---------------------------------------------------------------------------
Debian Volatile Update Announcement VUA 49-1 http://volatile.debian.org
debian-volatile@lists.debian.org Stephen Gran
September 5th, 2008
---------------------------------------------------------------------------
Package : clamav
Version : 0.94-1~volatile1
Importance : low
CVE IDs : -
Upstream published version 0.94, which introduced a number of ABI changes.
Though the changes are not strictly required for operation, users of the
previous version in volatile might get warnings. For this reason, an
updated clamav package is available in etch/volatile as version
0.94-1~volatile1.
You need to upgrade with dist-upgrade to this version, as there was
again an ABI bump.
The new version contains these enhancements:
- Logical Signatures: The logical signature technology uses operators
such as AND, OR and NOT to allow the combination of more than one
signature into one entry in the signature database resulting in
more detailed and flexible pattern matching.
- Anti-phishing Technology: Users can now change the priority and reporting
of ClamAV's heuristic anti-phishing scanner within the detection engine
process. They can choose whether, when scanning a supicious file, ClamAV
should stop scanning and report the phish, or continue to scan in case the
file contains other malware (clamd: HeuristicScanPrecedence,
clamscan: --heuristic-scan-precedence)
- Disassembly Engine: The initial version of the disassembly engine improves
ClamAV's detection abilities.
- PUA Detection: Users can now decide which PUA signatures should be loaded
(clamd: ExcludePUA, IncludePUA; clamscan: --exclude-pua, --include-pua)
- Data Loss Prevention (DLP): This version includes a new module that, when
enabled, scans data for the inclusion of US formated Social Security
Numbers and credit card numbers (clamd: StructuredDataDetection,
clamscan: --detect-structured; additional fine-tuning options are available)
- IPv6 Support: Freshclam now supports IPv6
- Improved Scanning of Scripts: The normalization of scripts now covers
JavaScript
- Improved QA and Unit Testing: The improved QA process now includes
API testing and new library of test files in various formats that are
tested on a wide variety of systems (try running 'make check' in the source
directory)
If you use clamav, we recommend you upgrade to this version.
Upgrade Instructions
--------------------
You can get the updated packages at
http://volatile.debian.org/debian-volatile/pool/volatile/main/c/clamav
and install them with dpkg, or add
deb http://volatile.debian.org/debian-volatile etch/volatile main
deb-src http://volatile.debian.org/debian-volatile etch/volatile main
to your /etc/apt/sources.list. You can also use any of our mirrors. See
http://www.debian.org/volatile/volatile-mirrors for the full list of
mirrors. The archive signing keys can be downloaded from
http://volatile.debian.org/ziyi-etch.asc and additionaly was included in
the stable point release r1 in Debian Etch.
For further information about debian-volatile, please refer to
http://www.debian.org/volatile/.
If there are any issues, please don't hesitate to get in touch with the
debian-volatile team.
--
http://home.arcor.de/andreas-barth/
Attachment:
signature.asc
Description: Digital signature