File _patchinfo of Package patchinfo.2594

<patchinfo incident="2594">
  <issue id="978459" tracker="bnc">security/clamav: Update request</issue>
  <category>recommended</category>
  <rating>moderate</rating>
  <packager>faweiss</packager>
  <description>
ClamAV was updated to version 0.99.2, which brings fixes and enhancements:

- Fix 7z's FolderStartPackStreamIndex array index check.
- Print all CDBNAME entries for a zip file when using the -z flag.
- clamunrar: Notice if unpacking comment failed.
- Use temporary variable for realloc to prevent pointer loss.
- freshclam: Avoid random data in mirrors.dat.
- libclamav: Print raw certificate metadata.
- Fix download and verification of *.cld through PrivateMirrors.
- Suppress IP notification when using proxy.
- Remove redundant mempool assignment.
- Divide out dumpcerts output for better readability.
- Fix dconf and option handling for nocert and dumpcert.
- Increase clamd's soft file descriptor to its potential maximum on 64-bit systems.
- Move libfreshclam config to m4/reorganization.
- Add 'cdb' datafile to sigtools list of datafile types.
- Prevent memory allocations on used pointers.
- Check packSizes prior to dereference
- Fix inconsistent folder state on failure.
- Add sanity checks to 7z header parsing.

For a comprehensive list of fixes please refer to the package's change log.
</description>
  <summary>Recommended update for clamav</summary>
</patchinfo>