Pulogalamu ya ProHoster > Blog > nkhani zapaintaneti > Cisco yatulutsa phukusi laulere la antivayirasi ClamAV 0.105

Cisco yatulutsa phukusi laulere la antivayirasi ClamAV 0.105

Cisco yalengeza kutulutsidwa kwatsopano kwa pulogalamu yake yaulere ya antivayirasi, ClamAV 0.105.0, komanso kufalitsa zowongolera za ClamAV 0.104.3 ndi 0.103.6 zomwe zimakonza zofooka ndi nsikidzi. Tikumbukire kuti ntchitoyi idapita m'manja mwa Cisco ku 2013 atagula Sourcefire, kampani yomwe ikupanga ClamAV ndi Snort. Khodi ya polojekitiyi imagawidwa pansi pa layisensi ya GPLv2.

Kusintha kwakukulu mu ClamAV 0.105:

  • Wophatikiza wa chilankhulo cha dzimbiri akuphatikizidwa pazodalira zomwe zimafunikira. Kumanga kumafuna osachepera Rust 1.56. Ma library ofunikira ku Rust akuphatikizidwa mu phukusi lalikulu la ClamAV.
  • Khodi yokwezera kusinthidwa kwa database (CDIFF) yalembedwanso ku Rust. Kukhazikitsidwa kwatsopano kwapangitsa kuti zitheke kufulumizitsa kwambiri kugwiritsa ntchito zosintha zomwe zimachotsa masiginecha ambiri kuchokera ku database. Iyi ndi gawo loyamba kulembedwanso mu Rust.
  • Miyezo yokhazikika yawonjezeka:
    • MaxScanKukula: 100M> 400M
    • MaxFileKukula: 25M> 100M
    • StreamMaxLength: 25M> 100M
    • PCREMaxFayiloKukula: 25M> 100M
    • MaxEmbeddedPE: 10M> 40M
    • MaxHTMLNormalize: 10M> 40M
    • MaxScriptNormalize: 5M> 20M
    • MaxHTMLNoTags: 2M> 8M
    • Kukula kwa mzere wapamwamba mu freshclam.conf ndi mafayilo osintha a clamd.conf awonjezedwa kuchokera ku zilembo za 512 kufika ku 1024 (pamene mukulongosola zizindikiro zofikira, chizindikiro cha DatabaseMirror chikhoza kupitirira 512 byte).
  • Kuti muzindikire zithunzi zomwe zimagwiritsidwa ntchito pofalitsa zachinyengo kapena pulogalamu yaumbanda, chithandizo chakhazikitsidwa pamtundu watsopano wa siginecha zomveka zomwe zimagwiritsa ntchito njira yosamveka bwino ya hashing, yomwe imalola kuzindikira zinthu zofananira ndi kuthekera kwina. Kuti mupange chithunzi chosamveka bwino, mutha kugwiritsa ntchito lamulo "sigtool -fuzzy-img".
  • ClamScan ndi ClamDScan ali ndi luso lojambulira kukumbukira. Izi zasamutsidwa kuchokera pa phukusi la ClamWin ndipo ndizokhazikika papulatifomu ya Windows. Onjezani "--memory", "--kill" ndi "--unload" zosankha ku ClamScan ndi ClamDScan papulatifomu ya Windows.
  • Zida zosinthidwa za nthawi yogwiritsira ntchito bytecode kutengera LLVM. Kuti muwonjezere magwiridwe antchito poyerekezera ndi womasulira wa bytecode, njira yophatikizira ya JIT yaperekedwa. Thandizo lamitundu yakale ya LLVM yathetsedwa; Mabaibulo a LLVM 8 mpaka 12 tsopano atha kugwiritsidwa ntchito.
  • Mapangidwe a GenerateMetadataJson awonjezedwa ku Clamd, yomwe ili yofanana ndi "--gen-json" mu clamscan ndipo imapangitsa kuti metadata yokhudzana ndi kusakatula ilembedwe ku fayilo ya metadata.json mumtundu wa JSON.
  • Ndizotheka kumanga pogwiritsa ntchito laibulale yakunja ya TomsFastMath (libtfm), yothandizidwa pogwiritsa ntchito zosankha "-D ENABLE_EXTERNAL_TOMSFASTMATH=ON", "-D TomsFastMath_INCLUDE_DIR= " ndi "-D TomsFastMath_LIBRARY= " Kope lophatikizidwa la library ya TomsFastMath yasinthidwa kukhala mtundu 0.13.1.
  • Pulogalamu ya Freshclam yachita bwino pogwira ReceiveTimeout timeout, yomwe tsopano imathetsa kutsitsa koyimitsidwa ndipo sikusokoneza kutsitsa kwapang'onopang'ono ndi data yomwe imasamutsidwa panjira zosalumikizana bwino.
  • Thandizo lowonjezera pomanga ClamdTop pogwiritsa ntchito laibulale ya ncursesw ngati ncurses ikusowa.
  • Zowopsa zakhazikika:
    • CVE-2022-20803 ndi yaulere pawiri mu OLE2 file parser.
    • CVE-2022-20770 Lupu lopanda malire muzophatikiza mafayilo a CHM.
    • CVE-2022-20796 - Kuwonongeka chifukwa cha NULL pointer dereference mu cache check code.
    • CVE-2022-20771 - Kuzungulira kopanda malire mu fayilo ya TIFF.
    • CVE-2022-20785 - Memory kutayikira mu HTML parser ndi Javascript normalizer.
    • CVE-2022-20792 - Buffer kusefukira mu siginecha database yotsitsa gawo.

Source: opennet.ru

Kuwonjezera ndemanga