[clamav-users] clamav-milter not being built for 0.102.0
Arjen de Korte
build+clamav at de-korte.org
Wed Nov 6 20:20:19 UTC 2019
Citeren Yasuhiro KIMURA <yasu at utahime.org>:
> Hello Micah,
>
> From: "Micah Snyder \(micasnyd\) via clamav-users"
> <clamav-users at lists.clamav.net>
> Subject: Re: [clamav-users] clamav-milter not being built for 0.102.0
> Date: Tue, 5 Nov 2019 18:19:21 +0000
>
>> Thanks for reaching out. I’m also CC’ing the binary package
>> maintainers mailing list on this reply.
>>
>> We’d like to have 0.102.1 ready/published next Wednesday, Nov
>> 13^th. However, we have at present 12
>> internal pull-requests targeting both 0.102.1 and dev/0.103 (with
>> some duplicates for 0.101.5) to review/
>> merge before we can publish release materials. At this point it
>> seems unlikely that we’ll be able to
>> publish before November 20^th.
>>
>> The recent distraction caused by activity on Twitter regarding the
>> ability to crash the clambc testing tool
>> with malformed bytecode signatures hasn’t helped any. Fortunately
>> there is no immediate crisis on that
>> topic but we may add the requirement to use the `--trust-unsigned`
>> option with clambc to alleviate concerns
>> for those less informed about how to use ClamAV, and may also add
>> additional warnings regarding the risks
>> of running untrusted bytecode. I cannot comment further on that
>> subject so if you are concerned, please
>> contact Cisco PSIRT for details.
>
> Thank you for reply. I'll wait for release announcement of 0.102.1.
There is a trivial patch to fix this if you want to give 0.102.0 a try:
https://github.com/Cisco-Talos/clamav-devel/pull/111
> ---
> Yasuhiro KIMURA
>
> _______________________________________________
>
> clamav-users mailing list
> clamav-users at lists.clamav.net
> https://lists.clamav.net/mailman/listinfo/clamav-users
>
>
> Help us build a comprehensive ClamAV guide:
> https://github.com/vrtadmin/clamav-faq
>
> http://www.clamav.net/contact.html#ml
More information about the clamav-users
mailing list