Release notes

latest enhancements

CGP-ClamAV

Version 1.18.3

  • Now using ClamAV 0.98.3 engine

Version 1.18

  • Now using ClamAV 0.98.1 engine

Version 1.17.2

  • Fixed: Diff update code not working correctly since 1.17
  • Fixed: A second temp directory is being created at a different level
  • Deactivated the automatic recompression of the database after diff updates to increase update speed and performance. Compressing and decompressing several times a day to save 15Mb of disk space makes no sense.

Version 1.17.1

  • Fixed a recurring crash in 1.17
  • Enabled and made compatible the nonblocking socket code on Windows, to allow cleaner connection timeouts

Version 1.17

  • Now using ClamAV 0.98 engine

Version 1.16.8

  • Now using ClamAV 0.97.8 engine

Version 1.16.7

  • Now using ClamAV 0.97.7 engine

Version 1.16.6

  • Now using ClamAV 0.97.6 engine

Version 1.16.5

  • Now using ClamAV 0.97.5 engine
  • Fixed "no database found" message during startup

Version 1.16.4

  • Now using ClamAV 0.97.4 engine

Version 1.16.3

  • Now using ClamAV 0.97.3 engine

Version 1.16.2

  • Now using ClamAV 0.97.2 engine

Version 1.16.1

  • Now using ClamAV 0.97.1 engine

Version 1.16

  • Now using ClamAV 0.97 engine

Version 1.15

  • Fixed update_third_party_db so the sanesecurity_ignore_db setting also applies to INetMsg-SpamDomains and winnow_phish.
  • Now using ClamAV 0.96.5 engine

Version 1.14

  • Now using ClamAV 0.96.4 engine

Version 1.13

  • Now using ClamAV 0.96.3 engine

Version 1.12

  • Now using ClamAV 0.96.2 engine

Version 1.11.4

  • Fixed: nobytecode command-line option doesn't apply
  • Fixed: failed assertion / abort() trap on PPC when loading newest bytecode db
  • Fixed: Spurious db functionality level warning on Windows
  • Fixed: CGPClamAV binaries are not compatible with SUSE 10 servers. Now compiled with -Wl,--hash-style=both
  • New: Linux builds compiled on CentOS 5.5. Unfortunately, CentOS 4 can't be supported anymore due to various stability and security issues, notably with zlib.

Version 1.11.3

  • Safebrowsing database now disabled by default, use -safebrowsing to enable it

Version 1.11.2

  • Actually fixed the issue reportedly fixed in 1.11.1

Version 1.11.1

  • Fixed: The filter will not start if initial update fails, even if a valid (but old) database is already present

Version 1.11

  • Now using ClamAV 0.96.1 engine
  • Fixed: The LLVM JIT (v1.10+) is not initialized properly
  • New: The LLVM JIT is enabled on OSX-PPC. It is still disabled on Solaris-Sparc due to lack of support from the engine.
  • New: using the new bytecode.cvd database (disable with -nobytecode)
  • New: using the safebrowsing database (disable with -nosafebrowsing)
  • New: using the patch database files to allow smaller database downloads
  • Updated "update_third_party_db" script to match the db directory changes in v10.0

Version 1.10.1

  • Removed some leftover debug code
  • Restored compatibility with Win2000, XP, 2003

Version 1.10.0

  • Now using ClamAV 0.96 engine which contains a lot of improvements, and a lot more code.
  • Note: the llvm optimizations are not enabled on OSX-PPC due to compilation issues and Solaris-Sparc due to lack of support. They could be enabled for PPC in a future release.

Version 1.9.7a

  • Fixed (1.9.6) In rare cases, an empty line is inserted at the top of the message, breaking its rendering in mail clients

Version 1.9.7

  • Now using ClamAV 0.95.3 engine

Version 1.9.6

  • New: The filter doesn't add headers to messages if the exact same headers are already present

Version 1.9.5

  • Now using ClamAV 0.95.2 engine

Version 1.9.4

  • New: Additionnal "raw" virus test to detect header viruses and pass the SaneSecurity test

Version 1.9.3

  • Now using ClamAV 0.95.1 engine

Version 1.9.2

  • Multi-thread support no longer experimental. Use -mt to enable multithreading
  • Now using ClamAV 0.95 engine

Version 1.9.1

  • EXPERIMENTAL: WIN32: CGP-ClamAV can act as Clam daemon (stripped-down, tcp only, default options). Enable with -clamd=3310

Version 1.9

  • EXPERIMENTAL: Multi-thread support for multi-core/processors machines. Use -mt to enable multithreading.

Version 1.8.3

  • Now using ClamAV 0.94.2 engine.

Version 1.8.2

  • Fixed: (v1.8.1) Buffer overflow in temp directory names generation, may only affect Win32 builds

Version 1.8.1

  • Now using ClamAV 0.94.1 engine.
  • New: Sample script to get third-party databases updates into CGP-ClamAV

Version 1.8.0

  • Now using ClamAV 0.94 engine.

Version 1.7.8

  • Now using ClamAV 0.93.3 engine.

Version 1.7.7

  • Now using ClamAV 0.93.2 engine.

Version 1.7.6

  • Now using ClamAV 0.93.1 engine.

Version 1.7.5

  • Now using ClamAV 0.93 engine.

Version 1.7.4

  • Now using ClamAV 0.92.1 engine.

Version 1.7.3

  • Now using ClamAV 0.92 engine.
  • Fixed: In extreme cases, the filter could fail to create a temporary file, leading to an attachment being left unscanned (win32 only)

Version 1.7.2

  • Now using ClamAV 0.91.2 engine.

Version 1.7.1

  • Now using ClamAV 0.91.1 engine.
  • FreeBSD-x86 build is now done on a FreeBSD 6 machine. Contact us if you need to run it on FreeBSD 5.5.
  • URL Phishing checks are now enabled on all builds (they were previously disabled on Windows and FreeBSD)

Version 1.7.0

  • Now using ClamAV 0.91 engine.
  • Ported to x64 architecture (x64 builds are considered beta)

Version 1.6.3

  • Now using ClamAV 0.90.3 engine.

Version 1.6.2

  • Now using ClamAV 0.90.2 engine.

Version 1.6.1

  • Now using ClamAV 0.90.1 engine.
  • Windows version is now capable of scanning binhex files. Non-Windows versions were already capable of that.

Version 1.6.0

  • Now using ClamAV 0.90 engine, which includes a lot of improvements in terms of detection rate and performance, and new phishing detection code.

Version 1.5.7

  • Now using ClamAV 0.88.7 engine.

Version 1.5.6

  • Now using ClamAV 0.88.6 engine.

Version 1.5.5

  • Now using ClamAV 0.88.5 engine.

Version 1.5.4

  • Now using ClamAV 0.88.4 engine.

Version 1.5.3

  • Now using ClamAV 0.88.3 engine.

Version 1.5.2

  • Now using ClamAV 0.88.2 engine.

Version 1.5.1

  • Now using ClamAV 0.88.1 engine.

Version 1.5.0

  • Fixed: (v1.46) The filter may fail to detect uuencoded viruses.
  • Now bypasses the initial "magic" filetype detection. The ClamAV internal scanmail() function is directly called (more efficient, more accurate since it's a mail filter)
  • Now passes all the virus tests from http://www.webmail.us/testvirus and http://www.gfi.com/emailsecuritytest/ (real virus tests only, clamav is an virus scanner, not an exploit scanner)

Version 1.4.9

  • Fixed: The X-CGP-ClamAV-Infected-By header is not reporting the virus name but an unrelated number

Version 1.4.8

  • Now using ClamAV 0.88 engine.

Version 1.4.7

  • Fixed: On Solaris/Sparc, an incorrect system call stops the filter 30 seconds after startup

Version 1.4.6

  • tempdir option implemented to specify an alternate temp directory (thanks to Ivan D for the idea)
  • The messages are now scanned in place without making a copy first, this is more efficient

Version 1.4.5

  • Fixed: The country code is not always remembered (thanks to John R. for reporting this)

Version 1.4.4

  • Now using ClamAV 0.87.1 engine.

Version 1.4.3

  • Fixed: On non-Win32 platforms, the engine sometimes output text on stderr, causing intermittent problems with CGP

Version 1.4.2

  • Removed the mirrors list, replaced by the --country|-c option.
  • Restored Proxy support. See INSTALL

Version 1.4.1

  • Added the name of the virus found in headers
  • Added the version of the filter and the clamav engine in the headers
  • Modified the log messages and removed unused code
  • Win32: Modified the way the temp directories are managed.
  • Using ClamAV 0.87 engine

Version 1.4.0

  • Ported to other platforms (linux, freebsd, solaris, osx)
  • A few minor changes
  • This version is considered beta for non-win32 platforms

Version 1.3.5

  • Now using ClamAV 0.86.2 engine.

Version 1.3.4

  • Now using ClamAV 0.86.1 engine.

Version 1.3.3

  • Now using ClamAV 0.85.1 engine.

Version 1.3.2

  • Fixed a display bug and an incorrect warning about the database being outdated

Version 1.3.1

  • Now using ClamAV 0.85 engine.

Version 1.3

  • Now using ClamAV 0.84 engine.
  • Removed the tnef extractor, ClamAV 0.84 has builtin support for tnef files.

Version 1.2

  • Rewrote the temp directory deletion procedure to be sure it doesn't loop.

Version 1.1

  • Fixed: Database keeps reloading itself

Version 1.0

  • Official release
  • Cleaned the last visible memory leak
  • Minor changes in the documentation

Version 0.3

  • Removed munpack, using functions already present in clamav, which are way better than munpack
  • CGPClamAV is now able to extract contents of winmail.dat to make the clamAV engine scan it for viruses
  • CGPClamAV passes 25 out of 27 tests from http://www.webmail.us/testvirus.
  • A few memory leaks cleaned
  • CGPClamAV cleans automatically its temp directory on startup if files remained there after an incomplete shutdown

Version 0.2

  • changed the asynch check for database. You can use an external updater (such as ClamWin's one) to update the db.

Version 0.1

  • First version. No configuration available, only the mirrors list.