Be careful with ClamAV

Started by fabian, January 26, 2018, 05:45:40 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
January 26, 2018, 05:45:40 PM Last Edit: January 26, 2018, 07:58:17 PM by fabian
January 26, 2018, 08:02:06 PM #1
I'm not seeing an update available through the 'Check for Updates'
January 26, 2018, 08:10:48 PM #2
There won't be an update this week. Impossible timing. At work the secondary ClamAV signature fail caused worldwide issues so there was no time do deal with any of the actual updates yet...

http://lists.clamav.net/pipermail/clamav-users/2018-January/005722.html

Also note that ClamAV is not part of our core distribution.

The update hit the ports tree now: https://github.com/opnsense/ports/commit/46134d255

If anyone cares to upgrade *if* they use the os-clamav plugin:

# opnsense-code tools ports
# cd /usr/ports/security/clamav
# make
# make deinstall
# make install


Cheers,
Franco
January 27, 2018, 12:28:34 AM #3
Thanks Franco.

It required gmake to be installed but, once done, it installed.
January 27, 2018, 03:20:39 PM #4
Keep in mind that because the OPNsense Core Team has intelligently put security first by incorporating ASLR and SafeStack from HardenedBSD that attackers will likely have an extremely difficult time exploiting these vulnerabilities. Patching is still important (I'd say critical), but HardenedBSD's enhancements drive up the economic cost for attackers and help prevent successful exploitation.
January 27, 2018, 03:48:31 PM #5
@lattera: sure but DoS is still an issue...
Print
Go Up Pages1
User actions