Page 1 of 2

ClamAV Vulnerabilities

Posted: 26 Jan 2018 13:22
by DaN

Re: ClamAV Vulnerabilities

Posted: 29 Jan 2018 15:10
by sebastian.savard
I'm assuming this is an update that we'll have to perform on our own systems, as 3.0.2.6 is the last of version 3. Has any successfully upgraded?

Re: ClamAV Vulnerabilities

Posted: 29 Jan 2018 20:02
by shawniverson
eFa uses the clamav from epel, so hopefully it'll get updated soon and all you will need to do is run a yum update.

Re: ClamAV Vulnerabilities

Posted: 06 Feb 2018 09:32
by dwmp
how can I check if the update is available?

Re: ClamAV Vulnerabilities

Posted: 06 Feb 2018 11:08
by pdwalker
from the efa command prompt:

Code: Select all

sudo yum update

Re: ClamAV Vulnerabilities

Posted: 08 Feb 2018 07:33
by dwmp
Thanks. But is that really only the check for updates? Or will there be updates installed via the command?

Re: ClamAV Vulnerabilities

Posted: 08 Feb 2018 09:56
by pdwalker
That command will check for updates, and if there are any, will ask you to confirm before updating. If you say "n", then nothing further will happen.

Re: ClamAV Vulnerabilities

Posted: 08 Feb 2018 10:48
by dwmp
Alright, thank you!

Re: ClamAV Vulnerabilities

Posted: 19 Feb 2018 10:20
by DaN
Still ClamAV 0.99.2 :think:

Re: ClamAV Vulnerabilities

Posted: 02 Mar 2018 06:23
by dwmp
Somebody an idea why there is still no update?

Re: ClamAV Vulnerabilities

Posted: 05 Mar 2018 03:26
by pdwalker
updated

Code: Select all

 clamav                       x86_64               0.99.3-8.el6                      epel                     4.3 M
 clamav-db                    x86_64               0.99.3-8.el6                      epel                     155 M
All good things come to those who wait.

Re: ClamAV Vulnerabilities

Posted: 05 Mar 2018 07:35
by dwmp
Thanks!
Do I need to reboot the system after clamav-update?

Re: ClamAV Vulnerabilities

Posted: 05 Mar 2018 13:41
by henk
Run

Code: Select all

freshclam -v
Software version from DNS: 0.99.4
WARNING: Your ClamAV installation is OUTDATED!
WARNING: Local version: 0.99.3 Recommended version: 0.99.4 :whistle:

Sometimes good things come to those who wait a bit longer.... ;)

Re: ClamAV Vulnerabilities

Posted: 05 Mar 2018 16:20
by pdwalker
dwmp: no. the necessary services will be restarted.

henk: :lol:

Re: ClamAV Vulnerabilities

Posted: 05 Mar 2018 18:15
by budy
Hmmm… my clamav is still on 0.99.2 but yum update won't server a newer one:

Code: Select all

[root@efa yum.repos.d]# yum list clamav
Loaded plugins: fastestmirror, security
Loading mirror speeds from cached hostfile
 * EFA: dl.efa-project.org
 * base: ftp.rz.uni-frankfurt.de
 * epel: mirror.de.leaseweb.net
 * extras: ftp.rz.uni-frankfurt.de
 * remi-php72: rpms.remirepo.net
 * remi-safe: rpms.remirepo.net
 * updates: mirror.checkdomain.de
Installed Packages
clamav.x86_64                                           0.99.2-3.el6                                           @epel

Trying to yum update, also doesn't work:

Code: Select all

[root@efa yum.repos.d]# yum update clamav clamav-db
Loaded plugins: fastestmirror, security
Setting up Update Process
Loading mirror speeds from cached hostfile
 * EFA: dl.efa-project.org
 * base: ftp.rz.uni-frankfurt.de
 * epel: mirror.de.leaseweb.net
 * extras: artfiles.org
 * remi-php72: rpms.remirepo.net
 * remi-safe: rpms.remirepo.net
 * updates: centosmirror.netcup.net
No Packages marked for Update
I tried without mirrors, clean yum's cache and DB, but to no avail. Any other idea, anyone?

Re: ClamAV Vulnerabilities

Posted: 05 Mar 2018 20:04
by henk
What is your EFA version?

on versions below 3.0.26 yum.conf will exclude several packages from updating.

If you are on the latest version, remove them and run: yum check-update

Re: ClamAV Vulnerabilities

Posted: 06 Mar 2018 06:29
by dwmp
same problem here, clamav is 0.99.2 but "No Packages marked for Update" (EFA 3.0.2.6)

Re: ClamAV Vulnerabilities

Posted: 06 Mar 2018 08:56
by henk
Seems related to the epel repo used. Did you check /etc/yum.conf?

Code: Select all

#exclude=kernel* postfix* mailscanner* MailScanner* clamav* clamd* open-vm-tools*
Otherwise just wait a bit longer till they update the repo. I don't know if switching the epel repo is a good idea.

[root@sansspam ~]# yum list clamav
Loaded plugins: fastestmirror, security
Loading mirror speeds from cached hostfile
* EFA: dl.efa-project.org
* base: mirror.widexs.nl
* epel: fedora.cu.be
* extras: centos.mirror1.spango.com
* mariadb: ftp.nluug.nl
* remi-php72: mirror.netweaver.uk
* remi-safe: mirror.netweaver.uk
* updates: mirror.yourwebhoster.eu
Installed Packages
clamav.x86_64 0.99.3-8.el6
Available Packages
clamav.i686 0.99.3-8.el6

Re: ClamAV Vulnerabilities

Posted: 06 Mar 2018 10:23
by budy
Hi henk,

thanks, that solved it.

Thanks,
budy

Re: ClamAV Vulnerabilities

Posted: 13 Mar 2018 07:58
by dwmp
Hi,

so that means, if we don't want to switch epel repo, we still have to wait?
Or is it necessary to delete "clamav*" and/or "clamd" entries from the yum.conf file?

BR
dwmp

Re: ClamAV Vulnerabilities

Posted: 13 Mar 2018 08:39
by henk
Hi dwmp.

Forget the remark about switching repos.

If you are on the latest version, remove them and run:

Code: Select all

yum check-update

Re: ClamAV Vulnerabilities

Posted: 13 Mar 2018 10:25
by dwmp
hi henk,

thanks for your reply! Sorry for asking silly questions, but by removing, you mean deleting the entries for clamav and clamd from the yum.conf file?
So that the config file looks like that:

Code: Select all

#exclude=kernel* postfix* mailscanner* MailScanner* open-vm-tools*

Re: ClamAV Vulnerabilities

Posted: 13 Mar 2018 14:17
by henk
the # on the start of the line already means : this line is comment. The rest of the line is ignored.

Running yum check-update will show you the packages to be updated.

No result means: packages already up to date.

Do not change yum.conf if you are not on E.F.A. 3.0.2.6. And always make backups/snapshots before you update.....

Re: ClamAV Vulnerabilities

Posted: 14 Mar 2018 09:43
by henk
clamav-db.x86_64 0.99.4-1.el6 has landed :D

Re: ClamAV Vulnerabilities

Posted: 14 Mar 2018 11:10
by dwmp
Hi henk,

thank you!
Im running on EFA 3.0.2.6. When executing "yum check-update" I get no clamav-package.
Still version ClamAV 0.99.2 is installed.
What do I have to do?

BR
dwmp