Multiple security issues

Debian Bug report logs - #668273
Multiple security issues

Toggle useless messages

Message #5 received at submit@bugs.debian.org (full text, mbox, reply):

From: Moritz Muehlenhoff <muehlenhoff@univention.de>

To: Debian Bug Tracking System <submit@bugs.debian.org>

Subject: Multiple security issues

Date: Tue, 10 Apr 2012 15:36:44 +0200

Package: clamav
Severity: important
Tags: security

Several scan evasion issues were found in clamav:

CVE-2012-1459: Tar archives
https://bugzilla.clamav.net/show_bug.cgi?id=4627

CVE-2012-1458: CHM files
https://bugzilla.clamav.net/show_bug.cgi?id=4626

CVE-2012-1457: Tar archives
https://bugzilla.clamav.net/show_bug.cgi?id=4625

CVE-2012-1443: RAR archives
https://bugzilla.clamav.net/show_bug.cgi?id=4624

CVE-2012-1419: Tar archives
https://bugzilla.clamav.net/show_bug.cgi?id=4623

Cheers,
        Moritz

-- System Information:
Debian Release: 5.0.1
Architecture: amd64 (x86_64)
Shell:  /bin/sh linked to /bin/bash
Kernel: Linux 2.6.32-ucs57-amd64
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8)

Message #10 received at 668273@bugs.debian.org (full text, mbox, reply):

From: Nico Golde <nion@debian.org>

To: Moritz Muehlenhoff <muehlenhoff@univention.de>, 668273@bugs.debian.org

Subject: Re: Bug#668273: Multiple security issues

Date: Tue, 10 Apr 2012 19:11:16 +0200

[Message part 1 (text/plain, inline)]

Hi,
* Moritz Muehlenhoff <muehlenhoff@univention.de> [2012-04-10 15:43]:
> Several scan evasion issues were found in clamav:
[...] 
Was denkst du bzgl DSA? Da das fuer mich eh alles snakeoil ist, wuerde ich da 
kein DSA fuer releasen...

Gruss
Nico
-- 
Nico Golde - http://www.ngolde.de - nion@jabber.ccc.de - GPG: 0xA0A0AAAA
For security reasons, all text in this mail is double-rot13 encrypted.

[Message part 2 (application/pgp-signature, inline)]

Message #15 received at 668273@bugs.debian.org (full text, mbox, reply):

From: Scott Kitterman <debian@kitterman.com>

To: 668273@bugs.debian.org

Subject: Update

Date: Fri, 15 Jun 2012 10:19:37 -0400

[Message part 1 (text/plain, inline)]

Upstream evaluated CVE-2012-1443 as invalid.  The balance are addressed in 
0.97.5 which I am working on a package for now.

[signature.asc (application/pgp-signature, inline)]

Message #20 received at 668273-close@bugs.debian.org (full text, mbox, reply):

From: Scott Kitterman <scott@kitterman.com>

To: 668273-close@bugs.debian.org

Subject: Bug#668273: fixed in clamav 0.97.5+dfsg-1

Date: Fri, 15 Jun 2012 21:07:48 +0000

Source: clamav
Source-Version: 0.97.5+dfsg-1

We believe that the bug you reported is fixed in the latest version of
clamav, which is due to be installed in the Debian FTP archive:

clamav-base_0.97.5+dfsg-1_all.deb
  to main/c/clamav/clamav-base_0.97.5+dfsg-1_all.deb
clamav-daemon_0.97.5+dfsg-1_i386.deb
  to main/c/clamav/clamav-daemon_0.97.5+dfsg-1_i386.deb
clamav-dbg_0.97.5+dfsg-1_i386.deb
  to main/c/clamav/clamav-dbg_0.97.5+dfsg-1_i386.deb
clamav-docs_0.97.5+dfsg-1_all.deb
  to main/c/clamav/clamav-docs_0.97.5+dfsg-1_all.deb
clamav-freshclam_0.97.5+dfsg-1_i386.deb
  to main/c/clamav/clamav-freshclam_0.97.5+dfsg-1_i386.deb
clamav-milter_0.97.5+dfsg-1_i386.deb
  to main/c/clamav/clamav-milter_0.97.5+dfsg-1_i386.deb
clamav-testfiles_0.97.5+dfsg-1_all.deb
  to main/c/clamav/clamav-testfiles_0.97.5+dfsg-1_all.deb
clamav_0.97.5+dfsg-1.diff.gz
  to main/c/clamav/clamav_0.97.5+dfsg-1.diff.gz
clamav_0.97.5+dfsg-1.dsc
  to main/c/clamav/clamav_0.97.5+dfsg-1.dsc
clamav_0.97.5+dfsg-1_i386.deb
  to main/c/clamav/clamav_0.97.5+dfsg-1_i386.deb
clamav_0.97.5+dfsg.orig.tar.gz
  to main/c/clamav/clamav_0.97.5+dfsg.orig.tar.gz
libclamav-dev_0.97.5+dfsg-1_i386.deb
  to main/c/clamav/libclamav-dev_0.97.5+dfsg-1_i386.deb
libclamav6_0.97.5+dfsg-1_i386.deb
  to main/c/clamav/libclamav6_0.97.5+dfsg-1_i386.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 668273@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Scott Kitterman <scott@kitterman.com> (supplier of updated clamav package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Fri, 15 Jun 2012 11:39:26 -0400
Source: clamav
Binary: clamav-base clamav-docs clamav-dbg clamav libclamav-dev libclamav6 clamav-daemon clamav-testfiles clamav-freshclam clamav-milter
Architecture: source all i386
Version: 0.97.5+dfsg-1
Distribution: unstable
Urgency: medium
Maintainer: ClamAV Team <pkg-clamav-devel@lists.alioth.debian.org>
Changed-By: Scott Kitterman <scott@kitterman.com>
Description: 
 clamav     - anti-virus utility for Unix - command-line interface
 clamav-base - anti-virus utility for Unix - base package
 clamav-daemon - anti-virus utility for Unix - scanner daemon
 clamav-dbg - debug symbols for ClamAV
 clamav-docs - anti-virus utility for Unix - documentation
 clamav-freshclam - anti-virus utility for Unix - virus database update utility
 clamav-milter - anti-virus utility for Unix - sendmail integration
 clamav-testfiles - anti-virus utility for Unix - test files
 libclamav-dev - anti-virus utility for Unix - development files
 libclamav6 - anti-virus utility for Unix - library
Closes: 652009 653958 667831 668273 669370
Changes: 
 clamav (0.97.5+dfsg-1) unstable; urgency=medium
 .
   [ Scott Kitterman ]
   * Urgency medium due to security fixes
   * New upstream release (Closes: #669370)
     - Addresses possible evasion cases in some archive formats (CVE-2012-1419,
       CVE-2012-1457, CVE-2012-1458, CVE-2012-1459) (Closes: #668273)
     - Repack tarball to remove non-free unrar code and win32 directory
     - Add contrib/split-tarball.sh and docs/man/clambc.1 in the diff.gz
       (these used to be added to the Debian specific upstream tarball, but
       aren't upstream so are better in the diff)
     - Change etc/clamav-milter.conf to Debian defaults
   * Enabled hardened build flags (Closes: #653958)
     - Thanks to Moritz Muehlenhoff for the patch
   * Remove var/lib/clamav/daily.cvd and main.cvd from clamav-base.examples
     because they aren't installed by the build system anymore (and are
     provided only as empty files in the upstream tarball)
   * Fix typos in README.Debian (Closes: #667831)
   * Update libclamav6 binary lintian override to match current filename
   * Bump standards version to 3.9.3 without further change
 .
   [ Stephen Gran ]
     - Add a note about RAR functionality to README.Debian (Closes: #652009)
Checksums-Sha1: 
 461ddc3dbd3ce264c13c15bc44c8825184323469 1933 clamav_0.97.5+dfsg-1.dsc
 6ee6469db5a50acee01d9aec4f0856fc45684b99 12903538 clamav_0.97.5+dfsg.orig.tar.gz
 d9ed860c1866043c3679faed788af67d3f9b6b05 291915 clamav_0.97.5+dfsg-1.diff.gz
 a8cbd7df8a021ac0ba5c47e8df35939110ca83ab 307012 clamav-base_0.97.5+dfsg-1_all.deb
 ec788e861ace24b7334fe5d802427545e12ae446 5260322 clamav-testfiles_0.97.5+dfsg-1_all.deb
 b0f7af3d5792d476943fdf3b078fb7b94231deb3 1296252 clamav-docs_0.97.5+dfsg-1_all.deb
 e853ca0e5f9ebcabf147f34d3e3b5b86afec6cc3 4373922 libclamav6_0.97.5+dfsg-1_i386.deb
 4625a739beca6ea98f1de77a474ba828f9b66d1b 333908 clamav_0.97.5+dfsg-1_i386.deb
 fffa6e1450fffac102d6f4f5f226ea1bb1b046ce 427442 clamav-daemon_0.97.5+dfsg-1_i386.deb
 a8b65b5f57add24279a1f4bdb1903a7bb60a5ad5 320294 clamav-freshclam_0.97.5+dfsg-1_i386.deb
 3434bb2554a5ac7b3378c779d36c031e6f37493e 357290 clamav-milter_0.97.5+dfsg-1_i386.deb
 2f67715c5ccf9d4371b43635da2472e2700e9a20 220018 libclamav-dev_0.97.5+dfsg-1_i386.deb
 d77b7f9b155726b87b293e5b843ceb14137450a7 36143528 clamav-dbg_0.97.5+dfsg-1_i386.deb
Checksums-Sha256: 
 830137eda054ddb42607a1e3560846dcbba435eb217bf63dd7c49f5adec7885b 1933 clamav_0.97.5+dfsg-1.dsc
 24447b0a26ef71c6aaefd407c1ad3a7581ef4836afdfb92def254a2872ae29e4 12903538 clamav_0.97.5+dfsg.orig.tar.gz
 34f99911dd6330b8ac4fb1151b975d709bb16fa73a0eeb786b5ceaea2ecef2da 291915 clamav_0.97.5+dfsg-1.diff.gz
 77711a19eb20746b71b7e1f9ee699b36a0a69503b658f3294ec26896470d3e45 307012 clamav-base_0.97.5+dfsg-1_all.deb
 7ca76ed16ac4ab35875249e7b8a77f32ad18e6a3c6c84ecba0e05afe718e2198 5260322 clamav-testfiles_0.97.5+dfsg-1_all.deb
 87c0619a8afa91293d20fafaec6d8c3375e071e034337a4c168a23dd26e00f77 1296252 clamav-docs_0.97.5+dfsg-1_all.deb
 66f29e7e1fceeddf4319bc8e86924267560195e9a07a8b307011ef73141fb180 4373922 libclamav6_0.97.5+dfsg-1_i386.deb
 b25674a266b85d3130aa3bed399fb6a7f9122161a3ada788246079aa3fe8588c 333908 clamav_0.97.5+dfsg-1_i386.deb
 ea34a9d03c22ce5b9bdf6a0b54bef008dec80626d5b96d314afce157f6e95673 427442 clamav-daemon_0.97.5+dfsg-1_i386.deb
 700412cf30bf610e7c2a1ceca73ac9f11ec78cdb4e6cf38aa50c9348b14f10c9 320294 clamav-freshclam_0.97.5+dfsg-1_i386.deb
 63e8e334d4495870055f4aa55d08982022df9bf39365c23bff3472130aff5df3 357290 clamav-milter_0.97.5+dfsg-1_i386.deb
 7cd269de748d32c07112359a904ea55ce0f37c0cc5504ea256020bb7782404b3 220018 libclamav-dev_0.97.5+dfsg-1_i386.deb
 77e73f407dc21d89fa9b73a98585275fbd61c5531c01a2a4b1c442de998051f3 36143528 clamav-dbg_0.97.5+dfsg-1_i386.deb
Files: 
 dbf80cd15a05b37b62cc2c8f0f8e9c3a 1933 utils optional clamav_0.97.5+dfsg-1.dsc
 ebaee174037242dfb9c1fe7e47ea7f40 12903538 utils optional clamav_0.97.5+dfsg.orig.tar.gz
 0113b76c2b311c3c7a398654cb8da369 291915 utils optional clamav_0.97.5+dfsg-1.diff.gz
 8a9fe363e03df9f36582016d677a925a 307012 utils optional clamav-base_0.97.5+dfsg-1_all.deb
 0433b30ae2358c3053924ad20dbd9e5f 5260322 utils optional clamav-testfiles_0.97.5+dfsg-1_all.deb
 b3e68dccf12ca35dfefe9d4f116b3003 1296252 doc optional clamav-docs_0.97.5+dfsg-1_all.deb
 52b4dbf4d3ca203006faf612d541e249 4373922 libs optional libclamav6_0.97.5+dfsg-1_i386.deb
 94d133d98cd4dae37ee78c0c2bbbcac1 333908 utils optional clamav_0.97.5+dfsg-1_i386.deb
 09b98ed9100226ff0b54c9b8f27aa3f5 427442 utils optional clamav-daemon_0.97.5+dfsg-1_i386.deb
 b8b5a3c0362d0cb286c429730eede837 320294 utils optional clamav-freshclam_0.97.5+dfsg-1_i386.deb
 a483a04656ae04f6bb87f98290694216 357290 utils extra clamav-milter_0.97.5+dfsg-1_i386.deb
 4bf01781ddbb1e9078edfa0dfc44cde4 220018 libdevel optional libclamav-dev_0.97.5+dfsg-1_i386.deb
 2bae24e9513df92dc34618914cf1d7f0 36143528 debug extra clamav-dbg_0.97.5+dfsg-1_i386.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)

iEYEARECAAYFAk/blUwACgkQHajaM93NaGqCugCfYdtXUzi2DBXUlkXBtER9cPHu
TmkAnj26iDPZ8mf2UcnoD27Bb7sfAXz9
=qup+
-----END PGP SIGNATURE-----

Message #25 received at 668273@bugs.debian.org (full text, mbox, reply):

From: Jonathan Wiltshire <jmw@debian.org>

To: 668273@bugs.debian.org

Subject: Re: Multiple security issues

Date: Sat, 07 Jul 2012 23:15:30 -0000

Dear maintainer,

Recently you fixed one or more security problems and as a result you closed
this bug. These problems were not serious enough for a Debian Security
Advisory, so they are now on my radar for fixing in the following suites
through point releases:

squeeze (6.0.6) - use target "stable"

Please prepare a minimal-changes upload targetting each of these suites,
and submit a debdiff to the Release Team [0] for consideration. They will
offer additional guidance or instruct you to upload your package.

I will happily assist you at any stage if the patch is straightforward and
you need help. Please keep me in CC at all times so I can
track [1] the progress of this request.

For details of this process and the rationale, please see the original
announcement [2] and my blog post [3].

0: debian-release@lists.debian.org
1: http://prsc.debian.net/tracker/668273/
2: <201101232332.11736.thijs@debian.org>
3: http://deb.li/prsc

Thanks,

with his security hat on:
--
Jonathan Wiltshire                                      jmw@debian.org
Debian Developer                         http://people.debian.org/~jmw

4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC  74C3 5394 479D D352 4C51

Message #30 received at 668273-close@bugs.debian.org (full text, mbox, reply):

From: Scott Kitterman <scott@kitterman.com>

To: 668273-close@bugs.debian.org

Subject: Bug#668273: fixed in clamav 0.97.5+dfsg-3~squeeze1

Date: Fri, 13 Jul 2012 01:17:13 +0000

Source: clamav
Source-Version: 0.97.5+dfsg-3~squeeze1

We believe that the bug you reported is fixed in the latest version of
clamav, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 668273@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Scott Kitterman <scott@kitterman.com> (supplier of updated clamav package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Wed, 11 Jul 2012 15:10:50 -0400
Source: clamav
Binary: clamav-base clamav-docs clamav-dbg clamav libclamav-dev libclamav6 clamav-daemon clamav-testfiles clamav-freshclam clamav-milter
Architecture: source all i386
Version: 0.97.5+dfsg-3~squeeze1
Distribution: stable
Urgency: low
Maintainer: ClamAV Team <pkg-clamav-devel@lists.alioth.debian.org>
Changed-By: Scott Kitterman <scott@kitterman.com>
Description: 
 clamav     - anti-virus utility for Unix - command-line interface
 clamav-base - anti-virus utility for Unix - base package
 clamav-daemon - anti-virus utility for Unix - scanner daemon
 clamav-dbg - debug symbols for ClamAV
 clamav-docs - anti-virus utility for Unix - documentation
 clamav-freshclam - anti-virus utility for Unix - virus database update utility
 clamav-milter - anti-virus utility for Unix - sendmail integration
 clamav-testfiles - anti-virus utility for Unix - test files
 libclamav-dev - anti-virus utility for Unix - development files
 libclamav6 - anti-virus utility for Unix - library
Closes: 651405 652009 653409 653958 659369 659980 660319 660475 660966 667831 668273 669370 677686 678247 678744
Changes: 
 clamav (0.97.5+dfsg-3~squeeze1) stable; urgency=low
 .
   [ Scott Kitterman ]
   * New upstream release (Closes: #668273, #669370, #678744)
     - Addresses possible evasion cases in some archive formats (CVE-2012-1419,
       CVE-2012-1457, CVE-2012-1458, CVE-2012-1459) (Closes: #668273)
     - Repack tarball to remove non-free unrar code and win32 directory
     - Add contrib/split-tarball.sh and docs/man/clambc.1 in the diff.gz
       (these used to be added to the Debian specific upstream tarball, but
       aren't upstream so are better in the diff)
     - Change etc/clamav-milter.conf to Debian defaults
   * Fix proxy port configuration handling in clamav-freshclam.postinst so that
     failure to specify port does not result in an invalid configuration
     (Closes: #678247), (LP: #784797)
   * Remove /var/run/clamav on purge (LP: #829945)
     - Thanks to Imre Gergely for the patch
   * Add call to /sbin/restorecon, if present, in debian/common_functions
     make_directory to to label the /run directory for SE Linux
     (Closes: #677686)
     - Thanks to Russell Coker for the patch
   * Remove obsolete reference to clamav-data package in clamav-daemon init log
     failure message
   * Enabled hardened build flags (Closes: #653958)
     - Thanks to Moritz Muehlenhoff for the patch
   * Remove var/lib/clamav/daily.cvd and main.cvd from clamav-base.examples
     because they aren't installed by the build system anymore (and are
     provided only as empty files in the upstream tarball)
   * Fix typos in README.Debian (Closes: #667831)
   * Update libclamav6 binary lintian override to match current filename
   * Bump standards version to 3.9.3 without further change
   * Add myself to uploaders
 .
   [ Stephen Gran ]
   * Add a note about RAR functionality to README.Debian (Closes: #652009)
   * Add VERBOSE=1 to make check
 .
   [ Christian Perrier ]
   * Fix spelling error in debconf templates. Closes: #660966
   * Fix pending l10n issues. Debconf translations:
     - Dutch; (Jeroen Schot).  Closes: #651405
     - German (Thomas Müller).  Closes: #653409
     - Polish (Michał Kułach).  Closes: #659369
     - Japanese (Kenshi Muto).  Closes: #659980
     - Czech (Miroslav Kure).  Closes: #660319
     - Italian (Luca Monducci).  Closes: #660475
 .
   [ Loïc Minier ]
   * Pass --without-included-ltdl to configure instead of hardcoding
     --with-ltdl-include= and --with-ltdl-lib= pathnames, the pathnames
     wouldn't work with multiarch anymore.
   * rules: let clamav-dbg depend on libclamav6 as it seems to require it and
     this could make rules -j safe (didn't manage to reproduce the -j2 failure
     I was getting with the change).
Checksums-Sha1: 
 0c7e60b1723e64e5de1f3d539e7e92e0ba0bbf2b 1627 clamav_0.97.5+dfsg-3~squeeze1.dsc
 6ee6469db5a50acee01d9aec4f0856fc45684b99 12903538 clamav_0.97.5+dfsg.orig.tar.gz
 54167828f35bd18a87e7015a8b5bee560355085e 297167 clamav_0.97.5+dfsg-3~squeeze1.diff.gz
 5bcc2a47f0895a9a74c036b07c0ba37dbd53de88 307120 clamav-base_0.97.5+dfsg-3~squeeze1_all.deb
 af2d9ae20801f15e6269c0666ad035fcc9cbc5ac 5260466 clamav-testfiles_0.97.5+dfsg-3~squeeze1_all.deb
 942963b8bfbacad3e08492fdd4d2bfa265ab2e69 1296310 clamav-docs_0.97.5+dfsg-3~squeeze1_all.deb
 833edbe3c8e05d66dd81ee58a6c681b39c13f762 4022242 libclamav6_0.97.5+dfsg-3~squeeze1_i386.deb
 b2ea20d1390e771934024f4b2cadde1c12f9f145 331154 clamav_0.97.5+dfsg-3~squeeze1_i386.deb
 9f3b77138d0ea2d57184a09e4279637d843a38a4 416034 clamav-daemon_0.97.5+dfsg-3~squeeze1_i386.deb
 171bd4bb1ccf929e746873fd986d18906f169392 318372 clamav-freshclam_0.97.5+dfsg-3~squeeze1_i386.deb
 e4adc768b042ae7f3c43d6fb13a289b7cbbbcb55 353194 clamav-milter_0.97.5+dfsg-3~squeeze1_i386.deb
 05dba58093486096630dec23242967793872b0f4 220014 libclamav-dev_0.97.5+dfsg-3~squeeze1_i386.deb
 0b7b9ebba030c363053767423172a504881a4e18 23853160 clamav-dbg_0.97.5+dfsg-3~squeeze1_i386.deb
Checksums-Sha256: 
 64119df5eab1b3de32598296fd9bdd7d68dcf1ca997ad113ebe94cc2d01a93be 1627 clamav_0.97.5+dfsg-3~squeeze1.dsc
 24447b0a26ef71c6aaefd407c1ad3a7581ef4836afdfb92def254a2872ae29e4 12903538 clamav_0.97.5+dfsg.orig.tar.gz
 63c3a6ee78031abf91c55a6a1929dde6e4746d34b454e20fb5a0e8f5a44c6ca0 297167 clamav_0.97.5+dfsg-3~squeeze1.diff.gz
 ec0f5828e1ee1df37df21ed65d178ac82732b869b9b799f026613c5cd3991830 307120 clamav-base_0.97.5+dfsg-3~squeeze1_all.deb
 d338a07ecd8c619ea4e8498813474e73cf18c273abfd2b9036d02f8855c9c01d 5260466 clamav-testfiles_0.97.5+dfsg-3~squeeze1_all.deb
 19da0f74e1c10cbc0bef65bebbcfb75caf4acffdd0864401403f1083afb96e7b 1296310 clamav-docs_0.97.5+dfsg-3~squeeze1_all.deb
 8133678b187fd6ecefbc29b89912b40a457d8b516fd975b42c4dab27af22b21d 4022242 libclamav6_0.97.5+dfsg-3~squeeze1_i386.deb
 b9bfa22d4139393cd3d19700720bbf81e1a716a44db7a7d24e825738823e94d2 331154 clamav_0.97.5+dfsg-3~squeeze1_i386.deb
 e0ef2f0797209eeae208f8a6a735cb4efba05f93db29d4d51ca2f0df126b92ca 416034 clamav-daemon_0.97.5+dfsg-3~squeeze1_i386.deb
 1646789c974278a9892abb9aff0d7274c69686ff77ee03d7ca8cf7e071ef5406 318372 clamav-freshclam_0.97.5+dfsg-3~squeeze1_i386.deb
 ec1e66d8ce13a5d4a3a36a5b2fd9ed65e8c354ddad2466519a54a1b89e8e2fa7 353194 clamav-milter_0.97.5+dfsg-3~squeeze1_i386.deb
 baa6914ad9fe9e37c5c7ec617813eb488608d590c084c12dc58cefe1656298cc 220014 libclamav-dev_0.97.5+dfsg-3~squeeze1_i386.deb
 fe11ff6c6e17a8a7975cbcf48ef10674acc493eda2ce66d8b499e02a38e8b113 23853160 clamav-dbg_0.97.5+dfsg-3~squeeze1_i386.deb
Files: 
 df34921c2636881d16a6c9353873389d 1627 utils optional clamav_0.97.5+dfsg-3~squeeze1.dsc
 ebaee174037242dfb9c1fe7e47ea7f40 12903538 utils optional clamav_0.97.5+dfsg.orig.tar.gz
 825cc8b9924fee079e61c1b48f0b6364 297167 utils optional clamav_0.97.5+dfsg-3~squeeze1.diff.gz
 0afcf961f94e5e3dfb91b31721b510ae 307120 utils optional clamav-base_0.97.5+dfsg-3~squeeze1_all.deb
 458d44ce5e6619615f9b18a4e165ddcb 5260466 utils optional clamav-testfiles_0.97.5+dfsg-3~squeeze1_all.deb
 8ac07f36cbdc3ace59c2f9049d409193 1296310 doc optional clamav-docs_0.97.5+dfsg-3~squeeze1_all.deb
 9cac8db3908e6698ad4224ab9ea0ccda 4022242 libs optional libclamav6_0.97.5+dfsg-3~squeeze1_i386.deb
 28fb2f5639001b3aa7de69aeb4584617 331154 utils optional clamav_0.97.5+dfsg-3~squeeze1_i386.deb
 a502822440b659e0d2320ea78920b00c 416034 utils optional clamav-daemon_0.97.5+dfsg-3~squeeze1_i386.deb
 9a81b429bfb327cc9d03aebc28c6db33 318372 utils optional clamav-freshclam_0.97.5+dfsg-3~squeeze1_i386.deb
 cda18538be820c76129a2245044a1263 353194 utils extra clamav-milter_0.97.5+dfsg-3~squeeze1_i386.deb
 c1e137d5fc0e99eeaeb20c81b42c374d 220014 libdevel optional libclamav-dev_0.97.5+dfsg-3~squeeze1_i386.deb
 6d1d7ff816a6949369ab4b575700a7bd 23853160 debug extra clamav-dbg_0.97.5+dfsg-3~squeeze1_i386.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)

iEYEARECAAYFAk/+FwQACgkQHajaM93NaGqhPQCfQRZSqcojHUpkwBYCIUnRz3nf
utwAnj8ZDFpEaC9UvEmpNOvRdi7jmAP0
=3+hq
-----END PGP SIGNATURE-----

Send a report that this bug log contains spam.