SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for libclamav12-1.4.1-1.3.x86_64.rpm :

* Wed Sep 04 2024 Arjen de Korte - update to 1.4.1
* CVE-2024-20506: Changed the logging module to disable following symlinks on Linux and Unix systems so as to prevent an attacker with existing access to the \'clamd\' or \'freshclam\' services from using a symlink to corrupt system files.
* CVE-2024-20505: Fixed a possible out-of-bounds read bug in the PDF file parser that could cause a denial-of-service (DoS) condition.
* Removed unused Python modules from freshclam tests including deprecated \'cgi\' module that is expected to cause test failures in Python 3.13.
* Fri Aug 16 2024 Arjen de Korte - update to 1.4.0
* Added support for extracting ALZ archives. The new ClamAV file type for ALZ archives is CL_TYPE_ALZ. Added a DCONF option to enable or disable ALZ archive support.
* Added support for extracting LHA/LZH archives. The new ClamAV file type for ALZ archives is CL_TYPE_LHA_LZH. Added a DCONF option to enable or disable LHA/LZH archive support.
* Added the ability to disable image fuzzy hashing, if needed. For context, image fuzzy hashing is a detection mechanism useful for identifying malware by matching images included with the malware or phishing email/document.
* New ClamScan options: - -scan-image[=yes(
*)/no] - -scan-image-fuzzy-hash[=yes(
*)/no]
* New ClamD config options: ScanImage yes(
*)/no ScanImageFuzzyHash yes(
*)/no
* New libclamav scan options: options.parse &= ~CL_SCAN_PARSE_IMAGE; options.parse &= ~CL_SCAN_PARSE_IMAGE_FUZZY_HASH;
* Added a DCONF option to enable or disable image fuzzy hashing support.- Update package signing key (from https://www.clamav.net/downloads) % clamav.keyring
* Wed Apr 17 2024 Arjen de Korte - update to 1.3.1
* CVE-2024-20380: Fixed a possible crash in the HTML file parser that could cause a denial-of-service (DoS) condition. This issue affects version 1.3.0 only and does not affect prior versions.
* Updated select Rust dependencies to the latest versions. This resolved Cargo audit complaints and included PNG parser bug fixes.
* Fixed a bug causing some text to be truncated when converting from UTF-16.
* Fixed assorted complaints identified by Coverity static analysis.
* Fixed a bug causing CVDs downloaded by the DatabaseCustomURL Freshclam config option to be pruned and then re-downloaded with every update.
* Added the new \'valhalla\' database name to the list of optional databases in preparation for future work.
* Added symbols to the libclamav.map file to enable additional build configurations.
* Wed Feb 07 2024 Arjen de Korte - update to 1.3.0
* Added support for extracting and scanning attachments found in Microsoft OneNote section files. OneNote parsing will be enabled by default, but may be optionally disabled using one of the following options: a. The clamscan command line option: --scan-onenote=no, b. The clamd.conf config option: ScanOneNote no, c. The libclamav scan option options.parse &= ~CL_SCAN_PARSE_ONENOTE;, d. A signature change to the daily.cfg dynamic configuration (DCONF).
* Wed Oct 25 2023 Arjen de Korte - update to 1.2.1
* Eliminate security warning about unused \"atty\" dependency.
* Upgrade the bundled UnRAR library (libclamunrar) to version 6.2.12.
* Build system: Fix link error with Clang/LLVM/LLD version 17.
* Patch courtesy of Yasuhiro Kimura.
* Fix alert-exceeds-max feature for files > 2GB and < max-filesize.
* Tue Aug 29 2023 Arjen de Korte - Update to 1.2.0
* Added support for extracting Universal Disk Format (UDF) partitions. Specifically, this version adds support for the Beginning Extended Area Descriptor (BEA01) type of UDF files.
* Added an option to customize the size of ClamAV\'s clean file cache. Increasing the size of the clean file cache may improve scan performance but will require more RAM. The cache size value should be a square number or will be rounded up to the nearest square number. The cache size option for clamd and clamscan is --cache-size. Alternatively, you can customize the cache size for ClamD by setting CacheSize in clamd.conf.
* Introduced a SystemD timer for running Freshclam updates, without sending Freshclam into the background. This takes the \"burden of timing the updates\" from Freshclam and puts it onto SystemD. The timer can be activated, audited, and the logs inspected: sudo systemctl enable --now clamav-freshclam-once.timer sudo systemctl list-timers sudo systemctl status clamav-freshclam-once.timer sudo systemctl status clamav-freshclam-once.service journalctl -u clamav-freshclam-once.service If you want a different update interval you can edit the timer unit file: sudo systemctl edit clamav-freshclam-once.timer
* Raised the MaxScanSize limit so the total amount of data scanned when scanning a file or archive may exceed 4 gigabytes. Introduced the ability to suffix the MaxScanSize and other config file size options with a \"G\" or \"g\" for the number of gigabytes. For example, for ClamD you may now specify MaxScanSize 10G in clamd.conf. And for ClamScan, you may now specify --max-scansize=10g. The MaxFileSize is still limited internally in ClamAV to 2 gigabytes. Any file, or embedded file, larger than 2GB will be skipped. You may use clamscan --alert-exceeds-max, or the clamd.conf option AlertExceedsMax yes to tell if a scan is not completed because of the scan limits.
* Added ability for Freshclam to use a client certificate PEM file and a private key PEM file for authentication to a private mirror by setting the following environment variables: FRESHCLAM_CLIENT_CERT: May be set to the path of a file (PEM) containing the client certificate. FRESHCLAM_CLIENT_KEY: May be set to the path of a file (PEM) containing the client private key. FRESHCLAM_CLIENT_KEY_PASSWD: May be set to a password for the client key PEM file, if it is password protected.
* Wed Aug 16 2023 Arjen de Korte - Update to 1.1.1
* CVE-2023-20197: Fixed a possible denial of service vulnerability in the HFS+ file parser. This issue affects versions 1.1.0, 1.0.1 through 1.0.0, 0.105.2 through 0.105.0, 0.104.4 through 0.104.0, and 0.103.8 through 0.103.0.
* Fixed a build issue when using the Rust nightly toolchain, which was affecting the oss-fuzz build environment used for regression tests.
* Fixed a build issue on Windows when using Rust version 1.70 or newer.
* CMake build system improvement to support compiling with OpenSSL 3.x on macOS with the Xcode toolchain.
* The official ClamAV installers and packages are now built with OpenSSL 3.1.1 or newer.
* Removed a warning message showing the HTTP response codes during the Freshclam database update process.
* Mon May 01 2023 Arjen de Korte - Update to 1.1.0
* Added the ability to extract images embedded in HTML CSS
This page is using cookies. Read moreOK, I understand