Antivirus Toolkit
Clam AntiVirus is an open source (GPL) anti-virus toolkit for UNIX,
designed especially for e-mail scanning on mail gateways. It provides a
number of utilities including a flexible and scalable multi-threaded
daemon, a command line scanner and advanced tool for automatic database
updates. The core of the package is an anti-virus engine available in a
form of shared library.
Here is a list of the main features:
* command-line scanner
* fast, multi-threaded daemon with support for on-access scanning
* milter interface for sendmail
* advanced database updater with support for scripted updates and
digital signatures
* virus scanner C library
* on-access scanning (Linux and FreeBSD)
* virus database updated multiple times per day (see home page for
total number of signatures)
* built-in support for various archive formats, including Zip, RAR,
Tar, Gzip, Bzip2, OLE2, Cabinet, CHM, BinHex, SIS and others
* built-in support for almost all mail file formats
* built-in support for ELF executables and Portable Executable files
compressed with UPX, FSG, Petite, NsPack, wwpack32, MEW, Upack
and obfuscated with SUE, Y0da Cryptor and others
* built-in support for popular document formats including MS Office and
MacOffice files, HTML, RTF and PDF
- Developed at security
- Sources inherited from project openSUSE:Factory
-
5
derived packages
- Download package
-
Checkout Package
osc -A https://api.opensuse.org checkout openSUSE:42:Factory-Candidates-Check/clamav && cd $_ - Create Badge
Source Files
| Filename | Size | Changed |
|---|---|---|
| clamav-0.98.7.tar.gz | 0015118851 14.4 MB | |
| clamav-conf.patch | 0000006606 6.45 KB | |
| clamav-gcc47.patch | 0000000528 528 Bytes | |
| clamav-rpmlintrc | 0000000114 114 Bytes | |
| clamav-sles9.patch | 0000001369 1.34 KB | |
| clamav-tmpfiles.conf | 0000000077 77 Bytes | |
| clamav-updateclamconf | 0000002786 2.72 KB | |
| clamav.changes | 0000049869 48.7 KB | |
| clamav.keyring | 0000002532 2.47 KB | |
| clamav.spec | 0000006782 6.62 KB | |
| service.clamav-milter | 0000000254 254 Bytes | |
| service.clamd | 0000000207 207 Bytes | |
| service.freshclam | 0000000228 228 Bytes |
Revision 76 (latest revision is 124)
Stephan Kulow (coolo)
accepted
request 305579
from
Reinhard Max (rmax)
(revision 76)
- Version 0.98.7 fixes several security issues (bsc#929192) and
other bug fixes/improvements:
* Fix crash in upx decoder with crafted file. Discovered and
patch supplied by Sebastian Andrzej Siewior. CVE-2015-2170.
* Fix infinite loop condition on crafted y0da cryptor
file. Identified and patch suggested by Sebastian Andrzej
Siewior. CVE-2015-2221.
* Fix crash on crafted petite packed file. Reported and patch
supplied by Sebastian Andrzej Siewior. CVE-2015-2222.
* Fix an infinite loop condition on a crafted "xz" archive file.
This was reported by Dimitri Kirchner and Goulven Guiheux.
CVE-2015-2668.
* Apply upstream patch for possible heap overflow in Henry
Spencer's regex library. CVE-2015-2305.
* Fix false negatives on files within iso9660 containers. This
issue was reported by Minzhuan Gong.
* Fix a couple crashes on crafted upack packed file. Identified
and patches supplied by Sebastian Andrzej Siewior.
* Fix a crash during algorithmic detection on crafted PE file.
Identified and patch supplied by Sebastian Andrzej Siewior.
* Fix compilation error after ./configure --disable-pthreads.
Reported and fix suggested by John E. Krokes.
* Fix segfault scanning certain HTML files. Reported with sample
by Kai Risku.
* Improve detections within xar/pkg files.
* Improvements to PDF processing: decryption, escape sequence
handling, and file property collection.
* Scanning/analysis of additional Microsoft Office 2003 XML
format.
Comments 7
Hello
May we get the version 1.0.1 ?
Version 1 is supplied by clamav team for several months.
Thanks
The current version is still actively maintained until later this year, so there is no rush to switch to 1.0.1 which still has some issues on big endian systems. But I am working at it, and meanwhile upstream has a release candidate for version 1.1, so we might switch directly to that one, or backport some of the fixes.
The current state of my work on 1.0.1 is available in my home project: https://build.opensuse.org/package/show/home:rmax:branches:security/clamav
thanks
Is there any hope to get some day on-access scanning ?
Well, clamonacc has been part of our ClamAV rpm for quite some time now, but unlike clamd and freshclam we haven't provided a systemd service file for it so far. I'll consider that for the 1.0.1 upgrade.
thanks
I've meanwhile added a service file for clamonacc to my branch package. Please try it out and let me know if it works for you. By default it only logs infected files, but doesn't move them.