Release notes

latest enhancements

CGP-ClamAV

Version 1.19.4

• Now using ClamAV 0.99.4

Version 1.19.3

• Now using ClamAV 0.99.3 engine and OpenSSH 1.0.2n

Version 1.19.2

• Now using ClamAV 0.99.2 engine

Version 1.19.1

• Now using ClamAV 0.99.1 engine

Version 1.19

• Now using ClamAV 0.99 engine

Version 1.18.7a

• Fixed: Database should be reloaded when daily.cld is touched, but is not (third-party database support)

Version 1.18.7

• Now using ClamAV 0.98.7 engine

Version 1.18.6

• Now using ClamAV 0.98.6 engine

Version 1.18.5

• Now using ClamAV 0.98.5 engine

Version 1.18.4a

• Fixed issues with all non-Windows platforms

Version 1.18.4

• Now using ClamAV 0.98.4 engine

Version 1.18.3

• Now using ClamAV 0.98.3 engine

Version 1.18

• Now using ClamAV 0.98.1 engine

Version 1.17.2

• Fixed: Diff update code not working correctly since 1.17
• Fixed: A second temp directory is being created at a different level
• Deactivated the automatic recompression of the database after diff updates to increase update speed and performance. Compressing and decompressing several times a day to save 15Mb of disk space makes no sense.

Version 1.17.1

• Fixed a recurring crash in 1.17
• Enabled and made compatible the nonblocking socket code on Windows, to allow cleaner connection timeouts

Version 1.17

• Now using ClamAV 0.98 engine

Version 1.16.8

• Now using ClamAV 0.97.8 engine

Version 1.16.7

• Now using ClamAV 0.97.7 engine

Version 1.16.6

• Now using ClamAV 0.97.6 engine

Version 1.16.5

• Now using ClamAV 0.97.5 engine
• Fixed "no database found" message during startup

Version 1.16.4

• Now using ClamAV 0.97.4 engine

Version 1.16.3

• Now using ClamAV 0.97.3 engine

Version 1.16.2

• Now using ClamAV 0.97.2 engine

Version 1.16.1

• Now using ClamAV 0.97.1 engine

Version 1.16

• Now using ClamAV 0.97 engine

Version 1.15

• Fixed update_third_party_db so the sanesecurity_ignore_db setting also applies to INetMsg-SpamDomains and winnow_phish.
• Now using ClamAV 0.96.5 engine

Version 1.14

• Now using ClamAV 0.96.4 engine

Version 1.13

• Now using ClamAV 0.96.3 engine

Version 1.12

• Now using ClamAV 0.96.2 engine

Version 1.11.4

• Fixed: nobytecode command-line option doesn't apply
• Fixed: failed assertion / abort() trap on PPC when loading newest bytecode db
• Fixed: Spurious db functionality level warning on Windows
• Fixed: CGPClamAV binaries are not compatible with SUSE 10 servers. Now compiled with -Wl,--hash-style=both
• New: Linux builds compiled on CentOS 5.5. Unfortunately, CentOS 4 can't be supported anymore due to various stability and security issues, notably with zlib.

Version 1.11.3

• Safebrowsing database now disabled by default, use -safebrowsing to enable it

Version 1.11.2

• Actually fixed the issue reportedly fixed in 1.11.1

Version 1.11.1

• Fixed: The filter will not start if initial update fails, even if a valid (but old) database is already present

Version 1.11

• Now using ClamAV 0.96.1 engine
• Fixed: The LLVM JIT (v1.10+) is not initialized properly
• New: The LLVM JIT is enabled on OSX-PPC. It is still disabled on Solaris-Sparc due to lack of support from the engine.
• New: using the new bytecode.cvd database (disable with -nobytecode)
• New: using the safebrowsing database (disable with -nosafebrowsing)
• New: using the patch database files to allow smaller database downloads
• Updated "update_third_party_db" script to match the db directory changes in v10.0

Version 1.10.1

• Removed some leftover debug code
• Restored compatibility with Win2000, XP, 2003

Version 1.10.0

• Now using ClamAV 0.96 engine which contains a lot of improvements, and a lot more code.
• Note: the llvm optimizations are not enabled on OSX-PPC due to compilation issues and Solaris-Sparc due to lack of support. They could be enabled for PPC in a future release.

Version 1.9.7a

• Fixed (1.9.6) In rare cases, an empty line is inserted at the top of the message, breaking its rendering in mail clients

Version 1.9.7

• Now using ClamAV 0.95.3 engine

Version 1.9.6

• New: The filter doesn't add headers to messages if the exact same headers are already present

Version 1.9.5

• Now using ClamAV 0.95.2 engine

Version 1.9.4

• New: Additionnal "raw" virus test to detect header viruses and pass the SaneSecurity test

Version 1.9.3

• Now using ClamAV 0.95.1 engine

Version 1.9.2

• Multi-thread support no longer experimental. Use -mt to enable multithreading
• Now using ClamAV 0.95 engine

Version 1.9.1

• EXPERIMENTAL: WIN32: CGP-ClamAV can act as Clam daemon (stripped-down, tcp only, default options). Enable with -clamd=3310

Version 1.9

• EXPERIMENTAL: Multi-thread support for multi-core/processors machines. Use -mt to enable multithreading.

Version 1.8.3

• Now using ClamAV 0.94.2 engine.

Version 1.8.2

• Fixed: (v1.8.1) Buffer overflow in temp directory names generation, may only affect Win32 builds

Version 1.8.1

• Now using ClamAV 0.94.1 engine.
• New: Sample script to get third-party databases updates into CGP-ClamAV

Version 1.8.0

• Now using ClamAV 0.94 engine.

Version 1.7.8

• Now using ClamAV 0.93.3 engine.

Version 1.7.7

• Now using ClamAV 0.93.2 engine.

Version 1.7.6

• Now using ClamAV 0.93.1 engine.

Version 1.7.5

• Now using ClamAV 0.93 engine.

Version 1.7.4

• Now using ClamAV 0.92.1 engine.

Version 1.7.3

• Now using ClamAV 0.92 engine.
• Fixed: In extreme cases, the filter could fail to create a temporary file, leading to an attachment being left unscanned (win32 only)

Version 1.7.2

• Now using ClamAV 0.91.2 engine.

Version 1.7.1

• Now using ClamAV 0.91.1 engine.
• FreeBSD-x86 build is now done on a FreeBSD 6 machine. Contact us if you need to run it on FreeBSD 5.5.
• URL Phishing checks are now enabled on all builds (they were previously disabled on Windows and FreeBSD)

Version 1.7.0

• Now using ClamAV 0.91 engine.
• Ported to x64 architecture (x64 builds are considered beta)

Version 1.6.3

• Now using ClamAV 0.90.3 engine.

Version 1.6.2

• Now using ClamAV 0.90.2 engine.

Version 1.6.1

• Now using ClamAV 0.90.1 engine.
• Windows version is now capable of scanning binhex files. Non-Windows versions were already capable of that.

Version 1.6.0

• Now using ClamAV 0.90 engine, which includes a lot of improvements in terms of detection rate and performance, and new phishing detection code.

Version 1.5.7

• Now using ClamAV 0.88.7 engine.

Version 1.5.6

• Now using ClamAV 0.88.6 engine.

Version 1.5.5

• Now using ClamAV 0.88.5 engine.

Version 1.5.4

• Now using ClamAV 0.88.4 engine.

Version 1.5.3

• Now using ClamAV 0.88.3 engine.

Version 1.5.2

• Now using ClamAV 0.88.2 engine.

Version 1.5.1

• Now using ClamAV 0.88.1 engine.

Version 1.5.0

• Fixed: (v1.46) The filter may fail to detect uuencoded viruses.
• Now bypasses the initial "magic" filetype detection. The ClamAV internal scanmail() function is directly called (more efficient, more accurate since it's a mail filter)
• Now passes all the virus tests from http://www.webmail.us/testvirus and http://www.gfi.com/emailsecuritytest/ (real virus tests only, clamav is an virus scanner, not an exploit scanner)

Version 1.4.9

• Fixed: The X-CGP-ClamAV-Infected-By header is not reporting the virus name but an unrelated number

Version 1.4.8

• Now using ClamAV 0.88 engine.

Version 1.4.7

• Fixed: On Solaris/Sparc, an incorrect system call stops the filter 30 seconds after startup

Version 1.4.6

• tempdir option implemented to specify an alternate temp directory (thanks to Ivan D for the idea)
• The messages are now scanned in place without making a copy first, this is more efficient

Version 1.4.5

• Fixed: The country code is not always remembered (thanks to John R. for reporting this)

Version 1.4.4

• Now using ClamAV 0.87.1 engine.

Version 1.4.3

• Fixed: On non-Win32 platforms, the engine sometimes output text on stderr, causing intermittent problems with CGP

Version 1.4.2

• Removed the mirrors list, replaced by the --country|-c option.
• Restored Proxy support. See INSTALL

Version 1.4.1

• Added the name of the virus found in headers
• Added the version of the filter and the clamav engine in the headers
• Modified the log messages and removed unused code
• Win32: Modified the way the temp directories are managed.
• Using ClamAV 0.87 engine

Version 1.4.0

• Ported to other platforms (linux, freebsd, solaris, osx)
• A few minor changes
• This version is considered beta for non-win32 platforms

Version 1.3.5

• Now using ClamAV 0.86.2 engine.

Version 1.3.4

• Now using ClamAV 0.86.1 engine.

Version 1.3.3

• Now using ClamAV 0.85.1 engine.

Version 1.3.2

• Fixed a display bug and an incorrect warning about the database being outdated

Version 1.3.1

• Now using ClamAV 0.85 engine.

Version 1.3

• Now using ClamAV 0.84 engine.
• Removed the tnef extractor, ClamAV 0.84 has builtin support for tnef files.

Version 1.2

• Rewrote the temp directory deletion procedure to be sure it doesn't loop.

Version 1.1

• Fixed: Database keeps reloading itself

Version 1.0

• Official release
• Cleaned the last visible memory leak
• Minor changes in the documentation

Version 0.3

• Removed munpack, using functions already present in clamav, which are way better than munpack
• CGPClamAV is now able to extract contents of winmail.dat to make the clamAV engine scan it for viruses
• CGPClamAV passes 25 out of 27 tests from http://www.webmail.us/testvirus.
• A few memory leaks cleaned
• CGPClamAV cleans automatically its temp directory on startup if files remained there after an incomplete shutdown

Version 0.2

• changed the asynch check for database. You can use an external updater (such as ClamWin's one) to update the db.

Version 0.1

• First version. No configuration available, only the mirrors list.