Softpedia >Linux >Utilities >Clam AntiVirus >  Changelog

Clam AntiVirus Changelog

What's new in Clam AntiVirus 0.100.1

Jul 31, 2018
  • Fixes for the following CVE's:
  • [CVE-2017-16932](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16932): Vulnerability in libxml2 dependency (affects ClamAV on Windows only).
  • [CVE-2018-0360](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0360): HWP integer overflow, infinite loop vulnerability. Reported by Secunia Research at Flexera.
  • [CVE-2018-0361](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0361): ClamAV PDF object length check, unreasonably long time to parse relatively small file. Reported by aCaB.
  • Fixes for a few additional bugs:
  • Buffer over-read in unRAR code due to missing max value checks in table initialization. Reported by Rui Reis.
  • Libmspack heap buffer over-read in CHM parser. Reported by Hanno Böck.
  • PDF parser bugs reported by Alex Gaynor:
  • Buffer length checks when reading integers from non-NULL terminated strings.
  • Buffer length tracking when reading strings from dictionary objects.
  • HTTPS support for clamsubmit.
  • Fix for DNS resolution for users on IPv4-only machines where IPv6 is not available or is link-local only. Patch provided by Guilherme Benkenstein.

New in Clam AntiVirus 0.99.1 (Mar 9, 2016)

  • hwp5.x: fix for streams without names
  • libclamav: yara: avoid unaliged access to 64bit variable
  • bb11455 - patch by Mark Allan to add show-progress option to freshclam.
  • added 'CustomXML' as trigger for likely OOXML

New in Clam AntiVirus 0.99 (Dec 3, 2015)

  • ClamAV 0.99 contains major new features and changes. YARA rules, Perl Compatible Regular Expressions, revamped on-access scanning for Linux, and other new features join the many great features of ClamAV.
  • Processing of YARA rules (some limitations- see signatures.pdf).
  • Support in ClamAV logical signatures for many of the features added for YARA, such as Perl Compatible Regular Expressions, alternate strings, and YARA string attributes. See signatures.pdf for full details.
  • New and improved on-access scanning for Linux. See the recent blog post and clamdoc.pdf for details on the new on-access capabilities.
  • A new ClamAV API callback function that is invoked when a virus is found. This is intended primarily for applications running in all-match mode. Any applications using all-match mode must use the new callback function to record and report detected viruses.
  • Configurable default password list to attempt zip file decryption.
  • TIFF file support.
  • Upgrade Windows pthread library to 2.9.1.
  • A new signature target type for designating signatures to run against files with unknown file types.
  • Improved fidelity of the "data loss prevention" heuristic algorithm. Code supplied by Bill Parker.
  • Support for LZMA decompression within Adobe Flash files.
  • Support for MSO attachments within Microsoft Office 2003 XML files.
  • A new sigtool option(--ascii-normalize) allowing signature authors to more easily generate normalized versions of ascii files.
  • Windows installation directories changed from \Program Files\Sourcefire\ClamAV to \Program Files\ClamAV or \Program Files\ClamAV-x64.
  • PLEASE NOTE: If you are using clamd on-access scanning or have applications using all-match mode, you will want to review the changes and make any necessary adjustments before using ClamAV 0.99. Users of windows binaries need to be aware of the change of installation directories.

New in Clam AntiVirus 0.98.5 (Nov 19, 2014)

  • Instruct OpenSSL to allow MD5 when in FIPS-compliant mode.
  • Adjust the logic surrounding adjusting the PE section sizes. This fixes a crash with maliciously crafted yoda's crypter files and also improves virus detections for PE files.

New in Clam AntiVirus 0.98.4 (Jun 17, 2014)

  • Fix build on Solaris 10
  • clamdscan infinite loop
  • Bug in stats HostID code
  • Fixed stats overwrite on settings transfer
  • Add to stats.c missing #if HAVE_SYSCTLBYNAME
  • Add header if we have it for stats
  • Configuration of OpenSSL fails on Solaris w/ClamAV 0.98.3
  • Fix buffer underruns in mbox.c
  • Fix Windows-specific issues

New in Clam AntiVirus 0.98.1 (Jan 15, 2014)

  • Extraction, decompression, and scanning of files within Apple Disk Image (DMG) format.
  • Extraction, decompression, and scanning of files within Extensible Archive (XAR) format. XAR format is commonly used for software packaging, such as PKG and RPM, as well as general archival.
  • Decompression and scanning of files in "Xz" compression format.
  • Improvements and fixes to extraction and scanning of ole formats.
  • Option to force all scanned data to disk. This impacts only a few file types where some embedded content is normally scanned in memory. Enabling this option ensures that a file descriptor exists when callback functions are used, at a small performance cost. This should only be needed when callback functions are used that need file access.
  • Various improvements to ClamAV configuration, support of third party libraries, and unit tests.

New in Clam AntiVirus 0.98 (Sep 20, 2013)

  • Code quality fixes in libclamav, clamd, sigtool, clamav-milter, clamconf, and clamdtop. Code quality fixes in libclamav, libclamunrar and freshclam.
  • Valgrind suppression rules for dl_catch_error complaints.
  • bb #8385: a PDF ASCII85Decode zero-length fix.
  • libclamav: SCAN_ALL mode fixes.
  • bb #7436: elf64 header early exit.
  • iso9660: iso_scan_file rewrite.

New in Clam AntiVirus 0.97.8 (Apr 24, 2013)

  • This version addresses several reported potential security bugs.

New in Clam AntiVirus 0.97.3 (Oct 18, 2011)

  • This is a minor bugfix release and is recommended for all users.

New in Clam AntiVirus 0.97.2 (Jul 26, 2011)

  • This version fixes problems with the bytecode engine, Safebrowsing detection, hash matcher, and other minor issues.

New in Clam AntiVirus 0.97 (Feb 8, 2011)

  • This version brings many improvements, including complete Windows support (all major components compile out-of-the-box under Visual Studio), support for signatures based on SHA1 and SHA256, better error detection, and speed and memory optimizations.

New in Clam AntiVirus 0.96.5 (Nov 30, 2010)

  • libclamav/pdf.c: fix crashes (bb #2358, bb #2380, bb #2396). Thanks to Arkadiusz Miskiewicz for bb #2380.
  • libclamav/pe_icons.c: off by one while (bb#2344)
  • libclamav: fix detection of embedded executables
  • libclamav/matcher-ac.c: fix offset handling for sigs with {x-y} wildcards (bb#2393)
  • freshclam/manager.c: fix error path infinite loop (bb#2389)
  • clamd/clamd.c: fix RLIMIT_DATA setting on BSD (bb #1941), thanks to Andreas Longwitz .
  • freshclam: improve mirror management
  • libclamav: fix possible use of uninitialized values (bb#2291)
  • libclamav: Set the unreliability flag on (un)packed files (bb#2307)
  • libclamav/c++: Update embedded copy of LLVM to version 2.8 (bb #2327)
  • freshclam: make query format backward compatible Fri Nov 5 15:32:22
  • freshclam: get detection stats directly from clamd (bb#2312)
  • libclamav/cache.c,c++/bytecode2llvm.cpp}: make cl_load thread safe (bb #2333).
  • freshclam: load database in subprocess (bb #2147).
  • clamd: add new commands DETSTATS and DETSTATSCLEAR (part of bb#2312)
  • libclamav/7z.c: fix file descriptor leak (bb #2347)
  • clamd, libclamavll: add ability to logg messages from libclamav (bb #1965)
  • libclamav/builtin_bytecodes.h: Don't disable JIT on pentium4 (bb #2345)
  • clamav-for-windows: displace clamav-for-windows to a separate solution and directory
  • clamd: add new option OLE2BlockMacros (requested by Mike)
  • freshclam: DatabaseCustomURL: add support for If-Modified-Since and signature counter
  • freshclam: add initial support for DatabaseCustomURL

New in Clam AntiVirus 0.96.4 (Oct 26, 2010)

  • This is a bugfix release recommended for all users.

New in Clam AntiVirus 0.96.2 (Aug 13, 2010)

  • This release brings a new PDF parser, performance and memory improvements, and a number of bugfixes and minor enhancements.
  • This upgrade is recommended for all users.

New in Clam AntiVirus 0.96 RC2 (Mar 25, 2010)

  • freshclam: add support for ExtraDatabase (bb#781)
  • win32: add sigtool upon request from 3rd party sigmakers

New in Clam AntiVirus 0.96 RC1 (Mar 11, 2010)

  • Tue Mar 9 02:42:37 CET 2010 (acab)
  • win32/platform.h: make sleep() wait seconds rather than ms (bb#1866) Sat Mar 6 03:58:16 CET 2010 (acab)
  • clamd/scanner.c: fix logg output, patch from Mark Pizzolato Fri Mar 5 22:16:45 CET 2010 (acab)
  • libclamav: don't cache clean results due to EMAX - final fix for bb#1856 Fri Mar 5 22:01:20 CET 2010 (tk)
  • libclamav: fix scanning of utf16 data (bb#1853) Fri Mar 5 21:14:12 CET 2010 (tk)
  • libclamav/matcher-bm.c: properly handle scan boundaries in offset mode (bb#1840) Fri Mar 5 19:11:25 CET 2010 (tk)
  • libclamav: fix cl_cvdparse() leak (bb#1859) Thu Mar 4 17:33:18 CET 2010 (tk)
  • libclamav/matcher-bm.c: fix array check (bb#1840) Thu Mar 4 15:32:40 CET 2010 (tk)
  • libclamav/scanners.c: set container type in cli_scanraw() (bb#1842) Thu Mar 4 14:41:39 CET 2010 (tk)
  • libclamav/matcher-bm.c: only sort correct offsets (bb#1840) Thu Feb 25 17:20:27 CET 2010 (tk)
  • docs: update signatures.pdf Tue Feb 16 16:41:30 CET 2010 (tk)
  • libclamav/cvd.c: enable new dsig check for main db Tue Feb 16 16:27:13 CET 2010 (tk)
  • freshclam/manager.c: handle empty cdiffs more gently Sun Feb 14 12:28:52 CET 2010 (acab)
  • libclamav: refactor checkfp logic Sat Feb 13 02:55:55 CET 2010 (acab)
  • libclamav: refactor binhex processor with one pass decoder (bb#1236) Fri Feb 12 15:51:19 CET 2010 (tk)
  • libclamav: add cl_countsigs() (bb#1473) Tue Feb 9 20:44:11 CET 2010 (acab)
  • clamav-milter: allow SkipAuthenticated to read names from a file (bb#1684) Tue Feb 9 16:35:36 CET 2010 (acab)
  • libclamav/scanners.c: fix gzip handler Mon Feb 8 19:17:14 CET 2010 (tk)
  • libclamav: prefix all engine detections with "Heuristics." (bb#1808) (also change Phishing.Heuristics.* -> Heuristics.Phishing.*) Mon Feb 8 13:40:06 CET 2010 (acab)
  • libclamav: drop support for type 8 signatures. disasm matching is now done via bytecode Mon Feb 8 10:30:03 CET 2010 (tk)
  • freshclam, sigtool: use zlib's Z_FILTERED strategy Thanks to Edwin Sat Feb 6 16:02:28 CET 2010 (acab)
  • clamd/server-th.c: reset the selfcheck timeout even if we reload by other means (bb#1812) Thu Feb 4 22:17:49 CET 2010 (acab)
  • clamd: new options LocalSocketMode and LocalSocketGroup * clamav-milter: new options MilterSocketMode and MilterSocketGroup (bb#1789) Thu Feb 4 21:31:27 CET 2010 (tk)
  • clamscan: properly report errors from libclamav; simplify error codes Wed Feb 3 18:23:08 CET 2010 (tk)
  • clamdscan: fix error logic once again Wed Feb 3 01:38:50 CET 2010 (acab)
  • win32: workaround HUP reset in poll, set stdin to binary mode Tue Feb 2 14:23:18 CET 2010 (tk)
  • freshclam: new option Bytecode Mon Feb 1 19:25:45 CET 2010 (tk)
  • sigtool: add support for bytecode.cvd Sun Jan 31 17:12:48 CET 2010 (acab)
  • win32: clamdscan added Sat Jan 30 04:19:29 CET 2010 (acab)
  • win32: clamd (sort of) works Thu Jan 28 12:53:45 CET 2010 (tk)
  • libclamav: provide information about lsig matches to bytecode (bb#1799) Wed Jan 27 18:33:09 CET 2010 (tk)
  • libclamav: provide offset in cli_ac_result (bb#1799) Tue Jan 26 19:39:18 CET 2010 (acab)
  • win32: automatically check and regenerate vcprojs, drop support and tblgen from llvm as these are now prebuilt and shipped Mon Jan 25 13:27:44 CET 2010 (tk)
  • libclamav: handle digitally signed .info files Fri Jan 22 11:49:07 CET 2010 (acab)
  • libclamav: fix shifts >= width (bb#1778) Thu Jan 21 23:01:34 CET 2010 (tk)
  • sigtool: create digitally signed .info files Wed Jan 20 23:53:36 CET 2010 (acab)
  • libclamav/pe.c: fix handling of 15h byte skew in upx-lzma (bb#1591) Wed Jan 20 22:10:12 CET 2010 (tk)
  • libclamav: check .info files while loading CVD/CLD Tue Jan 19 11:49:12 CET 2010 (acab)
  • clamdscan/proto.c: don't stop scanning if a file is not found (bb#1760) Tue Jan 19 11:26:11 CET 2010 (acab)
  • clamscan/manager.c: use unsigned fsize (bb#1788) Fri Jan 15 03:02:25 CET 2010 (acab)
  • libclamav: cache negative matches Thu Jan 14 23:31:51 CET 2010 (tk)
  • libclamav: cdb: drop FileType; cover ARJ, CAB, TAR, CPIO and 7Z Thu Jan 14 19:43:43 CET 2010 (tk)
  • libclamav/readdb.c: fix compatibility issue with .zmd sigs (bb#1793) Tue Jan 12 14:39:55 CET 2010 (tk)
  • libclamav: allow lsigs be anchored to specific containers (bb#1293), eg. Container:CL_TYPE_ZIP Tue Jan 12 12:14:08 CET 2010 (tk)
  • libclamav/readdb.c: when some lsig's attribute is unknown ignore the entire signature and not the attribute itself Fri Jan 8 15:20:10 CET 2010 (tk)
  • libclamav: handle zmd/rmd with cdb (bb#1579) Thu Jan 7 18:22:39 CET 2010 (tk)
  • libclamav: base code for unified container metadata matcher (bb#1579) Tue Jan 5 12:04:47 CET 2010 (acab)
  • libclamav/readdb.c: force VI anchored sigs into AC Tue Jan 5 02:08:38 CET 2010 (acab)
  • libclamav: merge PE VersionInformation matcher Mon Jan 4 15:35:16 CET 2010 (tk)
  • libclamav: fix error reporting for BinHex files (bb#1685) Wed Dec 30 00:19:21 CET 2009 (tk)
  • libclamav: add support for FileSize, EntryPoint and NumberOfSections in lsig's tdb Tue Dec 29 13:50:01 CET 2009 (tk)
  • sigtool/sigtool.c: handle lsigs created by the bytecode compiler Mon Dec 28 23:27:40 CET 2009 (tk)
  • sigtool/sigtool.c: properly handle anchored sigs (bb#1780) Tue Dec 22 09:32:33 EET 2009 (edwin)
  • libclamav/fmap.h: fix build on FreeBSD and Mac OS X (bb #1776). Thanks to Renato Botelho. Wed Dec 16 15:33:01 CET 2009 (acab)
  • libclamav/unzip.c: do not mark embedded zipfiles as encrypted.zip (bb#1768) Wed Dec 16 15:22:28 CET 2009 (acab)
  • clamd/server-th.c: remove c++ comment (bb#1751) Wed Dec 16 03:15:30 CET 2009 (acab)
  • libclamav/c++, win32: win32 compile system for llvm refactored Mon Dec 14 17:16:07 CET 2009 (tk)
  • libclamav: integrate ldb sigs with icon matcher Mon Dec 14 15:04:45 CET 2009 (tk)
  • sigtool: fix some messages (bb#1777) Mon Dec 14 14:31:19 CET 2009 (tk)
  • man/freshclam.conf.5: describe SafeBrowsing (bb#1772) Mon Dec 14 14:25:29 CET 2009 (tk)
  • man/clamd.8: add info about signals Fri Dec 11 00:54:52 CET 2009 (acab)
  • libclamav: merge icon extraction and matching branch(exeicons) Wed Dec 9 23:31:54 CET 2009 (tk)
  • sigtool: add --test-sigs (basic functionality) (bb#1246) Fri Dec 4 15:55:51 CET 2009 (tk)
  • freshclam/manager.c: improve handling of problematic mirrors (bb#1758) Fri Dec 4 14:19:23 CET 2009 (tk)
  • clamscan: properly describe --include/exclude (bb#1765) Wed Dec 2 23:17:27 CET 2009 (tk)
  • libclamav/qsort.c: fix CMP1 macro (bb#1769) Tue Dec 1 23:17:53 CET 2009 (tk)
  • libclamav/readdb.c: make sure static sigs with floating chars go into AC Mon Nov 30 21:16:35 CET 2009 (tk)
  • sigtool: --decode-sigs: handle alternatives Thu Nov 26 19:43:06 CET 2009 (tk)
  • sigtool: --decode-sigs: handle .ldb sigs Thu Nov 26 16:06:30 CET 2009 (acab)
  • libclamav/scanners.c: print inflateinit2 return code Wed Nov 25 19:07:51 CET 2009 (tk)
  • sigtool: --decode-sigs: handle .ndb sigs Tue Nov 24 10:24:27 EET 2009 (edwin)
  • clamd/server-th.c: enable more than 256 FD support on Solaris (bb #1764). Mon Nov 23 23:15:38 CET 2009 (tk)
  • sigtool: --decode-sigs; decode .db entries (bb#1246) Thu Nov 19 14:10:17 CET 2009 (tk)
  • sigtool/sigtool.c: handle .ign2 files (bb#1625) Tue Nov 17 18:02:45 CET 2009 (tk)
  • libclamav/qsort.c: don't call med3 when using internal cmp Mon Nov 16 23:15:37 CET 2009 (acab)
  • libclamav: add qsort to the win32 build Mon Nov 16 19:26:53 CET 2009 (tk)
  • libclamav: replace qsort implementation and optimize its common usage (bb#1721) Tue Nov 10 19:29:18 CET 2009 (tk)
  • clamd, clamscan: add support for OfficialDatabaseOnly/--official-db-only (bb#1743) Tue Nov 10 16:50:56 CET 2009 (tk)
  • freshclam/notify.c: fix clamd notification in TCP mode (bb#1756) Tue Nov 10 12:52:43 CET 2009 (acab)
  • doc/man/clamav-milter.8.in: fix typo reported by Thomas Harold Fri Nov 6 16:14:09 CET 2009 (acab)
  • libclamav/tnef.c: don't use fgetc (bb#1695) Fri Nov 6 12:22:33 CET 2009 (tk)
  • freshclam: add support for DetectionStatsHostID (bb#1503) Tue Nov 3 22:50:30 CET 2009 (tk)
  • libclamav, freshclam: fix handling of dbs when both daily.cvd and daily.cld are present in the db directory and ScriptedUpdates are turned off (bb#1739) Tue Nov 3 15:18:14 CET 2009 )tk)
  • libclamav/readdb.c: return error if lsig contains redundant subsigs Sun Nov 1 21:26:10 CET 2009 (acab)
  • win32: improve build system Sat Oct 31 19:13:18 CET 2009 (acab)
  • win32: add resources Sat Oct 31 19:12:22 CET 2009 (acab)
  • win32: fix warnings Fri Oct 30 14:04:43 EET 2009 (edwin)
  • configure, m4/acinclude.m4: Avoid trailing slash in libdir for old gcc (#1738). Thu Oct 29 23:42:57 CET 2009 (acab)
  • win32/3rdparty/pthreads: upgrade to CVS HEAD Thu Oct 29 17:27:40 CET 2009 (acab)
  • win32: don't use . or .. in UNC names Wed Oct 28 15:15:05 EET 2009 (edwin)
  • clamd/thrmgr.c: use a double instead of integer to avoid negative time (bb #1731). Wed Oct 28 12:42:45 CET 2009 (tk)
  • libclamav/filetypes_int.h: sync with daily.ftm Tue Oct 27 23:29:09 CET 2009 (tk)
  • clamdscan: improve error handling (bb#1729) Tue Oct 27 20:31:36 CET 2009 (tk)
  • clamdscan, libclamav, clamdtop, freshclam, sigtool: fix some error path leaks (bb#1730) Tue Oct 27 11:59:32 CET 2009 (tk)
  • libclamav/scanners.c: drop hardcoded offset limits for embedded objs (bb#1664) Mon Oct 26 16:09:29 CET 2009 (tk)
  • libclamav/others.c: call srand() already in cli_init() (bb#1728) Mon Oct 26 13:08:41 CET 2009 (tk)
  • clamdscan/proto.c: handle recv() == 0 (bb#1717) Sat Oct 24 15:06:50 CEST 2009 (acab)
  • libclamav/mpool.c: increase max pool to 8M to allow loading huge custom dbs Sat Oct 24 14:27:10 EEST 2009 (edwin)
  • clamd/scanner.c, libclamav/others_common.c: fix error path leak (bb #1711) Fri Oct 23 20:48:12 CEST 2009 (acab)
  • libclamav/unarj: fix error path leaks and valgrind warnings Wed Oct 21 17:50:05 CEST 2009 (acab)
  • win32: introduce safe_open() (sic!) Tue Oct 20 17:48:59 CEST 2009 (acab)
  • shared, win32: make hardcoded paths relocable in win32 builds Mon Oct 19 14:13:27 CEST 2009 (acab)
  • win32: add clamconf Sun Oct 18 16:52:41 CEST 2009 (acab)
  • win32: glob() complete Sun Oct 18 02:30:14 CEST 2009 (acab)
  • win32: glob() before main (WIP) Fri Oct 16 20:08:51 CEST 2009 (acab)
  • win32: stat added, dirent updated Fri Oct 16 14:56:10 CEST 2009 (tk)
  • clamdscan: fix some output msgs (bb#1716) Fri Oct 16 10:11:56 CEST 2009 (tk)
  • sigtool: add support for --find-sigs (part of bb#1246) Fri Oct 16 01:46:28 CEST 2009 (acab)
  • win32: res_query compatible interface Thu Oct 15 13:06:33 CEST 2009 (acab)
  • win32: add freshclam Wed Oct 14 19:03:47 CEST 2009 (acab)
  • win32: remove stale netcode Wed Oct 14 18:59:13 CEST 2009 (acab)
  • win32: preliminary winsock support files Wed Oct 14 01:26:47 CEST 2009 (acab)
  • win32: unrar support Tue Oct 13 20:13:53 CEST 2009 (acab)
  • win32: clamscan builds (and will scan soon...) Tue Oct 13 00:54:05 CEST 2009 (acab)
  • win32/compat: add POSIX compatible snprintf Mon Oct 12 23:39:30 CEST 2009 (acab)
  • win32: libclamav compiles Mon Oct 12 23:33:32 CEST 2009 (acab)
  • /win32: VC project file and 3rd party stuff Sat Oct 10 20:22:10 CEST 2009 (acab)
  • libclamav: completed merge of fmap4all Thu Oct 8 19:03:57 CEST 2009 (tk)
  • libclamav/matcher-bm.c: don't use mpool (bb#1710, #1715) Tue Oct 6 22:51:00 CEST 2009 (tk)
  • shared/misc.h: #include Fri Oct 2 21:01:51 CEST 2009 (tk)
  • libclamav: check file sizes for MD5 sigs in all cases Reported by Edwin Fri Oct 2 14:35:42 CEST 2009 (tk)
  • libclamav: unify fp checking; output fp signatures in debug mode Fri Oct 2 14:33:09 CEST 2009 (tk)
  • libclamav/scanners.c: fix whitelisting of scripts (bb#1706) Fri Oct 30 14:04:43 EET 2009 (edwin)
  • configure, m4/acinclude.m4: Avoid trailing slash in libdir for old gcc (#1738). Wed Sep 30 19:41:43 EEST 2009 (edwin)
  • configure{.in,}: Only use -fno-strict-aliasing for gcc-4.3+ to avoid bugs with older compilers (bb #1581) Wed Sep 30 17:15:05 CEST 2009 (tk)
  • libclamav/matcher-bm.c: fix cli_bm_freeoff() (bb#1710) Wed Sep 30 12:40:50 CEST 2009 (acab)
  • clamdscan/clamdscan.c: properly init variable (bb#1708) Wed Sep 30 00:51:19 CEST 2009 (acab)
  • clamd, shared: merge a set of win32 patches from Gianluigi Tiesi Tue Sep 29 21:40:29 CEST 2009 (tk)
  • libclamav/matcher-ac.c: fix matching of logical sigs (bb#1707) Reported by Thiyaga Mon Sep 28 21:41:47 CEST 2009 (tk)
  • libclamav/readdb.c: fix handling of broken .ldb sigs (bb#1701) Thanks Luca&Edwin Mon Sep 28 19:29:32 CEST 2009 (tk)
  • libclamav: new signature blacklisting format (bb#1625) * libclamav: allow arbitrary names for .ign/.ign2 files (bb#1683) Fri Sep 25 15:13:25 CEST 2009 (acab)
  • sigtool/vba.c: s/cli_errmsg/logg/ * shared/misc.h: in_addr_t is now already declared * libclamav/special.c: do not include netinet/in.h on win32 All the patches from Gianluigi Tiesi Fri Sep 25 15:09:02 CEST 2009 (acab)
  • clamav-milter/clamav.milter.c: remove debug printf Fri Sep 25 10:36:48 CEST 2009 (tk)
  • libclamav/matcher-ac.c: add support for line marker (L) (matches CR, CRLF and boundaries) Fri Sep 25 00:35:56 CEST 2009 (acab)
  • libclamav/sis.c: size check fix, thanks Tomasz Fri Sep 25 00:31:29 CEST 2009 (acab)
  • fix several problems introduced by the win32 commits many thanks edwin and sherpya Thu Sep 24 19:43:50 CEST 2009 (acab)
  • libclamav/others_common.c: Accept "/" as an absolute path Thu Sep 24 19:22:24 CEST 2009 (acab)
  • merge a set of win32 patches from Gianluigi Tiesi Thu Sep 24 19:09:38 CEST 2009 (acab)
  • drop OS/2 "support" Thu Sep 24 19:07:59 CEST 2009 (acab)
  • clamd, libclamav: drop INTERIX "support" Thu Sep 24 19:05:06 CEST 2009 (acab)
  • win32 paths handling Thu Sep 24 16:22:25 CEST 2009 (acab)
  • merge initial set of win32 patches from Gianluigi Tiesi Thu Sep 24 01:14:50 CEST 2009 (acab)
  • clamav-milter: Add option ReportHostname to mangle the host name in X headers Wed Sep 23 03:19:53 CEST 2009 (acab)
  • libclamav/mpool.c: update frag sizes, small cleanup Mon Sep 21 22:05:38 CEST 2009 (tk)
  • clamd: add support for DazukoFS (bb#1691) Patch from John Ogness Fri Sep 18 20:02:06 CEST 2009 (tk)
  • libclamav/matcher-bm.c: use mpool in BM's offset mode Thu Sep 17 22:36:30 CEST 2009 (tk)
  • libclamav/matcher-ac.c: implement word delimiter (B) as requested in bb#1631 Mon Sep 14 19:52:01 CEST 2009 (tk)
  • freshclam: return 0 instead of 1 when database is up-to-date (bb#1312) Mon Sep 14 13:56:42 CEST 2009 (tk)
  • clamd/server-th.c: fix possible race condition when restarting clamuko (bb#1692), patch from John Ogness Fri Sep 11 16:05:00 CEST 2009 (tk)
  • libclamav/matcher-ac.c: initial limited support for word boundary (bb#1631) Thu Sep 10 20:16:45 CEST 2009 (tk)
  • libclamav/matcher-ac.c: alternatives can now be negated: !(aa|bb|cc) Mon Sep 7 15:03:11 CEST 2009 (tk)
  • libclamav/matcher-bm.c: fix uninitialized value warning Mon Sep 7 03:45:18 CEST 2009 (acab)
  • libclamav/scanners.c: properly scan text files with a mail container Thu Sep 3 15:09:57 CEST 2009 (tk)
  • freshclam/mirman.c: make backoff time proportional to FLEVEL (bb#1687) Tue Sep 1 20:50:12 CEST 2009 (tk)
  • libclamav: use BM matcher in offset mode for PE files larger than 256kB (10% speedup on average; 30-40% for large executables) Tue Sep 1 11:11:43 CEST 2009 (tk)
  • libclamav: in bm_offmode only load sigs with non-floating absolute and relative offsets into BM matcher (load other ones into AC) and use per-file computed offset table to pick up best shifts (not enabled by default, bb#1300) Sun Aug 30 23:56:49 CEST 2009 (acab)
  • libclamav: unify CL_TYPE_MAIL scanning Wed Aug 26 23:37:04 CEST 2009 (tk)
  • libclamav/matcher-ac.c: improve handling of signature offsets Mon Aug 24 22:09:12 CEST 2009 (tk)
  • libclamav: improve handling of PDF files (bb#1682) Fri Aug 21 15:53:35 CEST 2009 (tk)
  • libclamav: handle relative offsets with cli_ac_data; fix offset logic Fri Aug 21 02:17:11 CEST 2009 (acab)
  • libclamav/ishield.c: properly free() header Fri Aug 21 00:56:03 CEST 2009 (acab)
  • build system: upgrade to autoconf 2.64 and automake 1.11 (bb#1528) Thu Aug 20 00:34:39 CEST 2009 (tk)
  • libclamav/matcher-bm.c: micro-optimization Tue Aug 18 23:52:20 CEST 2009 (tk)
  • libclamav/cpio.c: wrap unistd.h, reported by Nigel Horne Mon Aug 17 13:54:09 CEST 2009 (acab)
  • libclamav/7z: convert EOL to unix for compat with suncc Fri Aug 14 14:37:21 CEST 2009 (tk)
  • libclamav: improve handling of signature offsets Tue Aug 11 02:04:54 CEST 2009 (acab)
  • libclamav/7z/Types.h: workaround "Byte" clash in lzma/7z (bb#805 - regression) Mon Aug 10 22:36:19 CEST 2009 (acab)
  • libclamav/7z*: cosmetic fixes Mon Aug 10 22:06:23 CEST 2009 (acab)
  • contrib/test: sync test files Mon Aug 10 15:26:26 CEST 2009 (acab)
  • libclamav: add preliminary 7z support Thu Aug 6 22:26:30 CEST 2009 (tk)
  • clamd, clamscan, libclamav: drop support for MailFollowURLs (bb#1677) Wed Aug 5 18:33:11 CEST 2009 (tk)
  • clamd/clamd.c: ignore SIGHUP and SIGUSR2 during initial setup (bb#1671) Wed Aug 5 16:27:06 CEST 2009 (tk)
  • clamd, clamscan: add support for CrossFilesystems/--cross-fs (bb#1607) Tue Aug 4 23:15:26 CEST 2009 (tk)
  • configure, libclamav: fix compile issues on IRIX (bb#1532) Tue Aug 4 20:24:06 CEST 2009 (tk)
  • libclamav/macho.c: wrap unistd.h, reported by Nigel Horne Tue Aug 4 20:06:51 CEST 2009 (tk)
  • libclamav/readdb.c: make the parser more sensitive to errors in numerical fields Tue Aug 4 15:10:12 CEST 2009 (tk)
  • freshclam, libclamav: work around possible race condition during db updates (bb#1624) Mon Aug 3 15:22:42 CEST 2009 (tk)
  • freshclam/manager.c: fix confusing error message (bb#1648) Mon Aug 3 14:48:27 CEST 2009 (tk)
  • libclamav/unzip.c: fix detection of encrypted zip files embedded into other files (bb#1660) Sun Aug 2 14:46:40 EEST 2009 (edwin)
  • libclamav/bytecode_vm.c: fix SIGBUS on sparc. Fri Jul 31 21:28:18 CEST 2009 (tk)
  • libclamav, clamd: handle file exclusion in cli_ftw() (bb#1656) Fri Jul 31 15:29:36 EEST 2009 (edwin)
  • unit_tests/check_regex.c: fix unit-test failure on Solaris Fri Jul 31 12:52:08 CEST 2009 (acab)
  • libclamav/pe.c: fix check for pe32+ Tue Jul 28 20:34:13 CEST 2009 (tk)
  • clamscan, clamd, libclamav: load cvd files on-the-fly (without unpacking them to /tmp) by default Tue Jul 28 20:19:08 CEST 2009 (tk)
  • libclamav: improve loading speed of compressed databases (bb#1105) Mon Jul 27 13:53:15 CEST 2009 (tk)
  • libclamav/macho.c: improve detection of Universal Binaries Mon Jul 27 12:28:08 CEST 2009 (tk)
  • libclamav/macho.c: fix section alignment (bb#1667) Sun Jul 26 18:55:37 CEST 2009 (acab)
  • shared/actions.c: wrap unistd - reported by njh Sun Jul 19 16:19:49 CEST 2009 (acab)
  • libclamav/pe.c: check IS-cab scan result * test/: add IS test files Fri Jul 17 12:48:24 EEST 2009 (edwin)
  • libclamav/regex_list.[ch]: improve safebrowsing.cvd load speed (20s -> 3s) Fri Jul 17 02:28:50 CEST 2009 (acab)
  • libclamav/others.h, libclamav/ishield.c: fix typo, workaround crappy preprocessors (bb#1658) Thu Jul 16 23:01:34 CEST 2009 (tk)
  • libclamav/cab.c: downgrade warning message (bb#1659) Thu Jul 16 14:20:01 CEST 2009 (acab)
  • libclamav, build system: fix portability issues for fseeko, sysconf(_SC_PAGESIZE), getpagesize() (bb#1658) Wed Jul 15 23:36:09 EEST 2009 (edwin)
  • libclamav/pe.c, yc.c: Make yC able to handle more samples and variants. Wed Jul 15 19:36:35 CEST 2009 (tk)
  • clamd: honour value of 0 in Max* options Wed Jul 15 19:24:03 CEST 2009 (tk)
  • clamscan: honour value of 0 in --max-* options (bb#1650) Wed Jul 15 16:25:00 EEST 2009 (edwin)
  • unit_tests/check_clamd.c: fix unit tests when run as root (bb #1635). Wed Jul 15 12:50:50 CEST 2009 (acab)
  • libclamav/ishield.c: fix distcheck, patch from edwin Wed Jul 15 12:20:04 CEST 2009 (tk)
  • clamd, clamav-milter: make pid files globally readable (bb#1642) Wed Jul 15 12:33:22 CEST 2009 (acab)
  • libclamav/ishield.c: use mmap for big files, fix some leaks, some portability fixes Wed Jul 15 11:20:56 CEST 2009 (tk)
  • libclamav/filetypes.c: fix off-by-one error (bb#1639) Wed Jul 15 08:46:35 CEST 2009 (tk)
  • libclamav/mspack.c: fix valgrind warnings about use of uninitialized values (bb#1655) Tue Jul 14 23:41:37 CEST 2009 (acab)
  • libclamav: add preliminary support for IS executables (IS-cab and IS-msi) part of bb#1571 Tue Jul 14 18:17:59 CEST 2009 (tk)
  • libclamav: add support for Universal Binaries (archives with Mach-O files for different architectures, bb#1592) Mon Jul 13 21:40:51 CEST 2009 (tk)
  • docs/signatures.pdf: cover Mach-O files Mon Jul 13 21:24:05 CEST 2009 (tk)
  • libclamav: handle Mach-O files with type-9 signatures; all special offsets are supported for PPC32/64 and x86 executables; for ARM and other archs only section based extensions (Sx[+-]n, SL[+-]n) are supported atm Mon Jul 13 19:34:36 EEST 2009 (edwin)
  • clambc/, libclamav/, unit_tests/: Initial draft of bytecode interpreter (bb #1243). Mon Jul 13 16:06:31 CEST 2009 (tk)
  • libclamav/macho.c: handle LC_THREAD; calculate EP Fri Jul 10 10:10:35 CEST 2009 (tk)
  • libclamav/filetypes_int.h: sync with daily.ftm Wed Jul 8 14:59:14 CEST 2009 (tk)
  • libclamav: initial support for Mach-O executables (part of bb#1592) Mon Jul 6 16:56:06 CEST 2009 (tk)
  • test: add cpio test files Thu Jul 2 17:05:12 CEST 2009 (tk)
  • libclamav: add support for cpio archives (bb#1649) Mon Jun 29 15:40:42 CEST 2009 (acab)
  • clamav-milter: use s/STREAM/INSTREAM/ (bb#1548) Mon Jun 29 11:25:46 CEST 2009 (acab)
  • clamav-milter/netcode.c: Properly handle clamd disconnection (bb#1643) Mon Jun 22 17:19:45 CEST 2009 (acab)
  • clamav-milter/whitelist.c: print failed whitelist filename Fri Jun 12 12:30:15 CEST 2009 (tk)
  • libclamav/elf.[ch]: add support for 64-bit ELF files (bb#1593)

New in Clam AntiVirus 0.95.3 (Oct 29, 2009)

  • This is a bugfix release recommended for all users.

New in Clam AntiVirus 0.95.1 (Apr 9, 2009)

  • This is a bugfix release only

New in Clam AntiVirus 0.95 (Mar 23, 2009)

  • Google Safe Browsing support: in addition to the heuristic and signature based phishing detection mechanisms already available in ClamAV, the scanner can now make use of the Google's blacklists of suspected phishing and malware sites. The ClamAV Project distributes a constantly updated Safe Browsing database, which can be automatically fetched by freshclam. For more information, please see freshclam.conf(5) and http://safebrowsing.clamav.net.
  • New clamav-milter: The program has been redesigned and rewritten from scratch. The most notable difference is that the internal mode has been dropped which means that now a working clamd companion is required. The milter now also has its own configuration file.
  • Clamd extensions: The protocol has been extended to lighten the load that clamd puts on the system, solve limitations of the old protocol, and reduce latency when signature updates are received. For more information about the new extensions please see the official documentation and the upgrade notes.
  • Improved API: The API used to program ClamAV's engine (libclamav) has been redesigned to use modern object-oriented techniques and solves various API/ABI compatibility issues between old and new releases. You can find more information in Section 6 of clamdoc.pdf and in the upgrade notes.
  • ClamdTOP: This is a new program that allows system administrators to monitor clamd. It provides information about the items in the clamd's queue, clamd's memory usage, and the version of the signature database, all in real-time and in nice curses-based interface.
  • Memory Pool Allocator: Libclamav now includes its own memory pool allocator based on memory mapping. This new solution replaces the traditional malloc/free system for the copy of the signatures that is kept in memory. As a result, clamd requires much less memory, particularly when signature updates are received and the database is loaded into memory.
  • Unified Option Parser: Prior to version 0.95 each program in ClamAV's suite of programs had its own set of runtime options. The new general parser brings consistency of use and validation to these options across the suite. Some command line switches of clamscan have been renamed (the old ones will still be accepted but will have no effect and will result in warnings), please see clamscan(1) and clamscan --help for the details.

New in Clam AntiVirus 0.95 RC2 (Mar 16, 2009)

  • This is a second release candidate for ClamAV 0.95. It fixes a number of problems that were found in 0.95rc1 and provides support for Google Safe Browsing, which can be enabled by turning on the SafeBrowsing option in freshclam.conf. Please see 'man 5 freshclam.conf' and http://safebrowsing.clamav.net for more information.

New in Clam AntiVirus 0.95 RC1 (Feb 26, 2009)

  • This release has a new clamav-milter, Clamd extensions, an improved API, ClamdTOP, a memory pool allocator, and a unified option parser.

New in Clam AntiVirus 0.94.2 (Nov 26, 2008)

  • This is a bugfix release.

New in Clam AntiVirus 0.94.1 (Nov 3, 2008)

  • ClamAV 0.94.1 fixes some issues that were found in previous releases and includes one new feature, "Malware Statistics Gathering." This is an optional feature that allows ClamAV users optionally to submit statistics to us about what they detect in the field. We will then use these data to determine what types of malware are the most detected in the field and in what geographic area they are. It will also allow us to publish summary data on www.clamav.net where our users will be able to monitor the latest threats. You can help us by enabling SubmitDetectionStats in freshclam.conf.

New in Clam AntiVirus 0.94.1 RC1 (Oct 15, 2008)

  • This is an interim release that fixes some issues found in previous releases.
  • It also includes one new feature,“Malware Statistics Gathering.” Malware Statistics Gathering is an optional feature that has been added to freshclam enabling ClamAV to send summary statistics to Sourcefire and the ClamAV Research Team.
  • This feature will allow users to optionally submit statistics to us about what they detect in the field, which will then be used to determine what types of malware/viruses are the most detected in the field and in what geographic area.

New in Clam AntiVirus 0.94 (Sep 4, 2008)

  • Logical signatures were added.
  • Anti-phishing technology was improved.
  • A disassembly engine was added.
  • A Data Loss Prevention module was added.
  • IPv6 is supported in freshclam.
  • Scanning of JavaScript was improved.
  • QA and unit testing were improved.