Path to this page:
./
security/clamav,
Anti-virus toolkit
Branch: CURRENT,
Version: 0.103.0nb1,
Package name: clamav-0.103.0nb1,
Maintainer: pkgsrc-usersClam AntiVirus is an anti-virus toolkit written from scratch. It is licensed
under GNU GPL2 and uses the virus database from OpenAntiVirus, which is an
another free anti-virus project. In contrast to OpenAntiVirus (which is written
in Java), Clam AntiVirus is written entirely in C and its database is KEPT UP
TO DATE. It also detects polymorphic viruses as well.
DEINSTALL [+/-]# $NetBSD: DEINSTALL,v 1.1.1.1 2010/12/24 07:11:05 kefren Exp $
case ${STAGE} in
DEINSTALL)
# Unconditionally remove the virus databases when deinstalling.
${RM} -f @CLAMAV_DBDIR@/daily.cvd
${RM} -f @CLAMAV_DBDIR@/main.cvd
;;
esac
Required to run:[
textproc/libxml2] [
www/curl] [
security/openssl] [
devel/gmp] [
devel/libltdl] [
textproc/json-c] [
devel/pcre2] [
archivers/libmspack]
Required to build:[
pkgtools/cwrappers]
Master sites:
SHA1: 259a726e7aaeebeed138578192a80e06f949638c
RMD160: c44cf27d6974af14103328d81ba562c513d764b7
Filesize: 13044.021 KB
Version history: (Expand)
- (2020-11-05) Updated to version: clamav-0.103.0nb1
- (2020-09-19) Updated to version: clamav-0.103.0
- (2020-09-14) Updated to version: clamav-0.102.4nb1
- (2020-07-17) Updated to version: clamav-0.102.4
- (2020-06-02) Updated to version: clamav-0.102.3nb3
- (2020-05-22) Updated to version: clamav-0.102.3nb2
CVS history: (Expand)
2020-11-05 10:09:30 by Ryo ONODERA | Files touched by this commit (1814) |
Log message:
*: Recursive revbump from textproc/icu-68.1
|
2020-09-19 15:41:42 by Takahiro Kambe | Files touched by this commit (11) |  |
Log message:
security/clamav: update to 0.103.0
Update clamav package to 0.103.0.
Quote from release announce:
ClamAV 0.103.0 highlights
With your feedback on the previous candidates, we've fixed these additional
issues:
* The freshclam PID file was not readable by other users in previous release
candidates but is now readable by all.
* An issue with how freshclam was linked with the autotools build system
caused SysLog settings to be ignored.
* The real-path checks introduced to clamscan and clamdscan in 0.102.4 broke
scanning of some files with Unicode filenames and files on network shares
for Windows users.
Thanks to the users for your help in fixing these bugs.
Major changes
* clamd can now reload the signature database without blocking
scanning. This multi-threaded database reload improvement was made
possible thanks to a community effort.
* Non-blocking database reloads are now the default behavior. Some systems
that are more constrained on RAM may need to disable non-blocking reloads,
as it will temporarily consume double the amount of memory. We added a new
clamd config option ConcurrentDatabaseReload, which may be set to no.
Special thanks to those who made this feature a reality:
* Alberto Wu
* Alexander Sulfrian
* Arjen de Korte
* David Heidelberg
* Ged Haywood
* Julius Plenz
* Michael Orlitzky
Notable changes
* The DLP module has been enhanced with additional credit card ranges and a
new engine option that allows ClamAV to alert only on credit cards (and
not, for instance, gift cards) when scanning with the DLP module. John
Schember developed this feature, with input from Alexander Sulfrian.
* We added support for Adobe Reader X PDF encryption and overhauled the
PNG-scanning tool to detect PNG-specific exploits. We also made a major
change to GIF parsing that now makes it more tolerant of problematic files
and adds the ability to scan overlays, all thanks to work and patches
submitted by Aldo Mazzeo.
* clamdtop.exe is now available for Windows users. The functionality is
somewhat limited when compared to clamdtop on Linux. PDCurses is required
to build clamdtop.exe for ClamAV on Windows.
* The phishing detection module will now print "Suspicious link found!"
along with the "Real URL" and "Display URL" each time \
ClamAV detects
phishing. In a future version, we would like to print out alert-related
metadata like this at the end of a scan, but for now, this detail will
help users understand why a given file is being flagged as phishing.
* Added new *experimental* CMake build tooling. CMake is not yet recommended
for production builds. Our team would appreciate any assistance improving
the CMake build tooling so we can one day deprecate autotools and remove
the Visual Studio solutions.
- Please see the new CMake installation instructions found in
INSTALL.cmake.md for detailed instructions on how to build ClamAV
with CMake.
* Added --ping and --wait options to the clamdscan and clamonacc client
applications.
* The --ping (-p) command will attempt to ping clamd up to a specified
maximum number of attempts at an optional interval. If the interval isn't
specified, a default one-second interval is used. It will exit with
status code `0` when it receives a PONG from clamd or status code `21` if
the timeout expires before it receives a response.
|
2020-09-17 18:16:38 by Jonathan Perkin | Files touched by this commit (1) |
Log message:
clamav: Explicitly set SMF_METHODS.
RCD_SCRIPTS changes depending on configured options, and clamav-milter
is launched directly from the manifest without a separate method script.
|
2020-09-14 18:54:35 by Takahiro Kambe | Files touched by this commit (3) |  |
Log message:
security/clamav: add clamav-milter startup script
Add clamav-milter startup script.
Bump PKGREVISION.
|
2020-07-17 06:48:32 by Takahiro Kambe | Files touched by this commit (3) |  |
Log message:
security/clamav: update to 0.102.4
Update clamav to 0.102.4.
## 0.102.4
ClamAV 0.102.4 is a bug patch release to address the following issues.
- [CVE-2020-3350](https://cve.mitre.org/cgi-bin/cvename.c … -2020-3350):
Fix a vulnerability wherein a malicious user could replace a scan target's
directory with a symlink to another path to trick clamscan, clamdscan, or
clamonacc into removing or moving a different file (eg. a critical system
file). The issue would affect users that use the --move or --remove options
for clamscan, clamdscan, and clamonacc.
For more information about AV quarantine attacks using links, see the
[RACK911 Lab's \
report](https://www.rack911labs.com/research/ex … s-software).
- [CVE-2020-3327](https://cve.mitre.org/cgi-bin/cvename.c … -2020-3327):
Fix a vulnerability in the ARJ archive parsing module in ClamAV 0.102.3 that
could cause a Denial-of-Service (DoS) condition. Improper bounds checking
results in an out-of-bounds read which could cause a crash.
The previous fix for this CVE in 0.102.3 was incomplete. This fix correctly
resolves the issue.
- [CVE-2020-3481](https://cve.mitre.org/cgi-bin/cvename.c … -2020-3481):
Fix a vulnerability in the EGG archive module in ClamAV 0.102.0 - 0.102.3
could cause a Denial-of-Service (DoS) condition. Improper error handling
may result in a crash due to a NULL pointer dereference.
This vulnerability is mitigated for those using the official ClamAV
signature databases because the file type signatures in daily.cvd
will not enable the EGG archive parser in versions affected by the
vulnerability.
|
2020-06-02 10:25:05 by Adam Ciarcinski | Files touched by this commit (1689) |
Log message:
Revbump for icu
|
2020-05-22 12:56:49 by Adam Ciarcinski | Files touched by this commit (624) |
Log message:
revbump after updating security/nettle
|
2020-05-19 14:09:09 by Nia Alarie | Files touched by this commit (23) |
Log message:
Recursive revbump for json-c-0.14
|