- A vulnerability in ClamAV's chm-parser allowed remote attackers to
cause a denial of service (application crash) via a malformed CHM file
(CVE-2008-1389).
- A vulnerability in libclamav would allow attackers to cause a
denial of service via vectors related to an out-of-memory condition
(CVE-2008-3912).
- Multiple memory leaks were found in ClamAV that could possibly allow
attackers to cause a denial of service via excessive memory consumption
(CVE-2008-3913).
- A number of unspecified vulnerabilities in ClamAV were reported that
have an unknown impact and attack vectors related to file descriptor
leaks (CVE-2008-3914).
various OpenBSD patches rolled in upstream. thanks to sturm@
for looking over systrace.filter (needed for the test of sendmsg()
in configure to enable FD passing).
it contains patches from Martynas Venckus:
- net-support.c: HTTP header only needs to be ASCII in the token
- xmlparse.c: Convert feed title to target charset, too. Should
probaly be in interface.c
- main.c, interface.h, interface.c: Add a signal handler for resizing
to work on many other ncurses implementations
- conversions.c: Determine output charset with nl_langinfo()
ok kili@
JavaScript Object Notation (JSON) is a lightweight data interchange
format. Test::JSON makes it easy to verify that you have built valid
JSON and that it matches your expected output.
Test::Assertions provides a convenient set of tools for constructing
tests, such as unit tests or run-time assertion checks (like C's ASSERT
macro). Unlike some of the Test:: modules available on CPAN,
Test::Assertions is not limited to unit test scripts; for example it can
be used to check output is as expected within a benchmarking script.
When it is used for unit tests, it generates output in the standard form
for CPAN unit testing (under Test::Harness).
