SUSE-RU-2026:20433-1: moderate: Recommended update for clamav

SLE-UPDATES null at suse.de
Wed Feb 18 16:30:38 UTC 2026 


# Recommended update for clamav

Announcement ID: SUSE-RU-2026:20433-1  
Release Date: 2026-02-13T17:00:51Z  
Rating: moderate  
References:

  * bsc#1240363
  * bsc#1249404

  
Affected Products:

  * SUSE Linux Enterprise Server 16.0
  * SUSE Linux Enterprise Server for SAP Applications 16.0

  
  
An update that has two fixes can now be installed.

## Description:

This update for clamav fixes the following issues:

  * Provide a better fix for boo#1249404 by disabling debug mode.
  * Build with older rust 1.87 for reproducible builds (bsc#1249404)
  * Add work around for symbol removals in version 1.5.0 and 1.5.1.
  * New version: 1.5.1:
    * Fixed a significant performance issue when scanning some PE files.
    * Fixed an issue recording file entries from a ZIP archive central directory which resulted in "Heuristics.Limits.Exceeded.MaxFiles" alerts when using the ClamScan --alert-exceeds-max command line option or ClamD AlertExceedsMax config file option.
    * Improved performance when scanning TNEF email attachments.
    * Fixed an issue with recording metadata for OOXML office documents.
    * Fixed an issue with signature matches for VBA in OLE2 office documents.
    * Loosened overly restrictive rules for embedded file identification and increased the limit for finding PE files embedded in other PE files.
    * Fixed an issue with extracting some RAR archives embedded in other files.
    * Fixed an issue with calculating fuzzy hashes affecting some images by updating the version for several Rust library dependencies.
  * Add json-c-json-c-0.18-20240915.tar.gz and link it statically into libclamav
    on SLE-12, because version 0.12 is too old.
  * New version 1.5.0:
    * Added checks to determine if an OLE2-based Microsoft Office document is encrypted.
    * Added the ability to record URIs found in HTML and PDFs if the generate-JSON-metadata feature is enabled.
    * Added regex support for the clamd.conf OnAccessExcludePath config option.
    * Added CVD signing/verification with external .sign files.
    * Freshclam, ClamD, ClamScan, and Sigtool: Added an option to enable FIPS-like limits disabling MD5 and SHA1 from being used for verifying digital signatures or for being used to trust a file when checking for false positives
    * ClamD: Added an option to disable select administrative commands including SHUTDOWN, RELOAD, STATS and VERSION.
    * libclamav: Added extended hashing functions with a "flags" parameter that allows the caller to choose if they want to bypass FIPS hash algorithm limits.
  * Use macros for library versions
  * Remove service symlinks: rcclamd, rcfreshclam, rcclamav-milter, and
    clamonacc.
  * Use rust 1.86 for SLE-12 and SLE-15-SP2.
  * Add an option to toggle SHUTDOWN, RELOAD, STATS and VERSION (bsc#1240363).

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".  
Alternatively you can run the command listed for your product:

  * SUSE Linux Enterprise Server 16.0  
    zypper in -t patch SUSE-SLES-16.0-283=1

  * SUSE Linux Enterprise Server for SAP Applications 16.0  
    zypper in -t patch SUSE-SLES-16.0-283=1

## Package List:

  * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le s390x x86_64)
    * libclamav12-1.5.1-160000.1.1
    * libclammspack0-debuginfo-1.5.1-160000.1.1
    * libfreshclam4-debuginfo-1.5.1-160000.1.1
    * clamav-1.5.1-160000.1.1
    * clamav-milter-1.5.1-160000.1.1
    * libclamav12-debuginfo-1.5.1-160000.1.1
    * libclammspack0-1.5.1-160000.1.1
    * clamav-milter-debuginfo-1.5.1-160000.1.1
    * libfreshclam4-1.5.1-160000.1.1
    * clamav-debuginfo-1.5.1-160000.1.1
    * clamav-debugsource-1.5.1-160000.1.1
    * clamav-devel-1.5.1-160000.1.1
  * SUSE Linux Enterprise Server 16.0 (noarch)
    * clamav-docs-html-1.5.1-160000.1.1
  * SUSE Linux Enterprise Server for SAP Applications 16.0 (ppc64le x86_64)
    * libclamav12-1.5.1-160000.1.1
    * libclammspack0-debuginfo-1.5.1-160000.1.1
    * libfreshclam4-debuginfo-1.5.1-160000.1.1
    * clamav-1.5.1-160000.1.1
    * clamav-milter-1.5.1-160000.1.1
    * libclamav12-debuginfo-1.5.1-160000.1.1
    * libclammspack0-1.5.1-160000.1.1
    * clamav-milter-debuginfo-1.5.1-160000.1.1
    * libfreshclam4-1.5.1-160000.1.1
    * clamav-debuginfo-1.5.1-160000.1.1
    * clamav-debugsource-1.5.1-160000.1.1
    * clamav-devel-1.5.1-160000.1.1
  * SUSE Linux Enterprise Server for SAP Applications 16.0 (noarch)
    * clamav-docs-html-1.5.1-160000.1.1

## References:

  * https://bugzilla.suse.com/show_bug.cgi?id=1240363
  * https://bugzilla.suse.com/show_bug.cgi?id=1249404

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.suse.com/pipermail/sle-updates/attachments/20260218/4beee5b2/attachment.htm>

More information about the sle-updates mailing list