The release of the free anti-virus package ClamAV 0.103.3 has been formed, in which the following changes are proposed:
- The mirrors.dat file has been renamed to freshclam.dat because ClamAV has been moved to use a content delivery network (CDN) instead of a mirror network, and the referenced dat file no longer contains information about mirrors. Freshclam.dat stores the UUID used by the ClamAV User-Agent. The need to rename is due to the fact that in the scripts of some users, mirrors.dat was deleted in the event of a FreshClam failure, but now this file contains an identifier, the loss of which is unacceptable.
- Fixed issues with low file scanning performance when the ENGINE_OPTIONS_FORCE_TO_DISK option is enabled.
- Fixed a ClamDScan process crash when using the "--fdpass --multiscan" options along with the ExcludePath setting in the clamd config file.
- Fixed an issue with setting root as the owner of mirrors.dat instead of the user defined in the DatabaseOwner setting when running clamav as root.
- Ensured that the HTTPUserAgent setting is disabled if clamav.net is used in DatabaseMirror to avoid accidental blocks.
- To enable detection of attempts to exploit the CVE-2010-1205 (Heuristics.PNG.CVE-2010-1205) vulnerability, you must now explicitly activate the ClamScan parameter "--alert-broken-media" or the "AlertBrokenMedia" setting, since the vulnerability has long been fixed everywhere.
- Fixed ClamSubmit crash after Cloudflare changed Cookie "__cfduid".
Source: opennet.ru