I've finally scanned the source tree for Leap 15.0 and ClamAV complains about these findings: ./freetype2/.osc/bnc628213_test.otf: Win.Exploit.Jailbreak-1 FOUND ./freetype2/bnc628213_test.otf: Win.Exploit.Jailbreak-1 FOUND ./kdepim-addons/.osc/kdepim-addons-17.12.3.tar.xz: Email.Phishing.VOF1-6295269-0-6295269-1 FOUND ./kdepim-addons/kdepim-addons-17.12.3.tar.xz: Email.Phishing.VOF1-6295269-0-6295269-1 FOUND ./libemf2svg/.osc/libemf2svg-1.1.0.tar.gz: Win.Exploit.CVE_2017_11244-6335828-1 FOUND ./libemf2svg/libemf2svg-1.1.0.tar.gz: Win.Exploit.CVE_2017_11244-6335828-1 FOUND ./libreoffice/.osc/libreoffice-6.0.4.1.tar.xz: BC.Win.Exploit.CVE_2017_0060-6333894-0 FOUND ./libreoffice/libreoffice-6.0.4.1.tar.xz: BC.Win.Exploit.CVE_2017_0060-6333894-0 FOUND ./linkchecker/.osc/LinkChecker-9.3.tar.gz: Clamav.Test.File-6 FOUND ./linkchecker/LinkChecker-9.3.tar.gz: Clamav.Test.File-6 FOUND ./llvm5/.osc/lldb-5.0.1.src.tar.xz: Win.Trojan.Agent-1817571 FOUND ./llvm5/lldb-5.0.1.src.tar.xz: Win.Trojan.Agent-1817571 FOUND ./pmdk/.osc/pmdk-1.3.1.tar.gz: Heuristics.Broken.Executable FOUND ./pmdk/pmdk-1.3.1.tar.gz: Heuristics.Broken.Executable FOUND