I-Cisco iveze ukukhishwa okusha okukhulu kwe-antivirus suite yayo yamahhala, i-ClamAV 0.105.0, yaphinde yashicilela nokukhishwa kokulungisa kwe-ClamAV 0.104.3 kanye ne-0.103.6 elungisa ubungozi neziphazamisi. Masikhumbule ukuthi iphrojekthi yadlulela ezandleni zeCisco ngo-2013 ngemuva kokuthengwa kwe-Sourcefire, inkampani eyakha i-ClamAV ne-Snort. Ikhodi yephrojekthi isatshalaliswa ngaphansi kwelayisensi ye-GPLv2.
Ukuthuthukiswa okubalulekile ku-ClamAV 0.105:
- Umhlanganisi wolimi lwe-Rust ufakiwe kokuncika okudingekile ekwakheni. I-Build idinga okungenani i-Rust 1.56. Imitapo yolwazi edingekayo eRust ifakiwe kuphakheji eyinhloko ye-ClamAV.
- Ikhodi yokubuyekeza okungeziwe kwesizindalwazi (CDIFF) ibhalwe kabusha ku-Rust. Ukuqaliswa okusha kwenze kwaba nokwenzeka ukusheshisa kakhulu ukusetshenziswa kwezibuyekezo ezisusa inani elikhulu lamasiginesha kusizindalwazi. Lena imojula yokuqala ebhalwe kabusha ngoRust.
- Amanani omkhawulo azenzakalelayo anyusiwe:
- I-MaxScanUsayizi: 100M > 400M
- MaxFileUsayizi: 25M > 100M
- Ubude bokusakazaUbude: 25M > 100M
- I-PCREMaxFileUsayizi: 25M > 100M
- I-MaxEmbeddedPE: 10M > 40M
- I-MaxHTMLNormaise: 10M > 40M
- I-MaxScriptNormaze: 5M > 20M
- I-MaxHTMLNoTags: 2M > 8M
- Umkhawulo kasayizi womugqa ku-freshclam.conf kanye namafayela okumisa e-clamd.conf ukhulisiwe kusukela kuzinhlamvu ezingu-512 kuya kwezingu-1024 (uma kucaciswa amathokheni okufinyelela, ipharamitha ye-DatabaseMirror ingadlula amabhayithi angu-512).
- Ukuze kukhonjwe izithombe ezisetshenziselwa ubugebengu bokweba imininingwane ebucayi noma ukusatshalaliswa kohlelo olungayilungele ikhompuyutha, usekelo lwenziwe ohlotsheni olusha lwamasiginesha anengqondo asebenzisa indlela ye-hashing engacacile, evumela ukuhlonza izinto ezifanayo ngezinga elithile lamathuba. Ukuze wakhe i-hashi engacacile yesithombe, ungasebenzisa umyalo othi βsigtool βfuzzy-imgβ.
- I-ClamScan ne-ClamDScan zinekhono lokuskena inkumbulo eyakhelwe ngaphakathi. Lesi sici sidlulisiwe sisuka kuphakheji ye-ClamWin futhi siqondiswe ku-Windows platform. Kwengezwe izinketho "--memory", "--kill" kanye "--unload" ku-ClamScan kanye ne-ClamDScan kuplathifomu ye-Windows.
- Izingxenye zesikhathi sokusebenza ezibuyekeziwe zokusetshenziswa kwe-bytecode ngokusekelwe ku-LLVM. Ukuze kukhuliswe ukusebenza kokuskena uma kuqhathaniswa nomhumushi ozenzakalelayo we-bytecode, imodi yokuhlanganisa ye-JIT ihlongoziwe. Ukusekelwa kwezinguqulo ezindala ze-LLVM kunqanyuliwe; izinguqulo ze-LLVM 8 kuya ku-12 manje zingasetshenziselwa umsebenzi.
- Isilungiselelo se-GenerateMetadataJson sengezwe ku-Clamd, okulingana nenketho ethi β--gen-jsonβ ku-clamscan futhi ebangela imethadatha emayelana nenqubekelaphambili yokuskena ukuthi ibhalwe kufayela le-metadata.json ngefomethi ye-JSON.
- Kuhlinzekwe ikhono lokwakha kusetshenziswa umtapo wolwazi wangaphandle i-TomsFastMath (libtfm), enikwe amandla kusetshenziswa izinketho "-D ENABLE_EXTERNAL_TOMSFASTMATH=ON", "-D TomsFastMath_INCLUDE_DIR=" kanye "-D TomsFastMath_LIBRARY=". Ikhophi efakiwe yomtapo wolwazi we-TomsFastMath ithuthukiswe yaba yinguqulo engu-0.13.1.
- Insiza ye-Freshclam ithuthukise ukuziphatha lapho uphatha isikhathi sokuvala se-ReceiveTimeout, manje esinqamula ukulanda okufriziwe futhi akuphazamisi ukulanda okusebenzayo okunensayo ngedatha edluliswa ngamashaneli okuxhumana ampofu.
- Usekelo olungeziwe lokwakha i-ClamdTop kusetshenziswa ilabhulali ye-ncursesw uma i-ncurses ingekho.
- Ubungozi bulungisiwe:
- I-CVE-2022-20803 imahhala kabili kumhlahleli wefayela we-OLE2.
- I-CVE-2022-20770 Iluphu engapheli kusihlaluli sefayela le-CHM.
- I-CVE-2022-20796 - Ukuphahlazeka ngenxa yesikhombi esingu-NULL kukhodi yokuhlola inqolobane.
- I-CVE-2022-20771 - Iluphu engapheli kusihlaluli sefayela le-TIFF.
- I-CVE-2022-20785 - Ukuvuza kwenkumbulo kusihlaluli se-HTML kanye ne-Javascript normalizer.
- I-CVE-2022-20792 - Ukuchichima kwe-buffer kumojuli yokulayisha yedathabheyisi yesiginesha.
Source: opennet.ru