SUSE-RU-2025:4341-1: moderate: Recommended update for clamav
SLE-UPDATES
null at suse.de
Wed Dec 10 12:30:20 UTC 2025
# Recommended update for clamav
Announcement ID: SUSE-RU-2025:4341-1
Release Date: 2025-12-10T09:22:14Z
Rating: moderate
References:
* bsc#1240363
* bsc#1249404
* jsc#PED-14151
Affected Products:
* Basesystem Module 15-SP6
* Basesystem Module 15-SP7
* openSUSE Leap 15.6
* SUSE Linux Enterprise Desktop 15 SP6
* SUSE Linux Enterprise Desktop 15 SP7
* SUSE Linux Enterprise Real Time 15 SP6
* SUSE Linux Enterprise Real Time 15 SP7
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server 15 SP7
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
* SUSE Linux Enterprise Server for SAP Applications 15 SP7
An update that contains one feature and has two fixes can now be installed.
## Description:
This update for clamav fixes the following issues:
New version: 1.5.1:
* Fixed a significant performance issue when scanning some PE files.
* Fixed an issue recording file entries from a ZIP archive central directory
which resulted in "Heuristics.Limits.Exceeded.MaxFiles" alerts when using
the ClamScan --alert-exceeds-max command line option or ClamD
AlertExceedsMax config file option.
* Improved performance when scanning TNEF email attachments.
* Fixed an issue with recording metadata for OOXML office documents.
* Fixed an issue with signature matches for VBA in OLE2 office documents.
* Loosened overly restrictive rules for embedded file identification and
increased the limit for finding PE files embedded in other PE files.
* Fixed an issue with extracting some RAR archives embedded in other files.
* Fixed an issue with calculating fuzzy hashes affecting some images by
updating the version for several Rust library dependencies.
New version 1.5.0:
* Added checks to determine if an OLE2-based Microsoft Office document is
encrypted.
* Added the ability to record URIs found in HTML if the generate-JSON-metadata
feature is enabled.
* Added the ability to record URIs found in PDFs if the generate-JSON-metadata
feature is enabled.
* Added regex support for the clamd.conf OnAccessExcludePath config option.
* Added CVD signing/verification with external .sign files.
* Freshclam, ClamD, ClamScan, and Sigtool: Added an option to enable FIPS-like
limits disabling MD5 and SHA1 from being used for verifying digital
signatures or for being used to trust a file when checking for false
positives
* ClamD: Added an option to disable select administrative commands including
SHUTDOWN, RELOAD, STATS and VERSION.
* libclamav: Added extended hashing functions with a "flags" parameter that
allows the caller to choose if they want to bypass FIPS hash algorithm
limits.
* See the release announcement for the full list of changes:
https://blog.clamav.net/2025/10/clamav-150-released.html
* Remove service symlinks: rcclamd, rcfreshclam, rcclamav-milter, and
clamonacc.
* clamd: Add an option to toggle SHUTDOWN, RELOAD, STATS and VERSION.
(bsc#1240363,)
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.6
zypper in -t patch SUSE-2025-4341=1 openSUSE-SLE-15.6-2025-4341=1
* Basesystem Module 15-SP6
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2025-4341=1
* Basesystem Module 15-SP7
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2025-4341=1
## Package List:
* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586)
* libclammspack0-debuginfo-1.5.1-150600.18.22.1
* clamav-milter-1.5.1-150600.18.22.1
* clamav-devel-1.5.1-150600.18.22.1
* libclamav12-debuginfo-1.5.1-150600.18.22.1
* libfreshclam4-debuginfo-1.5.1-150600.18.22.1
* clamav-debugsource-1.5.1-150600.18.22.1
* clamav-debuginfo-1.5.1-150600.18.22.1
* libfreshclam4-1.5.1-150600.18.22.1
* libclammspack0-1.5.1-150600.18.22.1
* clamav-1.5.1-150600.18.22.1
* clamav-milter-debuginfo-1.5.1-150600.18.22.1
* libclamav12-1.5.1-150600.18.22.1
* openSUSE Leap 15.6 (noarch)
* clamav-docs-html-1.5.1-150600.18.22.1
* Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64)
* libclammspack0-debuginfo-1.5.1-150600.18.22.1
* clamav-milter-1.5.1-150600.18.22.1
* clamav-devel-1.5.1-150600.18.22.1
* libclamav12-debuginfo-1.5.1-150600.18.22.1
* libfreshclam4-debuginfo-1.5.1-150600.18.22.1
* clamav-debugsource-1.5.1-150600.18.22.1
* clamav-debuginfo-1.5.1-150600.18.22.1
* libfreshclam4-1.5.1-150600.18.22.1
* libclammspack0-1.5.1-150600.18.22.1
* clamav-1.5.1-150600.18.22.1
* clamav-milter-debuginfo-1.5.1-150600.18.22.1
* libclamav12-1.5.1-150600.18.22.1
* Basesystem Module 15-SP6 (noarch)
* clamav-docs-html-1.5.1-150600.18.22.1
* Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64)
* libclammspack0-debuginfo-1.5.1-150600.18.22.1
* clamav-milter-1.5.1-150600.18.22.1
* clamav-devel-1.5.1-150600.18.22.1
* libclamav12-debuginfo-1.5.1-150600.18.22.1
* libfreshclam4-debuginfo-1.5.1-150600.18.22.1
* clamav-debugsource-1.5.1-150600.18.22.1
* clamav-debuginfo-1.5.1-150600.18.22.1
* libfreshclam4-1.5.1-150600.18.22.1
* libclammspack0-1.5.1-150600.18.22.1
* clamav-1.5.1-150600.18.22.1
* clamav-milter-debuginfo-1.5.1-150600.18.22.1
* libclamav12-1.5.1-150600.18.22.1
* Basesystem Module 15-SP7 (noarch)
* clamav-docs-html-1.5.1-150600.18.22.1
## References:
* https://bugzilla.suse.com/show_bug.cgi?id=1240363
* https://bugzilla.suse.com/show_bug.cgi?id=1249404
* https://jira.suse.com/browse/PED-14151
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.suse.com/pipermail/sle-updates/attachments/20251210/619a7ee2/attachment.htm>
More information about the sle-updates
mailing list