ProHoster > Блог > labaran intanet > Cisco ya fito da fakitin riga-kafi kyauta ClamAV 0.105

Cisco ya fito da fakitin riga-kafi kyauta ClamAV 0.105

Cisco ya gabatar da wani babban sabon sakin rigar riga-kafi kyauta, ClamAV 0.105.0, sannan kuma ya buga gyaran gyara na ClamAV 0.104.3 da 0.103.6 wanda ke gyara lahani da kwari. Bari mu tuna cewa aikin ya shiga hannun Cisco a cikin 2013 bayan siyan Sourcefire, kamfanin haɓaka ClamAV da Snort. Ana rarraba lambar aikin a ƙarƙashin lasisin GPLv2.

Babban haɓakawa a cikin ClamAV 0.105:

  • Ana haɗa mai haɗawa don harshen Rust a cikin abubuwan dogaro da ake buƙata na ginawa. Gina yana buƙatar aƙalla tsatsa 1.56. Laburaren dogaro da ake buƙata a cikin Rust an haɗa su cikin babban fakitin ClamAV.
  • An sake rubuta lambar don ƙarin sabuntawa na rumbun adana bayanai (CDIFF) a cikin Rust. Sabon aiwatarwa ya ba da damar hanzarta aiwatar da sabbin abubuwa waɗanda ke cire babban adadin sa hannu daga bayanan. Wannan shine farkon tsarin da aka sake rubutawa cikin Rust.
  • An ƙara ƙimar iyaka ta asali:
    • Girman MaxScan: 100M> 400M
    • Girman Girman: 25M> 100M
    • StreamMax Tsawon: 25M> 100M
    • Girman PCREMax: 25M> 100M
    • MaxEmbeddedPE: 10M> 40M
    • MaxHTMLMadaidaita: 10M> 40M
    • MaxScriptNormalize: 5M> 20M
    • MaxHTMLNoTags: 2M> 8M
    • Matsakaicin girman layi a cikin fayilolin sanyi na freshclam.conf da clamd.conf an ƙaru daga 512 zuwa haruffa 1024 (lokacin da aka ƙayyade alamun shiga, ma'aunin DatabaseMirror zai iya wuce 512 bytes).
  • Don gano hotunan da aka yi amfani da su don phishing ko rarraba malware, an aiwatar da goyan baya don sabon nau'in sa hannu na ma'ana wanda ke amfani da hanyar hashing mai banƙyama, wanda ke ba da damar gano abubuwa iri ɗaya tare da takamaiman matakin yuwuwar. Don ƙirƙirar zanta mai banƙyama don hoto, zaku iya amfani da umarnin "sigtool-fuzzy-img".
  • ClamScan da ClamDScan suna da ginanniyar damar bincikar ƙwaƙwalwar ajiya. An canza wannan fasalin daga fakitin ClamWin kuma ya keɓance ga dandalin Windows. An ƙara "--memory", "-kill" da "--unload" zaɓuɓɓuka zuwa ClamScan da ClamDScan akan dandalin Windows.
  • Abubuwan da aka sabunta lokacin aiki don aiwatar da bytecode dangane da LLVM. Don haɓaka aikin dubawa idan aka kwatanta da tsohuwar fassarar bytecode, an gabatar da yanayin haɗa JIT. An daina goyan bayan tsofaffin nau'ikan LLVM; Ana iya amfani da nau'ikan LLVM 8 zuwa 12 don aiki.
  • An ƙara saitin GenerateMetadataJson zuwa Clamd, wanda yayi daidai da zaɓi na "--gen-json" a cikin clamscan kuma yana sa a rubuta metadata game da ci gaban binciken zuwa fayil ɗin metadata.json a tsarin JSON.
  • An ba da ikon ginawa ta amfani da ɗakin karatu na waje TomsFastMath (libtfm), an kunna ta ta amfani da zaɓuɓɓukan "-D ENABLE_EXTERNAL_TOMSFASMATH=ON", "-D TomsFastMath_INCLUDE_DIR="da"-D TomsFastMath_LIBRARY=". An sabunta kwafin ɗakin karatu na TomsFastMath da aka haɗa zuwa sigar 0.13.1.
  • Freshclam mai amfani ya inganta ɗabi'a lokacin da ake sarrafa lokacin ReceiveTimeout, wanda a yanzu yana ƙare daskararrun zazzagewa kawai kuma baya katse jinkirin zazzagewa tare da canja wurin bayanai akan tashoshi mara kyau.
  • Ƙara goyon baya don gina ClamdTop ta amfani da ɗakin karatu na ncursesw idan an rasa la'akari.
  • An gyara lahani:
    • CVE-2022-20803 kyauta ne sau biyu a cikin ma'aunin fayil na OLE2.
    • CVE-2022-20770 Madauki mara iyaka a cikin ma'anar fayil ɗin CHM.
    • CVE-2022-20796 - Hatsari saboda NULL mai nuni a cikin lambar rajistan cache.
    • CVE-2022-20771 - Madauki mara iyaka a cikin fassarar fayil ɗin TIFF.
    • CVE-2022-20785 - Ƙwaƙwalwar ƙwaƙwalwar ajiya a cikin HTML parser da Javascript normalizer.
    • CVE-2022-20792 - Buffer ambaliya a cikin sa hannu na shigar da bayanan bayanai.

source: budenet.ru

Add a comment