From owner-freebsd-security@FreeBSD.ORG Thu Nov 13 01:27:11 2008 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 58715106568E for ; Thu, 13 Nov 2008 01:27:11 +0000 (UTC) (envelope-from scheidell@secnap.net) Received: from fl.us.spammertrap.net (fl.us.spammertrap.net [204.89.241.173]) by mx1.freebsd.org (Postfix) with ESMTP id 270638FC19 for ; Thu, 13 Nov 2008 01:27:11 +0000 (UTC) (envelope-from scheidell@secnap.net) Received: from localhost (localhost [127.0.0.1]) by fl.us.spammertrap.net (Postfix) with ESMTP id CC57BE6032 for ; Wed, 12 Nov 2008 20:08:02 -0500 (EST) X-Quarantine-ID: X-Virus-Scanned: SpammerTrap(r) SME-150 1.84 at fl.us.spammertrap.net X-Amavis-Modified: Mail body modified (using disclaimer) by fl.us.spammertrap.net Received: from secnap3.secnap.com (secnap3.secnap.com [204.89.241.130]) by fl.us.spammertrap.net (Postfix) with ESMTP id 6D3E0E6002 for ; Wed, 12 Nov 2008 20:08:02 -0500 (EST) User-Agent: Microsoft-Entourage/12.14.0.081024 Date: Wed, 12 Nov 2008 20:08:26 -0500 From: Michael Scheidell To: Roger Marquis , Message-ID: Thread-Topic: ports/128749: [vuxml] VBA parser vulnerability in ClamAV Thread-Index: AclFLFTH8V50GLdpREioVyL7EsEA0A== In-Reply-To: <20081111160120.B49F32B2089@mx5.roble.com> Mime-version: 1.0 Content-type: text/plain; charset="US-ASCII" Content-transfer-encoding: 7bit Cc: Subject: Re: ports/128749: [vuxml] VBA parser vulnerability in ClamAV X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 13 Nov 2008 01:27:11 -0000 > FWIW, clamav-0.94.1 does not compile under 5.X without CONFIGURE_ARGS+= > --disable-gethostbyname_r. When compiled this way it does not run (exits > after initialization with no error logging). One more patch needed: sed -i '' -e "s/enable-gethostbyname/disable-gethostbyname/; /^PTHREAD_LIBS/s/lthr/lpthread/" Makefile (replace lthr with lpthread which has proven unstable in clamav anyway) I have several legacy 5.5 systems running this way. Note: unofficial, not supported by me, SECNAP, Freebsd, the RNC, the DNC, or the free masons. YMMV -- Michael Scheidell, CTO >|SECNAP Network Security Winner 2008 Network Products Guide Hot Companies FreeBSD SpamAssassin Ports maintainer _________________________________________________________________________ This email has been scanned and certified safe by SpammerTrap(r). For Information please see http://www.spammertrap.com _________________________________________________________________________