ClamAV Vulnerabilities

Report bugs and workarounds

sebastian.savard
Posts: 4
Joined: 29 Jan 2018 13:34

Re: ClamAV Vulnerabilities

Post by sebastian.savard » 29 Jan 2018 15:10

I'm assuming this is an update that we'll have to perform on our own systems, as 3.0.2.6 is the last of version 3. Has any successfully upgraded?

User avatar
shawniverson
Posts: 2592
Joined: 13 Jan 2014 23:30
Location: Rushville, Indiana, USA
Contact:

Re: ClamAV Vulnerabilities

Post by shawniverson » 29 Jan 2018 20:02

eFa uses the clamav from epel, so hopefully it'll get updated soon and all you will need to do is run a yum update.
Version 3.0.2.6 released! Update now to keep your eFa secure!

dwmp
Posts: 40
Joined: 05 Feb 2016 13:42

Re: ClamAV Vulnerabilities

Post by dwmp » 06 Feb 2018 09:32

how can I check if the update is available?

User avatar
pdwalker
Posts: 1087
Joined: 18 Mar 2015 09:16

Re: ClamAV Vulnerabilities

Post by pdwalker » 06 Feb 2018 11:08

from the efa command prompt:

Code: Select all

sudo yum update

dwmp
Posts: 40
Joined: 05 Feb 2016 13:42

Re: ClamAV Vulnerabilities

Post by dwmp » 08 Feb 2018 07:33

Thanks. But is that really only the check for updates? Or will there be updates installed via the command?

User avatar
pdwalker
Posts: 1087
Joined: 18 Mar 2015 09:16

Re: ClamAV Vulnerabilities

Post by pdwalker » 08 Feb 2018 09:56

That command will check for updates, and if there are any, will ask you to confirm before updating. If you say "n", then nothing further will happen.

dwmp
Posts: 40
Joined: 05 Feb 2016 13:42

Re: ClamAV Vulnerabilities

Post by dwmp » 08 Feb 2018 10:48

Alright, thank you!


dwmp
Posts: 40
Joined: 05 Feb 2016 13:42

Re: ClamAV Vulnerabilities

Post by dwmp » 02 Mar 2018 06:23

Somebody an idea why there is still no update?

User avatar
pdwalker
Posts: 1087
Joined: 18 Mar 2015 09:16

Re: ClamAV Vulnerabilities

Post by pdwalker » 05 Mar 2018 03:26

updated

Code: Select all

 clamav                       x86_64               0.99.3-8.el6                      epel                     4.3 M
 clamav-db                    x86_64               0.99.3-8.el6                      epel                     155 M
All good things come to those who wait.

dwmp
Posts: 40
Joined: 05 Feb 2016 13:42

Re: ClamAV Vulnerabilities

Post by dwmp » 05 Mar 2018 07:35

Thanks!
Do I need to reboot the system after clamav-update?

henk
Posts: 171
Joined: 14 Dec 2015 22:16
Location: Netherlands
Contact:

Re: ClamAV Vulnerabilities

Post by henk » 05 Mar 2018 13:41

Run

Code: Select all

freshclam -v
Software version from DNS: 0.99.4
WARNING: Your ClamAV installation is OUTDATED!
WARNING: Local version: 0.99.3 Recommended version: 0.99.4 :whistle:

Sometimes good things come to those who wait a bit longer.... ;)

User avatar
pdwalker
Posts: 1087
Joined: 18 Mar 2015 09:16

Re: ClamAV Vulnerabilities

Post by pdwalker » 05 Mar 2018 16:20

dwmp: no. the necessary services will be restarted.

henk: :lol:

budy
Posts: 74
Joined: 10 Sep 2017 07:33

Re: ClamAV Vulnerabilities

Post by budy » 05 Mar 2018 18:15

Hmmm… my clamav is still on 0.99.2 but yum update won't server a newer one:

Code: Select all

[root@efa yum.repos.d]# yum list clamav
Loaded plugins: fastestmirror, security
Loading mirror speeds from cached hostfile
 * EFA: dl.efa-project.org
 * base: ftp.rz.uni-frankfurt.de
 * epel: mirror.de.leaseweb.net
 * extras: ftp.rz.uni-frankfurt.de
 * remi-php72: rpms.remirepo.net
 * remi-safe: rpms.remirepo.net
 * updates: mirror.checkdomain.de
Installed Packages
clamav.x86_64                                           0.99.2-3.el6                                           @epel

Trying to yum update, also doesn't work:

Code: Select all

[root@efa yum.repos.d]# yum update clamav clamav-db
Loaded plugins: fastestmirror, security
Setting up Update Process
Loading mirror speeds from cached hostfile
 * EFA: dl.efa-project.org
 * base: ftp.rz.uni-frankfurt.de
 * epel: mirror.de.leaseweb.net
 * extras: artfiles.org
 * remi-php72: rpms.remirepo.net
 * remi-safe: rpms.remirepo.net
 * updates: centosmirror.netcup.net
No Packages marked for Update
I tried without mirrors, clean yum's cache and DB, but to no avail. Any other idea, anyone?

henk
Posts: 171
Joined: 14 Dec 2015 22:16
Location: Netherlands
Contact:

Re: ClamAV Vulnerabilities

Post by henk » 05 Mar 2018 20:04

What is your EFA version?

on versions below 3.0.26 yum.conf will exclude several packages from updating.

If you are on the latest version, remove them and run: yum check-update

dwmp
Posts: 40
Joined: 05 Feb 2016 13:42

Re: ClamAV Vulnerabilities

Post by dwmp » 06 Mar 2018 06:29

same problem here, clamav is 0.99.2 but "No Packages marked for Update" (EFA 3.0.2.6)

henk
Posts: 171
Joined: 14 Dec 2015 22:16
Location: Netherlands
Contact:

Re: ClamAV Vulnerabilities

Post by henk » 06 Mar 2018 08:56

Seems related to the epel repo used. Did you check /etc/yum.conf?

Code: Select all

#exclude=kernel* postfix* mailscanner* MailScanner* clamav* clamd* open-vm-tools*
Otherwise just wait a bit longer till they update the repo. I don't know if switching the epel repo is a good idea.

[root@sansspam ~]# yum list clamav
Loaded plugins: fastestmirror, security
Loading mirror speeds from cached hostfile
* EFA: dl.efa-project.org
* base: mirror.widexs.nl
* epel: fedora.cu.be
* extras: centos.mirror1.spango.com
* mariadb: ftp.nluug.nl
* remi-php72: mirror.netweaver.uk
* remi-safe: mirror.netweaver.uk
* updates: mirror.yourwebhoster.eu
Installed Packages
clamav.x86_64 0.99.3-8.el6
Available Packages
clamav.i686 0.99.3-8.el6

budy
Posts: 74
Joined: 10 Sep 2017 07:33

Re: ClamAV Vulnerabilities

Post by budy » 06 Mar 2018 10:23

Hi henk,

thanks, that solved it.

Thanks,
budy

dwmp
Posts: 40
Joined: 05 Feb 2016 13:42

Re: ClamAV Vulnerabilities

Post by dwmp » 13 Mar 2018 07:58

Hi,

so that means, if we don't want to switch epel repo, we still have to wait?
Or is it necessary to delete "clamav*" and/or "clamd" entries from the yum.conf file?

BR
dwmp

henk
Posts: 171
Joined: 14 Dec 2015 22:16
Location: Netherlands
Contact:

Re: ClamAV Vulnerabilities

Post by henk » 13 Mar 2018 08:39

Hi dwmp.

Forget the remark about switching repos.

If you are on the latest version, remove them and run:

Code: Select all

yum check-update

dwmp
Posts: 40
Joined: 05 Feb 2016 13:42

Re: ClamAV Vulnerabilities

Post by dwmp » 13 Mar 2018 10:25

hi henk,

thanks for your reply! Sorry for asking silly questions, but by removing, you mean deleting the entries for clamav and clamd from the yum.conf file?
So that the config file looks like that:

Code: Select all

#exclude=kernel* postfix* mailscanner* MailScanner* open-vm-tools*

henk
Posts: 171
Joined: 14 Dec 2015 22:16
Location: Netherlands
Contact:

Re: ClamAV Vulnerabilities

Post by henk » 13 Mar 2018 14:17

the # on the start of the line already means : this line is comment. The rest of the line is ignored.

Running yum check-update will show you the packages to be updated.

No result means: packages already up to date.

Do not change yum.conf if you are not on E.F.A. 3.0.2.6. And always make backups/snapshots before you update.....

henk
Posts: 171
Joined: 14 Dec 2015 22:16
Location: Netherlands
Contact:

Re: ClamAV Vulnerabilities

Post by henk » 14 Mar 2018 09:43

clamav-db.x86_64 0.99.4-1.el6 has landed :D

dwmp
Posts: 40
Joined: 05 Feb 2016 13:42

Re: ClamAV Vulnerabilities

Post by dwmp » 14 Mar 2018 11:10

Hi henk,

thank you!
Im running on EFA 3.0.2.6. When executing "yum check-update" I get no clamav-package.
Still version ClamAV 0.99.2 is installed.
What do I have to do?

BR
dwmp

Post Reply