3b789ae6a4
Updated from libmspack-0.7.1alpha to libmspack-0.8alpha.
7 years ago
7b563ca798
Enabling configure option --with-system-libmspack that will allow use of libmspack installations in /usr or /usr/local in favor of the version provided by ClamAV.
7 years ago
4010925608
Re-applying libmspack adjustments to extract and scan files from archives that are non-standard and may appear to be corrupted or may in fact be corrupted. Differences from previous implementation: Fewer debug log messages. No normalization of filenames found in CAB archives. Implemented new param that enabled the best-effort attempt to extract possibly malformed archives. Used set_param() to enabled the FIXMSZIP option where it was previously hardcoded. Opted to provide the -Wno-unused-parameter CFLAG to the compiler in place of explicitely indicating unused parameters in each function. Omitted changes to mszipd.c and also omitted quantum decompression (qtmd.c) infinite loop protection because it appears to have been fixed in the newer libmspack.
7 years ago
d3f2158617
Win32 build system updates to account for relocating libmspack and updating to libmspack 0.7.1alpha (had to re-add mspack.def)
7 years ago
3e6a202642
Replaced modified libmspack-0.5alpha with libmspack-0.7alpha (vanilla).
7 years ago
b563e84083
Moved libmspack-0.5alpha from libclamav to libclammspack, and restructured the build so that there should be no need to modify the libmspack build files in the future (i.e. libmspack autoconf and automake files aren't actually used).
7 years ago
78606d72ed
Correction to logic enabling/disabling heuristic alerts.
7 years ago
20e3cfc08a
bb12170: Added pointer arithmetic guards to PE MEW unpacking code.
7 years ago
a8370a7a1e
Adjusted log verbosity for the OnAccessExtraScanning message to only print if LogVerbose is enabled.
7 years ago
531ba0a361
Adding FUNC_LEVEL_0100_2 to bytecode api following recent 0.100.2 release.
7 years ago
3d9620db54
Disabled OnAccessExtraScanning and provided a warning when starting clamd if it's enabled as well as a note in the sample clamd.conf.
7 years ago
6a591aa48e
Prevent shared libraries from being loaded by libclam when statically linking unrar libraries ( #148 )
7 years ago
cca445ee87
Correction to enabling dev-performance bug introduced with the scan options change, and enablig dev-performance on Mac.
7 years ago
56bb195e07
bb12102: adding CL_TYPE_LNK for Windows Shortcut Files.
7 years ago
8cf9b527b0
Updated win32 3rdparty libxml2 to version 2.9.8.
7 years ago
48bbb12a79
Updated win32 3rdparty pcre library to pcre2 version 10.31.
7 years ago
d77b8ae0fb
Fixes to a handful of bugs identified during regression testing of PDF and UnRAR changes.
...
Fix for minor memory leak in fmap_dump_to_file().
Fix to PDF object stream logic, accounting for a realloc() issue when the only pdf object stream fails to parse, and for when pdf objects in a stream appear to extend further than the size of the stream.
Fix for memory leak cleaning up PDF object stream buffer in error condition.
Fix to bug in pdf_decodestream wherein objects were found in an object stream, but the object stream could later be free'd if max scansize was exceeded, resulting in a NULL dereference.
General cleanup of pdf_decodestream/pdf_decodestream_internal exit code logic.
7 years ago
24f225c21f
Modification to unrar codebase allowing skipping of files within Solid archives when parsing in extraction mode, enabling us to skip encrypted files while still scanning metadata and potentially scanning unencrypted files later in the archive.
7 years ago
9739293e54
Removing unRAR SFX Check from scanners.c. Flawed feature was skipping scans of files in RAR archives that had the same CRC in the RAR file entry header as a previously scanned entry. Archives CRC's cannot be trusted. Removing the SFX Check eliminated false negatives in regression testing.
7 years ago
5a3c50ca84
Changing the license for the complete-re-written unrar_iface code from LGPL to the BSD 3-Clause license, updating the copyright years, and adding Micah Snyder as an author.
7 years ago
07e80eb8ea
Modification to unrar codebase to enable keeping broken (bad CRC) files so that they can be scanned.
7 years ago
d39cb6581f
Updating libclamunrar from legacy C implementation to modern unrar 5.6.5. API changes and supporting changes included to pass the filepath of the scanned file into libclamav through the cli_ctx structure, required by the unrar library to open archives. The filename argument may be optional for the scandesc scanning variant, but libclamav will make a best effort to identify the filename from the file descriptor if it was not provided. In addition, included the ability to prefix temp file and directory names with file basenames.
7 years ago
9ead69043b
messageAddArguments: accept argument values with unbalanced quotes
...
If a quoted mime argument is unterminated, use all remaining line characters.
7 years ago
dd8a6b10b2
Freshclam improvements. Some simplification and cleanup of mirror management functions. Reduced mirror blacklist timeouts. Added ignore time-remaining output to --list-mirrors option. Made freshclam lenient when the database version is 1 behind what was advertised by DNS. Database updates will still fail if the hosted version is more than 1 version out of date.
7 years ago
f61e92da8f
Changing numerous scan options' names, primarily those of heuristic signatature alert options. Original options (command line and clamd) will remain as deprecated & undocumented for a couple releases. Added 2 extra scan options to allow users to differentiate between alerting on encrypted archives vs encrypted documents (bb11911).
7 years ago
9dcc0f7a74
Integrated new PE file unpacking capabilities for versions of Aspack up to 2.42, courtesy of Emmanuel Tacheau.
7 years ago
ef8f17542c
update freshclam to match exit codes defined in freshclam.1
7 years ago
d7979d4ff7
Restructured scan options flags from a single bitflag field to a structure containing multiple bitflag fields. This also required adding a new function to the bytecode API to get scan options a la carte, and modifying the existing function to hand back scan options in the old/deprecated uint32_t bitflag format. Re-generated bytecode iface header files.
...
Updated libclamav documentation detailing new scan options structure.
Renamed references to 'algorithmic' detection to 'heuristic' detection. Renaming references to 'properties' to 'collect metadata'.
Renamed references to 'scan all' to 'scan all match'.
Renamed a couple of 'Hueristic.*' signature names as 'Heuristics.*' signatures (plural) to match majority of other heuristics.
7 years ago
89d5207b31
Added new pdf object stream parsing capability.
7 years ago
e551468a03
Initializing virname to NULL in cases where it was uninitialized.
7 years ago
2459b65198
Replaced vdproj Installer Project setup build files with Inno Setup build file. Updated win32 README accordingly.
7 years ago
3a64e676b1
autojunk'd
7 years ago
5450d4579b
Make milter to respect $THREAD_LIBS instead of force -lpthread
7 years ago
5bc6fdb8b1
OnAccessExtraScanning: log in verbose mode
...
Before this patch, if OnAccessExtraScanning was active every
file/directory access would have generate a log line.
7 years ago
65ce67f911
0.101.0 - Removing call to EVP_cleanup since cleanup is now handled by auto-deinit
7 years ago
1f8557443e
autojunk'd
7 years ago
dfd6feb862
0.101 - pr87 - normalizing/correcting json m4 macro logic based on curl macro logic patch provided by Thomas Petazzoni
7 years ago
65ee1b8ec2
m4/reorganization/libs/curl.m4: fix curl-config detection logic
...
The current logic in curl.m4 doesn't behave properly when
--without-libcurl is passed to the ./configure script.
Indeed, in this case what happens is that:
(1) Since --without-libcurl is passed, LIBCURL_HOME is set to nothing
(2) find_curl is set to "no"
(3) Due to find_curl being "no", LIBCURL_HOME is not set to
/usr/local and remains empty
(4) We test if $LIBCURL_HOME/bin/curl_config exists, which is
equivalent to testing if /bin/curl-config exists. So curl.m4 is
looking at /bin/curl-config, which is irrelevant in a
cross-compilation context: it is not because the build machine
has libcurl installed that it is available for the target.
Due to this mistake, it sets have_curl="yes"
Due to this, the ./configure script assumes it can build the
clamsubmit program, which fails at build time because curl/curl.h
doesn't exist.
To fix this, this commit rewrites the curl-config detection logic with
a simpler loop. If find_curl=yes, it means we have to find libcurl
ourselves, so we iterate over /usr/local and /usr, and check if a
bin/curl-config binary is available there. If so, we use this path as
LIBCURL_HOME and set have_curl="yes".
This preserves the existing behavior, while fixing the situation where
--without-libcurl is passed, but /bin/curl-config exists.
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
7 years ago
a8c77430fd
Removed cfgfile, line variables from optadditem()
...
cfgfile and line variables make no sense as the function optadditem() exists to allow library users to set options programmatically without a config file.
7 years ago
33f14a688d
Include filename in config file line reports
7 years ago
7c3bba4746
bb12155: wrapping AID_ADDRCONFIG flag with #ifdef so enable builds on older systems.
7 years ago
4db33d075e
Adjusting HWP(v3) offset checks for 3 instances where it is legitimate for the offset to land at the exact end of the file.
7 years ago
159cf09561
autojunk'd
7 years ago
5a8bf449ca
bb12118: Increased recommended pcre2 version to 10.30 to avoid possible stack overflows. Adding warning for pcre users who should switch to pcre2. Updating warnings for pcre, pcre2 versions affected by 1 or more CVE's.
7 years ago
f67a9b7508
bb12118: Lowering the default PCRERecMatchLimit from 5000 to 2000, to minimize risk of segfault due to bug in older versions of libpcre/libpcrev2.
7 years ago
27aa41e0a0
autojunk'd
7 years ago
1e34093976
bb12091 - 0.101.x - adding pkg-config macro to fix conditional check failures for specificied configure options
7 years ago
6103512bcc
[PATCH] Remove AllowSupplementaryGroups
...
I got rid of AllowSupplementaryGroups in commit 2ea4230df2
7 years ago
aec4d6e4a2
Adding 0.100.1 release notes.
7 years ago
f842e965fe
Replacing strntol with strntoul to ensure proper (un)signedness when parsing numbers from PDFs.
7 years ago
Micah Snyder