<div class="container">
<h1>Recommended update for clamav</h1>
<table class="table table-striped table-bordered">
<tbody>
<tr>
<th>Announcement ID:</th>
<td>SUSE-RU-2026:20433-1</td>
</tr>
<tr>
<th>Release Date:</th>
<td>2026-02-13T17:00:51Z</td>
</tr>
<tr>
<th>Rating:</th>
<td>moderate</td>
</tr>
<tr>
<th>References:</th>
<td>
<ul>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1240363">bsc#1240363</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1249404">bsc#1249404</a>
</li>
</ul>
</td>
</tr>
<tr>
<th>Affected Products:</th>
<td>
<ul class="list-group">
<li class="list-group-item">SUSE Linux Enterprise Server 16.0</li>
<li class="list-group-item">SUSE Linux Enterprise Server for SAP Applications 16.0</li>
</ul>
</td>
</tr>
</tbody>
</table>
<p>An update that has two fixes can now be installed.</p>
<h2>Description:</h2>
<p>This update for clamav fixes the following issues:</p>
<ul>
<li>Provide a better fix for boo#1249404 by disabling debug mode.</li>
<li>Build with older rust 1.87 for reproducible builds (bsc#1249404)</li>
<li>Add work around for symbol removals in version 1.5.0 and 1.5.1.</li>
<li>New version: 1.5.1:<ul>
<li>Fixed a significant performance issue when scanning some PE files.</li>
<li>Fixed an issue recording file entries from a ZIP archive central directory
which resulted in "Heuristics.Limits.Exceeded.MaxFiles" alerts when using
the ClamScan --alert-exceeds-max command line option or ClamD AlertExceedsMax config file option.</li>
<li>Improved performance when scanning TNEF email attachments.</li>
<li>Fixed an issue with recording metadata for OOXML office documents.</li>
<li>Fixed an issue with signature matches for VBA in OLE2 office documents.</li>
<li>Loosened overly restrictive rules for embedded file
identification and increased the limit for finding PE files embedded in other PE files.</li>
<li>Fixed an issue with extracting some RAR archives embedded in other files.</li>
<li>Fixed an issue with calculating fuzzy hashes affecting some
images by updating the version for several Rust library dependencies.</li>
</ul>
</li>
<li>Add json-c-json-c-0.18-20240915.tar.gz and link it statically
into libclamav on SLE-12, because version 0.12 is too old.</li>
<li>New version 1.5.0:<ul>
<li>Added checks to determine if an OLE2-based Microsoft Office document is encrypted.</li>
<li>Added the ability to record URIs found in HTML and PDFs
if the generate-JSON-metadata feature is enabled.</li>
<li>Added regex support for the clamd.conf OnAccessExcludePath config option.</li>
<li>Added CVD signing/verification with external .sign files.</li>
<li>Freshclam, ClamD, ClamScan, and Sigtool: Added an option to enable FIPS-like limits
disabling MD5 and SHA1 from being used for verifying digital signatures or
for being used to trust a file when checking for false positives</li>
<li>ClamD: Added an option to disable select administrative
commands including SHUTDOWN, RELOAD, STATS and VERSION.</li>
<li>libclamav: Added extended hashing functions with a "flags" parameter that allows
the caller to choose if they want to bypass FIPS hash algorithm limits.</li>
</ul>
</li>
<li>Use macros for library versions</li>
<li>Remove service symlinks: rcclamd, rcfreshclam, rcclamav-milter, and clamonacc.</li>
<li>Use rust 1.86 for SLE-12 and SLE-15-SP2.</li>
<li>Add an option to toggle SHUTDOWN, RELOAD, STATS and VERSION (bsc#1240363).</li>
</ul>
<h2>Patch Instructions:</h2>
<p>
To install this SUSE update use the SUSE recommended
installation methods like YaST online_update or "zypper patch".<br/>
Alternatively you can run the command listed for your product:
</p>
<ul class="list-group">
<li class="list-group-item">
SUSE Linux Enterprise Server 16.0
<br/>
<code>zypper in -t patch SUSE-SLES-16.0-283=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise Server for SAP Applications 16.0
<br/>
<code>zypper in -t patch SUSE-SLES-16.0-283=1</code>
</li>
</ul>
<h2>Package List:</h2>
<ul>
<li>
SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le s390x x86_64)
<ul>
<li>libclamav12-1.5.1-160000.1.1</li>
<li>libclammspack0-debuginfo-1.5.1-160000.1.1</li>
<li>libfreshclam4-debuginfo-1.5.1-160000.1.1</li>
<li>clamav-1.5.1-160000.1.1</li>
<li>clamav-milter-1.5.1-160000.1.1</li>
<li>libclamav12-debuginfo-1.5.1-160000.1.1</li>
<li>libclammspack0-1.5.1-160000.1.1</li>
<li>clamav-milter-debuginfo-1.5.1-160000.1.1</li>
<li>libfreshclam4-1.5.1-160000.1.1</li>
<li>clamav-debuginfo-1.5.1-160000.1.1</li>
<li>clamav-debugsource-1.5.1-160000.1.1</li>
<li>clamav-devel-1.5.1-160000.1.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Server 16.0 (noarch)
<ul>
<li>clamav-docs-html-1.5.1-160000.1.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Server for SAP Applications 16.0 (ppc64le x86_64)
<ul>
<li>libclamav12-1.5.1-160000.1.1</li>
<li>libclammspack0-debuginfo-1.5.1-160000.1.1</li>
<li>libfreshclam4-debuginfo-1.5.1-160000.1.1</li>
<li>clamav-1.5.1-160000.1.1</li>
<li>clamav-milter-1.5.1-160000.1.1</li>
<li>libclamav12-debuginfo-1.5.1-160000.1.1</li>
<li>libclammspack0-1.5.1-160000.1.1</li>
<li>clamav-milter-debuginfo-1.5.1-160000.1.1</li>
<li>libfreshclam4-1.5.1-160000.1.1</li>
<li>clamav-debuginfo-1.5.1-160000.1.1</li>
<li>clamav-debugsource-1.5.1-160000.1.1</li>
<li>clamav-devel-1.5.1-160000.1.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Server for SAP Applications 16.0 (noarch)
<ul>
<li>clamav-docs-html-1.5.1-160000.1.1</li>
</ul>
</li>
</ul>
<h2>References:</h2>
<ul>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1240363">https://bugzilla.suse.com/show_bug.cgi?id=1240363</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1249404">https://bugzilla.suse.com/show_bug.cgi?id=1249404</a>
</li>
</ul>
</div>