Update to 1.0.5
Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:
sudo dnf upgrade --refresh --advisory=FEDORA-2024-c42cf0e576Please login to add feedback.
| -1 | 0 | Test Case ClamAV |
This update has been submitted for testing by orion.
This update's test gating status has been changed to 'ignored'.
This update has been pushed to testing.
Thanks!
The Testcase scenario can not work anymore, so it failed the test technically:
]# cat eicar.com
<title>301 Moved Permanently</title>Moved Permanently
The document has moved here.
They switched to HTTPS ONLY , BUT FAILED miserable : # curl -i https://www.eicar.org/download/eicar.com HTTP/1.1 301 Moved Permanently Date: Mon, 12 Feb 2024 09:03:33 GMT Server: Apache Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache X-Redirect-By: WordPress Set-Cookie: __wpdm_client=6e15870152555d8151f85bd818d4c7a8; path=/; secure; HttpOnly Set-Cookie: PHPSESSID=8e8ufmfd6b5b2pfl0cp4orjlak; path=/ Location: https://www.eicar.org/download/eicar.com/ Strict-Transport-Security: max-age=31536000; includeSubDomains; preload cache-control: public Content-Length: 0 Content-Type: text/html; charset=UTF-8 And if we follow the Location Header, we do not get the eicar file, we get a wordpress website, an another one, until.. we end up here: curl -O "https://secure.eicar.org/eicar.com" that works. clamscan needs around 20 Seconds to load the database.. on a not so old server cpu.. EICAR TEST PASSED.This update can be pushed to stable now if the maintainer wishes
EMERGENCY PUSH TO STABLE!
1 CVE CVE-2024-20328 => RCE 1 CVE CVE-2024-20290 => DOS
This update has been submitted for stable by bodhi.
This update has been pushed to stable.