... | ... |
@@ -1,3 +1,70 @@ |
1 |
+Tue Sep 3 18:37:13 2013 EDT 2013 (dar) |
|
2 |
+------------------------------------ |
|
3 |
+ * V 0.98.0 RC |
|
4 |
+ |
|
5 |
+Thu Aug 15 17:44:49 2013 EDT 2013 (dar) |
|
6 |
+------------------------------------ |
|
7 |
+ * code quality fixes on libclamav, clamd, sigtool, clamav-milter, clamconf and clamdtop |
|
8 |
+ |
|
9 |
+Fri Aug 9 18:33:06 2013 EDT 2013 (dar) |
|
10 |
+------------------------------------ |
|
11 |
+ * code quality fixes on libclamav, libclamunrar and freshclam |
|
12 |
+ |
|
13 |
+Wed Aug 7 18:55:13 EDT 2013 (dar) |
|
14 |
+------------------------------------ |
|
15 |
+ * valgrind suppression rules for dl_catch_error complaints |
|
16 |
+ |
|
17 |
+Tue Jul 30 15:07:25 EDT 2013 (dar) |
|
18 |
+------------------------------------ |
|
19 |
+ * bb #8385: PDF ASCII85Decode zero-length fix |
|
20 |
+ |
|
21 |
+Thu Jun 20 13:43:46 EDT 2013 (dar) |
|
22 |
+------------------------------------ |
|
23 |
+ * libclamav: SCAN_ALL mode fixes |
|
24 |
+ |
|
25 |
+Thu May 9 12:50:46 EDT 2013 (dar) |
|
26 |
+------------------------------------ |
|
27 |
+ * bb #7436: elf64 header early exit |
|
28 |
+ |
|
29 |
+Mon Apr 22 11:06:37 EDT 2013 (dar) |
|
30 |
+------------------------------------ |
|
31 |
+ * iso9660: iso_scan_file rewrite |
|
32 |
+ |
|
33 |
+Wed Apr 17 11:20:48 EDT 2013 (olney) |
|
34 |
+------------------------------------ |
|
35 |
+ * V 0.97.8 |
|
36 |
+ |
|
37 |
+Mon Apr 15 17:58:26 EDT 2013 (dar) |
|
38 |
+------------------------------------ |
|
39 |
+ * cache: cacheset_remove fix and better logging |
|
40 |
+ |
|
41 |
+Fri Apr 12 14:20:23 EDT 2013 (swebb) |
|
42 |
+------------------------------------ |
|
43 |
+ * libclamav: Fix bugs in mpool and readdb |
|
44 |
+ |
|
45 |
+Fri Apr 5 17:36:54 EDT 2013 (dar) |
|
46 |
+------------------------------------ |
|
47 |
+ * libclamav: Bugs reported by Felix Groebert of the Google Security Team |
|
48 |
+ |
|
49 |
+Thu Mar 28 17:11:56 EDT 2013 (morgan) |
|
50 |
+------------------------------------ |
|
51 |
+ * signature.pdf updates |
|
52 |
+ * Update clam doc for allmatch mode |
|
53 |
+ * doc: add target 12 for CL_TYPE_JAVA |
|
54 |
+ * signature.tex fixup for bb6988 |
|
55 |
+ |
|
56 |
+Tue Mar 26 16:51:51 EDT 2013 (dar) |
|
57 |
+------------------------------------ |
|
58 |
+ * libclamav: include cb_meta on copy or apply engine settings |
|
59 |
+ |
|
60 |
+Fri Mar 22 12:05:59 EDT 2013 (dar) |
|
61 |
+------------------------------------ |
|
62 |
+ * libclamav: vba strings fix-ups |
|
63 |
+ |
|
64 |
+Tue Mar 12 15:00:07 EDT 2013 (swebb) |
|
65 |
+------------------------------------ |
|
66 |
+ * Add valgrind suppression rule for LLVM subcode shutdown |
|
67 |
+ |
|
1 | 68 |
Fri Mar 8 17:48:34 EDT 2013 (dar) |
2 | 69 |
------------------------------------ |
3 | 70 |
* libclamav: SHA1/SHA256 handling changes and wildcard-size support |
... | ... |
@@ -10,11 +77,19 @@ Thu Feb 28 13:55:04 EDT 2013 (dar) |
10 | 10 |
------------------------------------ |
11 | 11 |
* libclamav/pe_icons.c: introduce LOGPARSEICONDETAILS define to reduce parseicon logging in default build |
12 | 12 |
|
13 |
+Thu Mar 7 16:10:49 EDT 2012 (olney) |
|
14 |
+---------------------------------- |
|
15 |
+ * V 0.97.7 |
|
16 |
+ |
|
13 | 17 |
Wed Feb 20 10:05:00 EDT 2013 (multiple) |
14 | 18 |
------------------------------------ |
15 | 19 |
* Bug reported by Felix Groebert, Mateusz Jurczyk and Gynvael Coldwind of the |
16 | 20 |
Google Security Team |
17 | 21 |
|
22 |
+Thu Feb 7 14:04:06 EDT 2013 (dar) |
|
23 |
+------------------------------------ |
|
24 |
+ * Add CL_TYPE_JAVA for Java class detection, type and target |
|
25 |
+ |
|
18 | 26 |
Tue Feb 5 19:38:35 EDT 2013 (dar) |
19 | 27 |
------------------------------------ |
20 | 28 |
* Add runtime enable/disable of SWF scanning |
... | ... |
@@ -261,6 +336,10 @@ Mon Sep 17 12:47:47 EDT 2012 (morgan) |
261 | 261 |
* check return code from fstat(). If less than 0, log error message and |
262 | 262 |
return error to caller, bb#5778 |
263 | 263 |
|
264 |
+Mon Sep 17 11:19:33 EDT 2012 (olney) |
|
265 |
+---------------------------------- |
|
266 |
+ * V 0.97.6 |
|
267 |
+ |
|
264 | 268 |
Fri Sep 14 18:57:41 EDT 2012 (dar) |
265 | 269 |
---------------------------------- |
266 | 270 |
* bb #5659: Log rotation in Windows wrapper |
... | ... |
@@ -408,6 +487,10 @@ Wed Mar 31 18:08:01 CET 2012 (acab) |
408 | 408 |
--------------------------------- |
409 | 409 |
* add recovery mode to 7z ansi |
410 | 410 |
|
411 |
+Wed Mar 14 22:52:48 CET 2012 (tk) |
|
412 |
+--------------------------------- |
|
413 |
+ * V 0.97.4 |
|
414 |
+ |
|
411 | 415 |
Fri Mar 2 19:36:04 CET 2012 (tk) |
412 | 416 |
--------------------------------- |
413 | 417 |
* properly connect to ClamAuth after database reload |
... | ... |
@@ -767,6 +850,10 @@ Mon Oct 17 19:40:34 CEST 2011 (tk) |
767 | 767 |
---------------------------------- |
768 | 768 |
* disable swf decoder in scanners.c |
769 | 769 |
|
770 |
+Mon Oct 17 18:04:30 CEST 2011 (tk) |
|
771 |
+---------------------------------- |
|
772 |
+ * V 0.97.3 |
|
773 |
+ |
|
770 | 774 |
Mon Oct 17 15:03:08 CEST 2011 (tk) |
771 | 775 |
---------------------------------- |
772 | 776 |
* sync with daily.ftm |
... | ... |
@@ -856,6 +943,7 @@ Wed Aug 3 15:41:28 CEST 2011 (tk) |
856 | 856 |
|
857 | 857 |
Tue Aug 2 17:03:33 CEST 2011 (tk) |
858 | 858 |
---------------------------------- |
859 |
+ * V 0.97.2 |
|
859 | 860 |
* docs: clarify behavior of --scan-*/Scan* options (bb#3134) |
860 | 861 |
|
861 | 862 |
Mon Jul 25 17:14:39 EEST 2011 (tk) |
... | ... |
@@ -1077,7 +1165,7 @@ Fri Jun 10 21:22:46 CEST 2011 (edwin) |
1077 | 1077 |
------------------------------------ |
1078 | 1078 |
* fmapify cli_scanbzip |
1079 | 1079 |
|
1080 |
- Jun 10 20:17:19 CEST 2011 (edwin) |
|
1080 |
+Fri Jun 10 20:17:19 CEST 2011 (edwin) |
|
1081 | 1081 |
------------------------------------ |
1082 | 1082 |
* mbox already fmapified, just drop descriptor |
1083 | 1083 |
|
... | ... |
@@ -1109,6 +1197,10 @@ Tue Jun 7 12:03:19 EEST 2011 (edwin) |
1109 | 1109 |
------------------------------------ |
1110 | 1110 |
* libclamav/phishcheck.c: fix safebrowsing detection on certain URLs |
1111 | 1111 |
|
1112 |
+Thu Jun 9 09:10:49 CEST 2011 (tk) |
|
1113 |
+---------------------------------- |
|
1114 |
+ * V 0.97.1 |
|
1115 |
+ |
|
1112 | 1116 |
Thu Jun 9 08:22:31 CEST 2011 (acab) |
1113 | 1117 |
------------------------------------ |
1114 | 1118 |
* libclamav/mew.c: harden boundary check on e8/e9 fixup |
... | ... |
@@ -1,45 +1,62 @@ |
1 |
-0.97.2 |
|
1 |
+0.98 |
|
2 | 2 |
------ |
3 | 3 |
|
4 |
-ClamAV 0.97.2 fixes problems with the bytecode engine, Safebrowsing detection, |
|
5 |
-hash matcher, and other minor issues. Please see the ChangeLog file for |
|
6 |
-details. |
|
7 |
- |
|
8 |
-*** Announcement *** |
|
9 |
- |
|
10 |
-The ClamAV project is launching a new service called "Third Party web |
|
11 |
-interface". It will allow selected individuals/organizations to publish |
|
12 |
-ClamAV Virus Databases (CVD) through the ClamAV mirror network. |
|
13 |
- |
|
14 |
-If you choose to publish your signatures through our Third Party |
|
15 |
-web interface you will benefit from the following: |
|
16 |
- |
|
17 |
-- before publishing the signatures, we will test them for |
|
18 |
- false positives against our false positive file collection. |
|
19 |
-- before publishing the signatures, we'll verify that the latest two major |
|
20 |
- versions of ClamAV can load them correctly. |
|
21 |
-- the signatures will be digitally signed and packaged into a single |
|
22 |
- .cvd compressed file. |
|
23 |
-- there will be no ".UNOFFICIAL" suffix in the detection names. |
|
24 |
-- a custom prefix will be added to the detection names, identifying the |
|
25 |
- organization which published the signature. |
|
26 |
-- updates will be distributed both as full CVD files and cdiff |
|
27 |
- incremental updates. Users will benefit from lower network traffic. |
|
28 |
-- the .cvd and .cdiff files will be distributed through the |
|
29 |
- ClamAV mirror network. |
|
30 |
-- the service should result in faster remediation of false positives. |
|
31 |
-- ClamAV users will be able to download the third party databases |
|
32 |
- using freshclam, by adding a single line to freshclam.conf, what |
|
33 |
- should make signature maintenance significantly easier. |
|
34 |
- |
|
35 |
-The service is still in beta, you are welcome to contact Luca Gibelli |
|
36 |
-<luca*clamav.net> if you intend to join the beta program. |
|
37 |
- |
|
38 |
-We especially welcome those who already distribute their own unofficial |
|
39 |
-signatures to join. A list of databases distributed by the new service |
|
40 |
-will be available at http://www.clamav.net/download/cvd/3rdparty |
|
41 |
- |
|
42 |
-We will be happy to answer any questions you might have. |
|
4 |
+ClamAV 0.98 includes many new features, across all the different components |
|
5 |
+of ClamAV. There are new scanning options, extensions to the libclamav API, |
|
6 |
+support for additional filetypes and internal upgrades. |
|
7 |
+ |
|
8 |
+ - Signature improvements: New signature targets have been added for |
|
9 |
+ PDF files, Flash files and Java class files. NOTE: Java archive files |
|
10 |
+ (JAR) are not part of the Java target. Hash signatures can now be |
|
11 |
+ written with a * size if the size is unknown. Using wildcard size |
|
12 |
+ requires setting the minimum engine FLEVEL to avoid backwards |
|
13 |
+ compatibility issues. For more details read the ClamAV Signatures |
|
14 |
+ guide. |
|
15 |
+ |
|
16 |
+ - Scanning enhancements: New filetypes can be unpacked and scanned, |
|
17 |
+ including ISO9660, Flash and self-extracting 7z files. PDF |
|
18 |
+ handling is now more robust and better handles encrypted PDF files. |
|
19 |
+ |
|
20 |
+ - Authenticode: ClamAV is now aware of the certificate chain when |
|
21 |
+ scanning signed PE files. When the database contains signatures for |
|
22 |
+ trusted root certificate authorities, the engine can whitelist |
|
23 |
+ PE files with a valid signature. The same database file can also |
|
24 |
+ include known compromised certificates to be rejected! This |
|
25 |
+ feature can also be disabled in clamd.conf (DisableCertCheck) or |
|
26 |
+ the command-line (nocerts). |
|
27 |
+ |
|
28 |
+ - New options: Several new options for clamscan and clamd have been |
|
29 |
+ added. For example, ClamAV can be set to print infected files and |
|
30 |
+ error files and suppress printing OK results. This can be helpful |
|
31 |
+ when scanning large numbers of files. This new option is "-o" for |
|
32 |
+ clamscan and "LogClean" for clamd. Check clamd.conf or the clamscan |
|
33 |
+ help message for specific details. |
|
34 |
+ |
|
35 |
+ - New callbacks added to the API: The libclamav API has additional hooks |
|
36 |
+ for developers to use when wrapping ClamAV scanning. These function |
|
37 |
+ types are defined to start with "clcb_" and allow developers to add |
|
38 |
+ logic at certain steps of the scanning process without directly |
|
39 |
+ modifying the library. For more details refer to the clamav.h file. |
|
40 |
+ |
|
41 |
+ - More configurable limits: Several hardcoded values are now configurable |
|
42 |
+ parameters, providing more options for tuning the engine to match your |
|
43 |
+ needs. Check clamd.conf or the clamscan help message for specific |
|
44 |
+ details. |
|
45 |
+ |
|
46 |
+ - Performance improvements: This release furthers the use of memory maps |
|
47 |
+ during scanning and unpacking, continuing the conversion started in |
|
48 |
+ prior releases. Complex math functions have been switched from |
|
49 |
+ libtommath to tomsfastmath functions. The A/C matcher code has also |
|
50 |
+ been optimized to provide a speed boost. |
|
51 |
+ |
|
52 |
+ - Support for on-access scanning using Clamuko/Dazuko has been replaced |
|
53 |
+ with fanotify. Accordingly, clamd.conf settings related to on-access |
|
54 |
+ scanning have had Clamuko removed from the name. Clamuko-specific |
|
55 |
+ configuration items have been marked deprecated and should no longer |
|
56 |
+ be used. |
|
57 |
+ |
|
58 |
+There are also fixes for other minor issues and code quality changes. Please |
|
59 |
+see the ChangeLog file for details. |
|
43 | 60 |
|
44 | 61 |
-- |
45 | 62 |
The ClamAV team (http://www.clamav.net/team) |
... | ... |
@@ -3,10 +3,88 @@ here may not be available in binary packages. |
3 | 3 |
-- |
4 | 4 |
|
5 | 5 |
0.98 |
6 |
+------ |
|
7 |
+ |
|
8 |
+ClamAV 0.98 includes many new features, across all the different components |
|
9 |
+of ClamAV. There are new scanning options, extensions to the libclamav API, |
|
10 |
+support for additional filetypes and internal upgrades. |
|
11 |
+ |
|
12 |
+ - Signature improvements: New signature targets have been added for |
|
13 |
+ PDF files, Flash files and Java class files. NOTE: Java archive files |
|
14 |
+ (JAR) are not part of the Java target. Hash signatures can now be |
|
15 |
+ written with a * size if the size is unknown. Using wildcard size |
|
16 |
+ requires setting the minimum engine FLEVEL to avoid backwards |
|
17 |
+ compatibility issues. For more details read the ClamAV Signatures |
|
18 |
+ guide. |
|
19 |
+ |
|
20 |
+ - Scanning enhancements: New filetypes can be unpacked and scanned, |
|
21 |
+ including ISO9660, Flash and self-extracting 7z files. PDF |
|
22 |
+ handling is now more robust and better handles encrypted PDF files. |
|
23 |
+ |
|
24 |
+ - Authenticode: ClamAV is now aware of the certificate chain when |
|
25 |
+ scanning signed PE files. When the database contains signatures for |
|
26 |
+ trusted root certificate authorities, the engine can whitelist |
|
27 |
+ PE files with a valid signature. The same database file can also |
|
28 |
+ include known compromised certificates to be rejected! This |
|
29 |
+ feature can also be disabled in clamd.conf (DisableCertCheck) or |
|
30 |
+ the command-line (nocerts). |
|
31 |
+ |
|
32 |
+ - New options: Several new options for clamscan and clamd have been |
|
33 |
+ added. For example, ClamAV can be set to print infected files and |
|
34 |
+ error files and suppress printing OK results. This can be helpful |
|
35 |
+ when scanning large numbers of files. This new option is "-o" for |
|
36 |
+ clamscan and "LogClean" for clamd. Check clamd.conf or the clamscan |
|
37 |
+ help message for specific details. |
|
38 |
+ |
|
39 |
+ - New callbacks added to the API: The libclamav API has additional hooks |
|
40 |
+ for developers to use when wrapping ClamAV scanning. These function |
|
41 |
+ types are defined to start with "clcb_" and allow developers to add |
|
42 |
+ logic at certain steps of the scanning process without directly |
|
43 |
+ modifying the library. For more details refer to the clamav.h file. |
|
44 |
+ |
|
45 |
+ - More configurable limits: Several hardcoded values are now configurable |
|
46 |
+ parameters, providing more options for tuning the engine to match your |
|
47 |
+ needs. Check clamd.conf or the clamscan help message for specific |
|
48 |
+ details. |
|
49 |
+ |
|
50 |
+ - Performance improvements: This release furthers the use of memory maps |
|
51 |
+ during scanning and unpacking, continuing the conversion started in |
|
52 |
+ prior releases. Complex math functions have been switched from |
|
53 |
+ libtommath to tomsfastmath functions. The A/C matcher code has also |
|
54 |
+ been optimized to provide a speed boost. |
|
55 |
+ |
|
56 |
+ - Support for on-access scanning using Clamuko/Dazuko has been replaced |
|
57 |
+ with fanotify. Accordingly, clamd.conf settings related to on-access |
|
58 |
+ scanning have had Clamuko removed from the name. Clamuko-specific |
|
59 |
+ configuration items have been marked deprecated and should no longer |
|
60 |
+ be used. |
|
61 |
+ |
|
62 |
+There are also fixes for other minor issues and code quality changes. Please |
|
63 |
+see the ChangeLog file for details. |
|
64 |
+ |
|
65 |
+-- |
|
66 |
+The ClamAV team (http://www.clamav.net/team) |
|
67 |
+ |
|
68 |
+0.97.8 |
|
69 |
+---- |
|
70 |
+ |
|
71 |
+ClamAV 0.97.8 addresses several reported potential security bugs. Thanks to |
|
72 |
+Felix Groebert of the Google Security Team for finding and reporting these |
|
73 |
+issues. |
|
74 |
+ |
|
75 |
+0.97.7 |
|
76 |
+---- |
|
77 |
+ |
|
78 |
+ClamAV 0.97.7 addresses several reported potential security bugs. Thanks to |
|
79 |
+Felix Groebert, Mateusz Jurczyk and Gynvael Coldwind of the Google Security |
|
80 |
+Team for finding and reporting these issues. |
|
81 |
+ |
|
82 |
+0.97.6 |
|
6 | 83 |
---- |
7 | 84 |
|
8 |
-Bug reported by Felix Groebert, Mateusz Jurczyk and Gynvael Coldwind of the Google Security |
|
9 |
-Team. |
|
85 |
+ClamAV 0.97.6 includes minor bug fixes and detection improvements. |
|
86 |
+ClamAV 0.97.6 corrects bug 5252 "CL_EFORMAT: Bad format or broken data ERROR |
|
87 |
+reported as scan result." |
|
10 | 88 |
|
11 | 89 |
0.97.5 |
12 | 90 |
------ |
... | ... |
@@ -14,7 +92,7 @@ Team. |
14 | 14 |
ClamAV 0.97.5 addresses possible evasion cases in some archive formats |
15 | 15 |
(CVE-2012-1457, CVE-2012-1458, CVE-2012-1459). It also addresses stability |
16 | 16 |
issues in portions of the bytecode engine. This release is recommended for |
17 |
-all |
|
17 |
+all users. |
|
18 | 18 |
|
19 | 19 |
0.97.4 |
20 | 20 |
------ |