Univention Bugzilla – Bug 33683
ClamAV too old to update signatures
Last modified: 2014-01-21 14:08:36 CET
clamAV needs to be updated to get newest virus signature via freshclam. Version in Debian Squeeze and UCS 3.2 is 0.97.8. Error message: WARNING: Your ClamAV installation is OUTDATED! WARNING: Local version: 0.97.7 Recommended version: 0.98
occures with UCS 2.4, UCS 3.1 and UCS 3.2
A backport for UCS 3.1 and 2.4 should also be checked.
This is a misleading status message by ClamAV; the check is only based on a comparison of version strings. While the FAQ may indicate differently, the current versions in UCS 2.4 to 3.1 can actually process all current malware signatures: From the output of freshclam: main.cvd is up to date (version: 55, sigs: 2424225, f-level: 60, builder: neo) daily.cld is up to date (version: 18223, sigs: 596031, f-level: 63, builder: neo) bytecode.cvd is up to date (version: 233, sigs: 44, f-level: 63, builder: dgoddard) The required engine features for clamav are denoted in "functionality levels", i.e. the most recent level required by the standard CVD files is 63. Unfortunately the current functionality level of the installed cannot easily be detected with any of the tools shipped by ClamAV, but only through the API: #include <stdio.h> #include "clamav.h" int main(void) { printf("%d", cl_retflevel()); } The clamav version in UCS 2.4/3.1 provides functionality level 68 and the version in UCS 3.2 functionality level 69. Nonetheless, the status message will be removed since it's a source of confusion (previously also reported as Bug 25808) In addition Bug 33716 was created to integrate ClamAV tests for non-processable signatures into the daily ucs-test runs.
(In reply to Moritz Muehlenhoff from comment #3) > This is a misleading status message by ClamAV; the check is only based on a > comparison of version strings. While the FAQ may indicate differently, the > current versions in UCS 2.4 to 3.1 can actually process all current malware > signatures: I meant 2.4 to 3.2
*** Bug 25808 has been marked as a duplicate of this bug. ***
The misleading error is now removed. YAML: 2013-12-12-clamav.yaml
OK: Warning message from comment 0 removed. FAIL: The duplicate bug mentions a different warning message. It is printed in libclamav/cvd.c: LibClamAV Warning: *********************************************************** LibClamAV Warning: *** This version of the ClamAV engine is outdated. *** LibClamAV Warning: *** DON'T PANIC! Read http://www.clamav.net/support/faq *** LibClamAV Warning: *********************************************************** It should also be removed.
(In reply to Erik Damrose from comment #7) > OK: Warning message from comment 0 removed. > > FAIL: The duplicate bug mentions a different warning message. It is printed > in libclamav/cvd.c: > > LibClamAV Warning: > *********************************************************** > LibClamAV Warning: *** This version of the ClamAV engine is outdated. > *** > LibClamAV Warning: *** DON'T PANIC! Read http://www.clamav.net/support/faq > *** > LibClamAV Warning: > *********************************************************** > > It should also be removed. The additional log message has been removed as well.
OK: Patch removes the second warning message OK: YAML file -> Verified
http://errata.univention.de/ucs/3.2/24.html