Ukukhutshwa kwephakheji ye-antivirus yasimahla iClamAV 0.103.3 yenziwe, ephakamisa olu tshintsho lulandelayo:
- Ifayile ye-mirrors.dat iye yabizwa ngokuba yi-freshclam.dat ngenxa yokuba i-ClamAV iguqulelwe ukusebenzisa i-content delivery network (CDN) endaweni ye-mirror network kwaye ifayile yedat ayisenalwazi lwesipili. I-Freshclam.dat igcina i-UUID esetyenziswa kwi-ClamAV User-Agent. Isidingo sokuphinda sithiywe ngenxa yokuba ezinye izikripthi zabasebenzisi zicinyiwe mirror.dat kwimeko yokusilela kweFreshClam, kodwa ngoku le fayile iqulethe isazisi, ilahleko engamkelekanga.
- Iingxaki ngomgangatho ophantsi wokuskena ifayile xa ukhetho lwe-ENGINE_OPTIONS_FORCE_TO_DISK luvuliwe zisonjululwe.
- Ukuwa okulungisiweyo kwenkqubo yeClamDScan xa usebenzisa "--fdpass --multiscan" iinketho kunye noseto lwe-ExcludePath kwifayile yoqwalaselo ye-clamd.
- Kulungiswe umba ngokucwangcisa ingcambu njengomnini wefayile ye mirrors.dat endaweni yomsebenzisi ochazwe kwiSicwangciso seDathaMnini-lwazi xa usebenzisa iclamav njengengcambu.
- Ulungiselelo lwe-HTTPUserAgent lwenziwe ukuba lungasebenzi xa i-DatabaseMirror isebenzisa i-clamav.net ukunqanda ukubhloka ngempazamo.
- Ukuvumela ukubonwa kweenzame zokusebenzisa ubuthathaka CVE-2010-1205 (Heuristics.PNG.CVE-2010-1205), kufuneka ngoku uvule ngokucacileyo iparamitha yeClamScan "-alert-broken-media" okanye ulungiselelo lwe "AlertBrokenMedia", ukusukela oko. ukuba sesichengeni kudala kwalungiswa kuyo yonke indawo.
- I-ClamSubmit esisigxina yokuwa emva kokuba i-Cloudflare itshintshe i-Cookie "__cfduid".
umthombo: opennet.ru