[clamav-users] Dynamic engine module for scanning media files (e.g., MP3, MP4, etc.)?

[Crystalslave]

Good evening, all.

First off, my thanks to the development team for creating and
maintaining this great tool.

This message is being sent out to express my concern over a potential
vulnerability that Clamscan doesn't currently seem to address. It is
particularly alarming, because, as far as I can tell, ClamAV is the
premiere malware scanner available for Linux (or at least for
Debian--my personal OS).

For those Linux users who may have a substantial amount of old audio
and video files in their possession (many of them from their Windows
days), what is the suggested solution for retroactive scanning?

I know there is a Clamscan module for JPEG files. To me, that seems to
constitute a tacit acknowledgement of the possibility that trojans can
be disguised within media files. But there isn't any equivalent module
for scanning MP3's, MP4's, AVI's, and other such files, is there? I've
seen no indication of such.

As a stopgap measure for such Linux users, any newly-acquired files
could be sent to VirusTotal to be scanned there. But dependence upon a
cloud-based service hardly seems ideal to me, especially for those who
may have substantial numbers of old files already in
possession--mostly music, ponies, and anime that have all been legally
acquired over the years.

I'm sure there must be some sort of significant hurdle associated with
this proposition.  Would someone be willing to enlighten me to this
end? It seems too common-sense to ignore for frivolous reasons,
especially since such a media module would be useful for more than
just personal files. Enterprises could benefit as well.

Thank you so much for your time.