4be77ca9be
* [CVE-2024-20506, bsc#1230162]: Changed the logging module to
disable following symlinks on Linux and Unix systems so as to
prevent an attacker with existing access to the 'clamd' or
'freshclam' services from using a symlink to corrupt system
files.
* [CVE-2024-20505, bsc#1230161]: Fixed a possible out-of-bounds
read bug in the PDF file parser that could cause a
denial-of-service (DoS) condition.
* https://blog.clamav.net/2024/09/clamav-141-132-107-and-010312-security.html
- New version 1.4.0:
* Added support for extracting ALZ archives.
* Added support for extracting LHA/LZH archives.
* Added the ability to disable image fuzzy hashing, if needed.
For context, image fuzzy hashing is a detection mechanism
useful for identifying malware by matching images included with
the malware or phishing email/document.
* https://blog.clamav.net/2024/08/clamav-140-feature-release-and-clamav.html
OBS-URL: https://build.opensuse.org/package/show/security/clamav?expand=0&rev=264
39 lines
593 B
Tcl
39 lines
593 B
Tcl
#!/usr/bin/tclsh
|
|
package require Expect
|
|
|
|
proc pne {x} {
|
|
if {$x != ""} {
|
|
puts $x
|
|
}
|
|
}
|
|
|
|
set x 0
|
|
set L ""
|
|
set C ""
|
|
log_user 0
|
|
spawn clamscan eicar_test_files
|
|
expect_before -re "((L|C)\[^\r\]*)\r" {
|
|
set $expect_out(2,string) $expect_out(1,string)
|
|
exp_continue
|
|
} eof {
|
|
pne $L
|
|
pne $C
|
|
pne $expect_out(buffer)
|
|
puts "*** clamscan died! ***"
|
|
exit 1
|
|
}
|
|
expect "\n"; # newline after "Loading: ..."
|
|
expect "\n"; # newline after "Compiling: ..."
|
|
expect_before
|
|
pne $L
|
|
pne $C
|
|
puts ""
|
|
log_user 1
|
|
expect "FOUND" {
|
|
incr x
|
|
exp_continue
|
|
} eof
|
|
if {$x ne 3} {
|
|
exit 1
|
|
}
|