On 12/12/06, <b class="gmail_sendername">Denis Beauchemin</b> <<a href="mailto:Denis.Beauchemin@usherbrooke.ca">Denis.Beauchemin@usherbrooke.ca</a>> wrote:<div><span class="gmail_quote"></span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
Denis Beauchemin a écrit :<br>> Release Name: 0.88.7<br>><br>> Hello all,<br>><br>> Our security guy pointed the following advisory for Clam 0.88.6 and<br>> prior versions: <a href="http://www.frsirt.com/english/advisories/2006/4948">
http://www.frsirt.com/english/advisories/2006/4948</a><br>> Clam AntiVirus MIME Attachments Handling Remote Denial of Service<br>> Vulnerability<br>><br>> This comes from Clam 0.88.7:<br>> This version improves scanning of mail and tar files.
<br>><br>> Changes:<br>> Mon Dec 11 02:47:03 CET 2006<br>> ----------------------------<br>> * Bugfixes:<br>> - libclamav/message.c: handle consecutive errors in base64 decoding<br>> - libclamav/mbox.c: honour recursion limit when scanning email
<br>> messages<br>> - clamscan: new option --mail-max-recursion<br>> - clamd/clamav-milter: new option MailMaxRecursion<br>> - libclamav/untar.c: honour archive limits<br>><br>> Denis<br>><br>
Just wanted to let you know that there seems to be a problem with the<br>new ClamAV and ZIP files: I get a lot of:<br>Dec 12 12:37:52 <a href="http://132.210.244.93">132.210.244.93</a> MailScanner[31880]:<br>ClamAVModule::INFECTED::
Oversized.Zip::<br>./kBCHaqdS004063/BIOMETISS_BIOREACTEUR_07-12-2006.zip<br><br>I had none yesterday and I have 20 since upgrading Clam this morning.<br><br>Denis<br><br>--<br> _<br> °v° Denis Beauchemin, analyste<br>
/(_)\ Université de Sherbrooke, S.T.I.<br> ^ ^ T: 819.821.8000x62252 F: 819.821.8045<br><br><br><br><br>--<br>MailScanner mailing list<br><a href="mailto:mailscanner@lists.mailscanner.info">mailscanner@lists.mailscanner.info
</a><br><a href="http://lists.mailscanner.info/mailman/listinfo/mailscanner">http://lists.mailscanner.info/mailman/listinfo/mailscanner</a><br><br>Before posting, read <a href="http://wiki.mailscanner.info/posting">http://wiki.mailscanner.info/posting
</a><br><br>Support MailScanner development - buy the book off the website!<br><br><br><br></blockquote></div><br>If anyone is still seeing this problem, we found that it's fixed by force reinstalling the clamav perl module. According to the clamav developers:
<br><br><blockquote style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;" class="gmail_quote"><div style="margin-left: 40px;"><font color="black" face="Verdana,Arial,Helvetica" size="2">
<font color="black" face="Verdana,Arial,Helvetica" size="2">Due to the changes in libclamav, 0.88.7 is not binary compatible with previous <br>versions. To solve the issues you have to recompile all the software which is
<br>linked against libclamav. <br> </font></font></div></blockquote><br>-- <br>Regards,<br>Sarah Trayser<br><br>