volatile.debian.org
debian-volatile <at> lists.debian.org                         Michael Tautsching
January 14th, 2009
---------------------------------------------------------------------------

Package              : clamav
Version              : 0.95.3+dfsg-1~volatile1~etch2 (Etch)
Importance           : low

Upstream published version 0.95.3.

This is a bugfix release. The changes are not strictly required for operation,
but users of the previous version in volatile might get warnings.

If you use clamav, we recommend you upgrade to this version.

This update fixes an uninstallability bug present in the package for Etch
announced in VUA 60-2 (version 0.95.3+dfsg-1~volatile1~etch1).

Upgrade Instructions
--------------------

You can get the updated packages at

http://volatile.debian.org/debian-volatile/pool/volatile/main/c/clamav

and install them with dpkg, or add the volatile archive for Etch
to your /etc/apt/sources.list:
(Continue reading)

Permalink | Reply | 0 comments |
headers
Philipp Kern | 11 Jan 23:41
Picon
Favicon

[VUA 60-2] Updated clamav version for Etch

---------------------------------------------------------------------------
Debian Volatile Update Announcement VUA 60-2     http://volatile.debian.org
debian-volatile <at> lists.debian.org                         Michael Tautsching
January 11th, 2009
---------------------------------------------------------------------------

Package              : clamav
Version              : 0.95.3+dfsg-1~volatile1~etch1 (Etch)
Importance           : low

Upstream published version 0.95.3.

This is a bugfix release. The changes are not strictly required for operation,
but users of the previous version in volatile might get warnings.

If you use clamav, we recommend you upgrade to this version.

Please note that currently the only builds available are i386, amd64 and
powerpc.

Upgrade Instructions
--------------------

You can get the updated packages at

http://volatile.debian.org/debian-volatile/pool/volatile/main/c/clamav

and install them with dpkg, or add the volatile archive for Etch
to your /etc/apt/sources.list:
(Continue reading)

Permalink | Reply | 0 comments |
headers
Philipp Kern | 2 Jan 13:44
Picon
Favicon

[VUA 61-1] Updated spamassassin version

---------------------------------------------------------------------------
Debian Volatile Update Announcement VUA 61-1     http://volatile.debian.org
debian-volatile <at> lists.debian.org                               Philipp Kern
January 2th, 2010
---------------------------------------------------------------------------

Package              : spamassassin
Version              : 3.2.5-2+lenny1.1~volatile1 (Lenny)
Importance           : medium

It was discovered that SpamAssassin contains a rule that falsely penalizes
mails that have a date of 2010 and onwards.  This update adjusts the rule
to match on mails of 2020 and onwards instead.

If you use spamassassin, we recommend you upgrade to this version.  An
update will also be included in the next Lenny point release.

This update only includes spamassassin, not the compiled spamc client.

Upgrade Instructions
--------------------

You can get the updated packages at

http://volatile.debian.org/debian-volatile/pool/volatile/main/s/spamassassin

and install them with dpkg, or add the volatile archive for Lenny
to your /etc/apt/sources.list:

 deb http://volatile.debian.org/debian-volatile lenny/volatile main
(Continue reading)

Permalink | Reply | 0 comments |
headers
Philipp Kern | 5 Dec 16:37
Picon
Favicon

[VUA 60-1] Updated clamav version

---------------------------------------------------------------------------
Debian Volatile Update Announcement VUA 60-1     http://volatile.debian.org
debian-volatile <at> lists.debian.org                         Michael Tautsching
December 5th, 2009
---------------------------------------------------------------------------

Package              : clamav
Version              : 0.95.3+dfsg-1~volatile1 (Lenny)
Importance           : low

Upstream published version 0.95.3.

This is a bugfix release. The changes are not strictly required for operation,
but users of the previous version in volatile might get warnings.

If you use clamav, we recommend you upgrade to this version.

Upgrade Instructions
--------------------

You can get the updated packages at

http://volatile.debian.org/debian-volatile/pool/volatile/main/c/clamav

and install them with dpkg, or add the volatile archive for Lenny
to your /etc/apt/sources.list:

 deb http://volatile.debian.org/debian-volatile lenny/volatile main
 deb-src http://volatile.debian.org/debian-volatile lenny/volatile main
(Continue reading)

Permalink | Reply | 11 comments |
headers
Philipp Kern | 19 Oct 18:31
Picon
Favicon

[VUA 59-1] Updated tzdata version

---------------------------------------------------------------------------
Debian Volatile Update Announcement VUA 59-1     http://volatile.debian.org
debian-volatile <at> lists.debian.org                        Margarita Manterola
October 19th, 2009
---------------------------------------------------------------------------

Package              : tzdata
Version              : 2009g-0etch1.1 (Etch),
                       2009l-0lenny1.1 (Lenny)
Importance           : low

The tzdata package in etch does not contain up-to-date timezone
information for Argentina, due to the sudden decision on suspending
the start of daylight saving time nationwide.

For etch, an updated tzdata package is available in etch/volatile
as version 2009g-0etch1.1, and for lenny the updated tzdata package is
available in lenny/volatile as version 2009l-0lenny1.1, these patches
will also be included in the next point releases.

We recommend that you update your system.

Upgrade Instructions
--------------------

You can get the updated packages at

http://volatile.debian.org/debian-volatile/pool/volatile/main/t/tzdata/

and install them with dpkg, or add the volatile archive for Lenny
(Continue reading)

Permalink | Reply | 0 comments |
headers
Philipp Kern | 16 Jul 08:32
Picon
Favicon

[VUA 57-1] Updated clamav version

---------------------------------------------------------------------------
Debian Volatile Update Announcement VUA 57-1     http://volatile.debian.org
debian-volatile <at> lists.debian.org                               Stephen Gran
Jul 16, 2009
---------------------------------------------------------------------------

Package              : clamav
Version              : 0.95.2+dfsg-0volatile1 (Etch),
                       0.95.2+dfsg-1~volatile1 (Lenny)
Importance           : low

Upstream published version 0.95.2.

Though the changes are not strictly required for operation, users of the
previous version in volatile might get warnings.

This version improves handling of archives, adds support for --file-list
in clamscan and clamdscan, and fixes various issues found in previous
releases.

If you use clamav, we recommend you upgrade to this version.

Upgrade Instructions
--------------------

You can get the updated packages at

http://volatile.debian.org/debian-volatile/pool/volatile/main/c/clamav/

and install them with dpkg, or add the volatile archive for Lenny
(Continue reading)

Permalink | Reply | 0 comments |
headers
Philipp Kern | 18 Jun 23:58
Picon
Favicon

[VUA 57-1] Updated tzdata version

---------------------------------------------------------------------------
Debian Volatile Update Announcement VUA 57-1     http://volatile.debian.org
debian-volatile <at> lists.debian.org                             Marcin Owsiany
Jun 18, 2009
---------------------------------------------------------------------------

Package              : postgrey
Version              : 1.31-3.1
Importance           : low

postgrey 1.31-3.1 provides an updated clients whitelist. Several new
organizations' addresses were added, as well as updated entries for
Google and Yahoo.

We recommend you to install this update onto your system.

Upgrade Instructions
--------------------

You can get the updated packages at

http://volatile.debian.org/debian-volatile/pool/volatile/main/p/postgrey/

and install them with dpkg, or add the volatile archive for Lenny
to your /etc/apt/sources.list:

 deb http://volatile.debian.org/debian-volatile lenny/volatile main
 deb-src http://volatile.debian.org/debian-volatile lenny/volatile main

You can also use any of our mirrors.  See
(Continue reading)

Permalink | Reply | 0 comments |
headers
Philipp Kern | 3 Jun 15:01
Picon
Favicon

[VUA 56-1] Updated tzdata version

---------------------------------------------------------------------------
Debian Volatile Update Announcement VUA 56-1     http://volatile.debian.org
debian-volatile <at> lists.debian.org                             Aurelien Jarno
Jun  3, 2009
---------------------------------------------------------------------------

Package              : tzdata
Version              : 2009g-0etch1 (Etch),
                       2009g-0lenny1 (Lenny)
Importance           : low

For Etch this upgrade includes two new upstream versions (from 2008e through
2008h to 2009g), for Lenny one (from 2008h to 2009g).

The update from 2008e to 2008h contains changes to the timezones of the
following countries: Brazil, Mauritius, Morocco, Pakistan, Palestine and
Syria.

The update from 2008h to 2009g contains changed to the timezones of the
following countries: Canada, Cuba, Egypt, Jordan, Morroco, Pakistan,
Palestine, Syria and Tunisia.

We recommend you to install this update onto your system.

Upgrade Instructions
--------------------

You can get the updated packages at

http://volatile.debian.org/debian-volatile/pool/volatile/main/c/clamav/
(Continue reading)

Permalink | Reply | 0 comments |
headers
Philipp Kern | 29 Apr 10:21
Picon
Favicon

[VUA 55-1] Updated clamav version

---------------------------------------------------------------------------
Debian Volatile Update Announcement VUA 55-1     http://volatile.debian.org
debian-volatile <at> lists.debian.org                               Stephen Gran
Apr 29, 2009
---------------------------------------------------------------------------

Package              : clamav
Version              : 0.95.1+dfsg-0volatile2 (Etch),
                       0.95.1+dfsg-1volatile2 (Lenny)
Importance           : medium
CVE IDs              : CVE-2008-6680, CVE-2009-1270

Upstream published version 0.95.1.

Though the changes are not strictly required for operation, users of the
previous version in volatile might get warnings.

The new version contains these enhancements:

    - Google Safe Browsing support: in addition to the heuristic and signature
      based phishing detection mechanisms already available in ClamAV, the
      scanner can now make use of the Google's blacklists of suspected
      phishing and malware sites. The ClamAV Project distributes a constantly
      updated Safe Browsing database, which can be automatically fetched by
      freshclam. For more information, please see freshclam.conf(5) and
      http://safebrowsing.clamav.net.

    - New clamav-milter: The program has been redesigned and rewritten from
      scratch. The most notable difference is that the internal mode has been
      dropped which means that now a working clamd companion is required.
(Continue reading)

Permalink | Reply | 0 comments |
headers
Martin Zobel-Helas | 14 Apr 17:43
Picon

[VUA 54-1] Updated clamav package fixes security flaw

---------------------------------------------------------------------------
Debian Volatile Update Announcement VUA 54-1     http://volatile.debian.org
debian-volatile <at> lists.debian.org                         Michael Tautschnig
April 14, 2009
---------------------------------------------------------------------------

Package              : clamav
Version              : 0.94.dfsg.2-1~volatile3
Importance           : high
CVE IDs              : CVE-2008-6680, CVE-2009-1270 and unkown

The following security flaws were found and fixed in the ClamAV 
anti-virus toolkit:

CVE-2008-6680

    libclamav/pe.c in ClamAV before 0.95 allows remote attackers to 
    cause a denial of service (crash) via a crafted EXE file that 
    triggers a divide-by-zero error.

CVE-2009-1270

    libclamav/untar.c in ClamAV before 0.95 allows remote attackers 
    to cause a denial of service (infinite loop) via a crafted file 
    that causes (1) clamd and (2) clamscan to hang.

no CVE yet
    libclamav/other.h in ClamAV before 0.95.1 allows remote attackers 
    to cause a denial of service (crash) via crafted EXE files packed 
    using UPack.
(Continue reading)

Permalink | Reply | 0 comments |
headers
Philipp Kern | 2 Apr 12:54
Picon
Favicon

[VUA 2-2] Discontinuation of clamav-data

---------------------------------------------------------------------------
Debian Volatile Update Announcement VUA 2-2      http://volatile.debian.org
debian-volatile <at> lists.debian.org                               Philipp Kern
Apr  2, 2009
---------------------------------------------------------------------------

Package              : clamav-data

Since July 2005 volatile contained current ClamAV Virus Databases through
the clamav-data package.  Those were autobuilt and uploaded several times
a day and intended for computers which cannot access the internet through
HTTP but only a local package mirror.

This service will be discontinued in about a month when volatile moves
to Debian's FTP master server and the official mirror network.  Users of
the package are advised to set up a local HTTP mirror which can then be
used with freshclam.

A suggestion about how to set up such a mirror can be found in the ClamAV
developers' Frequently Asked Questions:

  http://www.clamav.net/support/faq/

Furthermore kudos go to Marc 'Zugschlus' Haber who maintained this service
for almost four years.

About Debian Volatile
---------------------

For further information about debian-volatile, please refer to
(Continue reading)

Permalink | Reply | 0 comments |

Gmane