Cisco ya gabatar da wani babban sabon sakin fakitin riga-kafi kyauta ClamAV 1.0.0. Sabon reshe sananne ne don sauyawa zuwa lambar sakin "Major.Minor.Patch" na gargajiya (maimakon 0.Version.Patch). Muhimmiyar canjin sigar ita ma saboda canje-canje ga ɗakin karatu na libclamav wanda ke karya daidaituwar ABI ta hanyar cire CLAMAV_PUBLIC sunaye, canza nau'in mahawara a cikin aikin cl_strerror, gami da alamomin harshen Rust a cikin sunan. Aikin ya shiga hannun Cisco a cikin 2013 bayan siyan Sourcefire, wanda ke haɓaka ClamAV da Snort. Ana rarraba lambar aikin a ƙarƙashin lasisin GPLv2.
An rarraba reshen 1.0.0 azaman Taimakon Dogon Lokaci (LTS) kuma ana kiyaye shi har tsawon shekaru uku. Sakin ClamAV 1.0.0 zai maye gurbin reshe na LTS na baya na ClamAV 0.103, wanda za a sake sabuntawa tare da gyare-gyare don raunin rauni da batutuwa masu mahimmanci har zuwa Satumba 2023. Ana buga sabuntawa don rassan da ba na LTS na yau da kullun ba aƙalla watanni 4 bayan sakin farko na reshe na gaba. Hakanan ana ba da damar saukar da bayanan sa hannu don rassan da ba na LTS ba har na tsawon wasu watanni 4 bayan fitowar reshe na gaba.
Babban haɓakawa a cikin ClamAV 1.0:
- Ƙara goyon baya don ɓata fayilolin XLS na tushen OLE2 kawai rufaffen rufaffiyar tare da tsoho kalmar sirri.
- An sake rubuta lambar tare da aiwatar da duk yanayin daidaitawa, wanda aka ƙayyade duk matches a cikin fayil ɗin, watau. Ana ci gaba da dubawa bayan wasan farko. Sabuwar lambar ana yiwa alama alama a matsayin mafi aminci kuma mafi sauƙin kiyayewa. Sabuwar aiwatarwa kuma tana kawar da jerin lahani na ra'ayi waɗanda ke bayyana lokacin duba sa hannun hannu a cikin yanayin wasan gabaɗaya. Ƙaddara gwaje-gwaje don bincika daidaiton duk halayen wasan.
- An ƙara kiran sake kiran clcb_file_inspection() zuwa API don haɗa masu sarrafa abubuwan da ke bincika abubuwan da ke cikin fayiloli, gami da waɗanda aka ciro daga ma'ajiyar bayanai.
- An ƙara aikin cl_cvdunpack() zuwa API don buɗe kayan tarihin sa hannu a tsarin CVD.
- Rubutun don gina hotunan docker tare da ClamAV an motsa su zuwa wurin ajiyar clamav-docker daban. Hoton docker ya ƙunshi fayilolin kai don ɗakin karatu na C.
- An ƙara bincike don iyakance matakin maimaitawa lokacin da ake ciro abubuwa daga takaddun PDF.
- An ƙaru iyakar adadin ƙwaƙwalwar ajiya da aka ware lokacin sarrafa bayanan shigar da ba amintacce ba, kuma an ƙara faɗakarwa lokacin da wannan iyaka ya wuce.
- Mahimmanci haɓaka taron gwajin naúrar don ɗakin karatu na libclamav-Rust. Abubuwan ClamAV da aka rubuta cikin Rust yanzu an gina su a cikin kundin adireshi da aka raba tare da ClamAV.
- An sassauta ƙuntatawa lokacin duba bayanan da ke tattare da juna a cikin fayilolin ZIP, wanda ya ba da damar kawar da faɗakarwar ƙarya lokacin da aka gyara ɗan ƙaramin aiki, amma ba na mugunta ba, ma'ajiyar JAR.
- Ginin yana bayyana mafi ƙanƙanta da matsakaicin nau'ikan tallafi na LLVM. Ƙoƙarin ginawa tare da tsoho ko sabon sigar yanzu zai haifar da gargaɗin kuskure game da batutuwan dacewa.
- Gina tare da jerin sunayen RPATH na kansa (jerin kundayen adireshi waɗanda aka ɗora da ɗakunan karatu) an ba da izini, wanda ke ba da damar motsa fayilolin aiwatarwa zuwa wani wuri bayan gini a cikin yanayin haɓakawa.
source: budenet.ru