I-Cisco yethule ukukhishwa okusha okukhulu kwephakheji yamahhala ye-antivirus i-ClamAV 1.0.0. Igatsha elisha liphawuleka ngokudlulela kunombolo yokukhululwa ye-"Major.Minor.Patch" evamile (esikhundleni se-0.Version.Patch). Ushintsho olubalulekile lwenguqulo luphinde lube ngenxa yezinguquko kulabhulali ye-libclamav eziphula ukusebenzisana kwe-ABI ngokususa i-namespace ye-CLAMAV_PUBLIC, ukushintsha uhlobo lwama-agumenti kumsebenzi we-cl_strerror, kanye nokufaka izimpawu zolimi lwe-Rust endaweni yamagama. Iphrojekthi yadlulela ezandleni zeCisco ngo-2013 ngemuva kokuthengwa kwe-Sourcefire, ethuthukisa i-ClamAV ne-Snort. Ikhodi yephrojekthi isatshalaliswa ngaphansi kwelayisensi ye-GPLv2.
Igatsha le-1.0.0 lihlukaniswe njenge-Long Term Support (LTS) futhi ligcinwa iminyaka emithathu. Ukukhishwa kwe-ClamAV 1.0.0 kuzongena esikhundleni segatsha le-LTS langaphambilini le-ClamAV 0.103, lapho kuzokhishwa khona izibuyekezo ezinokulungiswa kobungozi nezinkinga ezibucayi kuze kube uSepthemba 2023. Izibuyekezo zamagatsha angewona ama-LTS zishicilelwa okungenani izinyanga ezi-4 ngemva kokukhishwa kokuqala kwegatsha elilandelayo. Amandla okulanda idatha yesiginesha yamagatsha angewona ama-LTS nawo ahlinzekwa okungenani ezinye izinyanga ezi-4 ngemva kokukhishwa kwegatsha elilandelayo.
Ukuthuthukiswa okubalulekile ku-ClamAV 1.0:
- Usekelo olungeziwe lokususa ukubethela kwamafayela e-XLS asuselwa ku-OLE2 okufundwayo kuphela abethelwe ngephasiwedi ezenzakalelayo.
- Ikhodi yabhalwa kabusha ngokusetshenziswa kwemodi yokufanisa konke, lapho konke okufanayo kufayela kunqunywa, i.e. ukuskena kuyaqhubeka ngemva komdlalo wokuqala. Ikhodi entsha imakwe njengethembekile futhi kulula ukuyigcina. Ukuqaliswa okusha kuphinde kuqede uchungechunge lwamaphutha omqondo avelayo uma kuhlolwa ngokumelene namasiginesha kumodi yokufanisa konke. Kwengezwe izivivinyo ukuze kubhekwe ukufaneleka kokuziphatha kwemidlalo yonke.
- Ucingo lwe-callback clcb_file_inspection() yengezwe ku-API ukuze kuxhunywe izibambi ezihlola okuqukethwe kwamafayela, okuhlanganisa nalawo akhishwe kungobo yomlando.
- Umsebenzi we-cl_cvdunpack() wengezwe ku-API ukuze kukhishwe izingobo zomlando zesiginesha ngefomethi ye-CVD.
- Imibhalo yezithombe zedokhi yokwakha ene-ClamAV ihanjiswe endaweni ehlukile yekhosombe le-clamav-docker. Isithombe sedokhu sihlanganisa amafayela anhlokweni welabhulali ye-C.
- Kungezwe amasheke ukuze kukhawulwe izinga lokuphindaphinda lapho kukhishwa izinto kumadokhumenti e-PDF.
- Umkhawulo yenani lememori enikeziwe lapho kusetshenzwa idatha yokufaka engathenjwa unyusiwe, futhi isexwayiso sinyusiwe lapho lo mkhawulo weqiwa.
- Kusheshise ngokuphawulekayo ukuhlanganiswa kokuhlolwa kweyunithi kumtapo wezincwadi we-libclamav-Rust. Amamojula we-ClamAV abhalwe nge-Rust manje akhiwe kuhla lwemibhalo olwabiwe ne-ClamAV.
- Imikhawulo ixegisiwe lapho kuhlolwa amarekhodi agqagqene kumafayela e-ZIP, okwenze kwaba nokwenzeka ukususa izixwayiso ezingamanga lapho kucutshungulwa izingobo zomlando ze-JAR ezilungiswe kancane, kodwa hhayi ezinonya.
- Isakhiwo sichaza ubuncane nezinguqulo eziphezulu ezisekelwayo ze-LLVM. Ukuzama ukwakha ngenguqulo endala kakhulu noma entsha kakhulu manje kuzoholela esixwayiso sephutha mayelana nezinkinga zokusebenzisana.
- Yakha ngohlu lwakho lwe-RPATH (uhlu lwezinkomba okulayishwa kulo imitapo yolwazi eyabiwe) luvunyelwe, okuvumela ukuhambisa amafayela asebenzisekayo uwayise kwenye indawo ngemva kokwakha endaweni yokuthuthukiswa.
Source: opennet.ru