--------------------------------------------------------------------------- Debian Volatile Update Announcement VUA 49-1 http://volatile.debian.org debian-volatile@lists.debian.org Stephen Gran September 5th, 2008 --------------------------------------------------------------------------- Package : clamav Version : 0.94-1~volatile1 Importance : low CVE IDs : - Upstream published version 0.94, which introduced a number of ABI changes. Though the changes are not strictly required for operation, users of the previous version in volatile might get warnings. For this reason, an updated clamav package is available in etch/volatile as version 0.94-1~volatile1. You need to upgrade with dist-upgrade to this version, as there was again an ABI bump. The new version contains these enhancements: - Logical Signatures: The logical signature technology uses operators such as AND, OR and NOT to allow the combination of more than one signature into one entry in the signature database resulting in more detailed and flexible pattern matching. - Anti-phishing Technology: Users can now change the priority and reporting of ClamAV's heuristic anti-phishing scanner within the detection engine process. They can choose whether, when scanning a supicious file, ClamAV should stop scanning and report the phish, or continue to scan in case the file contains other malware (clamd: HeuristicScanPrecedence, clamscan: --heuristic-scan-precedence) - Disassembly Engine: The initial version of the disassembly engine improves ClamAV's detection abilities. - PUA Detection: Users can now decide which PUA signatures should be loaded (clamd: ExcludePUA, IncludePUA; clamscan: --exclude-pua, --include-pua) - Data Loss Prevention (DLP): This version includes a new module that, when enabled, scans data for the inclusion of US formated Social Security Numbers and credit card numbers (clamd: StructuredDataDetection, clamscan: --detect-structured; additional fine-tuning options are available) - IPv6 Support: Freshclam now supports IPv6 - Improved Scanning of Scripts: The normalization of scripts now covers JavaScript - Improved QA and Unit Testing: The improved QA process now includes API testing and new library of test files in various formats that are tested on a wide variety of systems (try running 'make check' in the source directory) If you use clamav, we recommend you upgrade to this version. Upgrade Instructions -------------------- You can get the updated packages at http://volatile.debian.org/debian-volatile/pool/volatile/main/c/clamav and install them with dpkg, or add deb http://volatile.debian.org/debian-volatile etch/volatile main deb-src http://volatile.debian.org/debian-volatile etch/volatile main to your /etc/apt/sources.list. You can also use any of our mirrors. See http://www.debian.org/volatile/volatile-mirrors for the full list of mirrors. The archive signing keys can be downloaded from http://volatile.debian.org/ziyi-etch.asc and additionaly was included in the stable point release r1 in Debian Etch. For further information about debian-volatile, please refer to http://www.debian.org/volatile/. If there are any issues, please don't hesitate to get in touch with the debian-volatile team. -- http://home.arcor.de/andreas-barth/
Attachment:
signature.asc
Description: Digital signature