[opensuse-security] Clamd in 10.3 is outdated.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 I see this in my warn log: Jun 10 23:11:38 nimrodel freshclam[9428]: Your ClamAV installation is OUTDATED! Jun 10 23:11:38 nimrodel freshclam[9428]: Local version: 0.93 Recommended version: 0.93.1 Jun 10 23:11:41 nimrodel freshclam[9428]: Your ClamAV installation is OUTDATED! Jun 10 23:11:41 nimrodel freshclam[9428]: Current functionality level = 29, recommended = 31 Will there be an official update through YOU? - -- Cheers, Carlos Robinson -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4-svn0 (GNU/Linux) iD8DBQFITwMstTMYHG2NR9URArZtAJ9NBxWEGBwp5ENI8jDtsxITFQvMwQCfcRIS RHxWyQlhT2OQ70R1oDcpAII= =6Dvx -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-security+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-security+help@opensuse.org
On Wed, Jun 11, 2008 at 12:41:36AM +0200, Carlos E. R. wrote:
I see this in my warn log:
Jun 10 23:11:38 nimrodel freshclam[9428]: Your ClamAV installation is OUTDATED! Jun 10 23:11:38 nimrodel freshclam[9428]: Local version: 0.93 Recommended version: 0.93.1 Jun 10 23:11:41 nimrodel freshclam[9428]: Your ClamAV installation is OUTDATED! Jun 10 23:11:41 nimrodel freshclam[9428]: Current functionality level = 29, recommended = 31
Will there be an official update through YOU?
Yes, there will be. Ciao, Marcus --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-security+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-security+help@opensuse.org
Marcus Meissner [11.06.2008 16:59]:
On Wed, Jun 11, 2008 at 12:41:36AM +0200, Carlos E. R. wrote:
I see this in my warn log:
Jun 10 23:11:38 nimrodel freshclam[9428]: Your ClamAV installation is OUTDATED! Jun 10 23:11:38 nimrodel freshclam[9428]: Local version: 0.93 Recommended version: 0.93.1 Jun 10 23:11:41 nimrodel freshclam[9428]: Your ClamAV installation is OUTDATED! Jun 10 23:11:41 nimrodel freshclam[9428]: Current functionality level = 29, recommended = 31
Will there be an official update through YOU?
Yes, there will be.
Ciao, Marcus
@Carlos: did you read the next line? "DON'T PANIC! Read http://www.clamav.net/support/faq" :-) There was always an update of clamav via YOU (when you use a ftp or http client to look into the update repo manually, you still see clamav-0.91.2, 0.92.0, 0.92.1, and 0.93.0), it just takes some time to testing... This is one of the reasons for me staying with SUSE, even after they introduced the 10.1 software management ;-) Regards, Werner -- Werner Flamme, Abt. WKDV Helmholtz-Zentrum für Umweltforschung GmbH - UFZ Permoserstr. 15 - 04318 Leipzig Tel.: (0341) 235-1921 - Fax (0341) 235-451921 http://www.ufz.de - eMail: werner.flamme@ufz.de --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-security+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-security+help@opensuse.org
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 The Wednesday 2008-06-11 at 17:31 +0200, Werner Flamme wrote:
Marcus Meissner [11.06.2008 16:59]:
On Wed, Jun 11, 2008 at 12:41:36AM +0200, Carlos E. R. wrote:
I see this in my warn log:
Jun 10 23:11:38 nimrodel freshclam[9428]: Your ClamAV installation is OUTDATED! Jun 10 23:11:38 nimrodel freshclam[9428]: Local version: 0.93 Recommended version: 0.93.1 Jun 10 23:11:41 nimrodel freshclam[9428]: Your ClamAV installation is OUTDATED! Jun 10 23:11:41 nimrodel freshclam[9428]: Current functionality level = 29, recommended = 31
Will there be an official update through YOU?
Yes, there will be.
@Carlos: did you read the next line? "DON'T PANIC! Read http://www.clamav.net/support/faq" :-)
Certainly not! Because that line is not printed to the /var/log/warn file; I'm getting the warning every now and then in my warning log, whereas the line you mention is not logged at 'warn' level. And no, of course I haven't panicked.
There was always an update of clamav via YOU (when you use a ftp or http client to look into the update repo manually, you still see clamav-0.91.2, 0.92.0, 0.92.1, and 0.93.0), it just takes some time to testing... This is one of the reasons for me staying with SUSE, even after they introduced the 10.1 software management ;-)
No, there has been no update through YOU yet. Marcus said there will be one such, so I'll wait. No, I do not intend to go to the clamav site and roll my own. If that's what needs to be done I will uninstall clamd and continue using antivir instead. - -- Cheers, Carlos E. R. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4-svn0 (GNU/Linux) iD8DBQFIUDG7tTMYHG2NR9URAnu9AJwKPaFNwXKdHzd4pgfYs2Pj/Tp3sgCdEJVP jDNspBhCdkwlwrsmnuTwz14= =3/wY -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-security+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-security+help@opensuse.org
Carlos E. R. [11.06.2008 22:12]:
The Wednesday 2008-06-11 at 17:31 +0200, Werner Flamme wrote:
Marcus Meissner [11.06.2008 16:59]:
On Wed, Jun 11, 2008 at 12:41:36AM +0200, Carlos E. R. wrote:
I see this in my warn log:
Jun 10 23:11:38 nimrodel freshclam[9428]: Your ClamAV installation is OUTDATED! Jun 10 23:11:38 nimrodel freshclam[9428]: Local version: 0.93 Recommended version: 0.93.1 Jun 10 23:11:41 nimrodel freshclam[9428]: Your ClamAV installation is OUTDATED! Jun 10 23:11:41 nimrodel freshclam[9428]: Current functionality level = 29, recommended = 31
Will there be an official update through YOU? Yes, there will be.
@Carlos: did you read the next line? "DON'T PANIC! Read http://www.clamav.net/support/faq" :-)
Certainly not!
Because that line is not printed to the /var/log/warn file; I'm getting the warning every now and then in my warning log, whereas the line you mention is not logged at 'warn' level. And no, of course I haven't panicked.
The line resides in my /var/log/freshclam.log and is printed at boot time on the screen. So I can't understand "certainly", especially because I do not only look at the warn log but in the respective application's log, too. Besides, do you know the meaning of :-) ?
There was always an update of clamav via YOU (when you use a ftp or http client to look into the update repo manually, you still see clamav-0.91.2, 0.92.0, 0.92.1, and 0.93.0), it just takes some time to testing... This is one of the reasons for me staying with SUSE, even after they introduced the 10.1 software management ;-)
No, there has been no update through YOU yet. Marcus said there will be one such, so I'll wait. No, I do not intend to go to the clamav site and roll my own. If that's what needs to be done I will uninstall clamd and continue using antivir instead.
Don't bite me! ;-) I said that there were clamav updates via YOU for all the recent versions. So I do not see any reason why there will be no YOU update for the current version. With "no update through YOU yet" you sure mean the current version of clamav, do you? Regards, Werner -- Werner Flamme, Abt. WKDV Helmholtz-Zentrum für Umweltforschung GmbH - UFZ Permoserstr. 15 - 04318 Leipzig Tel.: (0341) 235-1921 - Fax (0341) 235-451921 http://www.ufz.de - eMail: werner.flamme@ufz.de --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-security+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-security+help@opensuse.org
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 The Thursday 2008-06-12 at 12:13 +0200, Werner Flamme wrote:
@Carlos: did you read the next line? "DON'T PANIC! Read http://www.clamav.net/support/faq" :-)
Certainly not!
Because that line is not printed to the /var/log/warn file; I'm getting the warning every now and then in my warning log, whereas the line you mention is not logged at 'warn' level. And no, of course I haven't panicked.
The line resides in my /var/log/freshclam.log and is printed at boot time on the screen. So I can't understand "certainly", especially because I do not only look at the warn log but in the respective application's log, too. Besides, do you know the meaning of :-) ?
cer@nimrodel:~> ls /var/log/freshclam.log ls: cannot access /var/log/freshclam.log: No such file or directory Of course, I can find the line if I search for it, buried inside the /var/log/mail between tons of other messages. The "warn" log is the only I continously watch for "new" problems, and the rest I look when I search for extra info. The clamd authors choosed to leave the "don't worry" out of the "warn" log :-p And sorry, I didn't notice that smiley. The thing is, if I see a program reporting something unexpected in the warn log file, I take that as important, maybe important enough to report here or in bugzilla.
There was always an update of clamav via YOU (when you use a ftp or http client to look into the update repo manually, you still see clamav-0.91.2, 0.92.0, 0.92.1, and 0.93.0), it just takes some time to testing... This is one of the reasons for me staying with SUSE, even after they introduced the 10.1 software management ;-)
No, there has been no update through YOU yet. Marcus said there will be one such, so I'll wait. No, I do not intend to go to the clamav site and roll my own. If that's what needs to be done I will uninstall clamd and continue using antivir instead.
Don't bite me! ;-) I said that there were clamav updates via YOU for all the recent versions. So I do not see any reason why there will be no YOU update for the current version. With "no update through YOU yet" you sure mean the current version of clamav, do you?
Well, of course, I mean for the one that is "official" currently for opensuse 10.3. There is some problem with the procedure here: the clamd people should tell the distro maintainers in advance that there is going to be a new version and that such versions are to be obsoleted, so that they can prepare the automatic upgrades for their distros without there being any perveived loss of security. I mean, it doesn't look good if the antivirus says "Hey, I'm obsolete", and the update is not ready. On the other hand, if updating the engine is not that crucial, then they should not write that message to the warning log. There are many programs and daemons in the distro that keep silent when there is a new version, and many of them are security-wise important. That's what I think the real problem is: that they shout "Danger, update me! with no real need. - -- Cheers, Carlos E. R. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4-svn0 (GNU/Linux) iD8DBQFIU6UptTMYHG2NR9URAnAAAJ9bkmpECKrvqRcBgL8H3iS28r7TbQCgmGiU zrV7ZsR1dhElNf8kgjAQJYE= =vtgH -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-security+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-security+help@opensuse.org
There was always an update of clamav via YOU (when you use a ftp or http
client to look into the update repo manually, you still see clamav-0.91.2, 0.92.0, 0.92.1, and 0.93.0), it just takes some time to testing... This is one of the reasons for me staying with SUSE, even after they introduced the 10.1 software management ;-)
No, there has been no update through YOU yet. Marcus said there will be one such, so I'll wait. No, I do not intend to go to the clamav site and roll my own. If that's what needs to be done I will uninstall clamd and continue using antivir instead.
Well, of course, I mean for the one that is "official" currently for opensuse 10.3.
There is some problem with the procedure here: the clamd people should tell the distro maintainers in advance that there is going to be a new version and that such versions are to be obsoleted, so that they can prepare the automatic upgrades for their distros without there being any perveived loss of security.
I mean, it doesn't look good if the antivirus says "Hey, I'm obsolete", and the update is not ready.
On the other hand, if updating the engine is not that crucial, then they should not write that message to the warning log. There are many programs and daemons in the distro that keep silent when there is a new version, and many of them are security-wise important.
That's what I think the real problem is: that they shout "Danger, update me! with no real need.
There are from time to time bugs and updates to clamav, and the normal opensuse updates take care of this problem by updating thru YOU, normally a week or so later. However there was a very serious bug found in clamav a couple of months ago that would allow remote code execution. As long as you are running version 0.93.0 you should be fine until the newest YOU updates get pushed out. I understand your point about updates being brought more current, but I guess I'll have to trust our developers to get them out as soon as they can. Jim --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-security+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-security+help@opensuse.org
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 The Monday 2008-06-16 at 07:31 -0500, Jim Flanagan wrote:
There are from time to time bugs and updates to clamav, and the normal opensuse updates take care of this problem by updating thru YOU, normally a week or so later. However there was a very serious bug found in clamav a couple of months ago that would allow remote code execution. As long as you are running version 0.93.0 you should be fine until the newest YOU updates get pushed out.
Yes, i know.
I understand your point about updates being brought more current, but I guess I'll have to trust our developers to get them out as soon as they can.
I understand that they need time to push the update on to the server, even more now with 11.0 being so close. No, I'm more concerned with the program itself shouting "wolf" before the distros have had time to prepare. - -- Cheers, Carlos E. R. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4-svn0 (GNU/Linux) iD8DBQFIVmBdtTMYHG2NR9URAjBoAJ9nYpVGA63eqep+lozREK8Ux61y4ACfdK7n DbLerp4314BYwG9P769ruTo= =aBJp -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-security+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-security+help@opensuse.org
Carlos E. R. wrote:
The Monday 2008-06-16 at 07:31 -0500, Jim Flanagan wrote:
There are from time to time bugs and updates to clamav, and the normal opensuse updates take care of this problem by updating thru YOU, normally a week or so later. However there was a very serious bug found in clamav a couple of months ago that would allow remote code execution. As long as you are running version 0.93.0 you should be fine until the newest YOU updates get pushed out.
Yes, i know.
I understand your point about updates being brought more current, but I guess I'll have to trust our developers to get them out as soon as they can.
I understand that they need time to push the update on to the server, even more now with 11.0 being so close. No, I'm more concerned with the program itself shouting "wolf" before the distros have had time to prepare.
Well I guess the question is, would you rather know about the vulnerability or not know? Jim --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-security+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-security+help@opensuse.org
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 The Wednesday 2008-06-11 at 16:59 +0200, Marcus Meissner wrote:
Will there be an official update through YOU?
Yes, there will be.
Thanks! :-) - -- Cheers, Carlos E. R. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4-svn0 (GNU/Linux) iD8DBQFIUDHZtTMYHG2NR9URAmSPAJ4pha1ZBEjy5U5Os2v1K500GwbhtwCfePGV JtVGYmM3gSajNXzdYwRS6U8= =f2D1 -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-security+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-security+help@opensuse.org
participants (5)
-
Carlos E. R. -
Carlos E. R. -
Jim Flanagan -
Marcus Meissner -
Werner Flamme