ClamAV 1.3.0 Introduces Major Enhancements and Bug Fixes

ClamAV antivirus enhances security with the 1.3.0 release, including critical patches in versions 1.2.2 & 1.0.5.

ClamAV is an open-source antivirus engine designed to detect Trojans, viruses, malware, and other malicious threats, widely used for scanning emails on mail gateways, as it supports a range of file formats, signature languages, and utilities for automatic database updates.

In an update to its software, ClamAV has rolled out version 1.3.0, marking a major feature release, alongside the security patch versions 1.2.2 and 1.0.5, aimed at enhancing the security and functionality of its antivirus offerings. So, here’s what’s new.

ClamAV 1.3.0 Highlights

The ClamAV team has announced the stable release of ClamAV 1.3.0, a feature-packed update introducing several improvements and changes. Key among these is the added capability to extract and scan attachments found in Microsoft OneNote section files.

This functionality will be enabled by default, offering users enhanced protection against potential threats hidden in OneNote documents. However, users can turn off this feature through various options, catering to diverse user preferences and security requirements.

Moreover, ClamAV 1.3.0 has addressed compatibility and usability enhancements across different platforms and configurations. The issue when building ClamAV on the Haiku operating system has been fixed. ClamD now checks the existence of directories specified for temporary files, improving error handling and stability.

In addition, ClamAV has expanded its support to include file type recognition for compiled Python (.pyc) files, enhancing its scanning capabilities.

The release also improves decrypting PDFs with empty passwords, among other minor enhancements and bug fixes. It also resolves a warning when scanning certain HTML files and fixes infinite loops in ClamOnAcc under specific conditions.

ClamAV 1.2.2 & 1.0.5

In parallel, ClamAV has addressed critical security vulnerabilities by releasing patches 1.2.2 and 1.0.5. These updates mitigate a potential heap overflow read bug in the OLE2 file parser (CVE-2024-20290) and a possible command injection vulnerability in the ClamD service’s “VirusEvent” feature (CVE-2024-20328).

Lastly, it’s important to note that ClamAV 1.1 is now past its End-of-Life (EOL) for security fixes and will not receive further updates. Users are encouraged to migrate to the supported versions – 1.0 LTS, 1.2, or 1.3 – to ensure continued protection against threats.

The new releases are available for download on the ClamAV downloads page, GitHub Release page, and through Docker Hub, including Alpine-based images and Debian-based multi-arch images. For detailed information about all changes, refer to the release announcement.

Bobby Borisov

Bobby Borisov

Bobby, an editor-in-chief at Linuxiac, is a Linux professional with over 20 years of experience. With a strong focus on Linux and open-source software, he has worked as a Senior Linux System Administrator, Software Developer, and DevOps Engineer for small and large multinational companies.

Think You're an Ubuntu Expert? Let's Find Out!

Put your knowledge to the test in our lightning-fast Ubuntu quiz!
Ten questions to challenge yourself to see if you're a Linux legend or just a penguin in the making.

1 / 10

Ubuntu is an ancient African word that means:

2 / 10

Who is the Ubuntu's founder?

3 / 10

What year was the first official Ubuntu release?

4 / 10

What does the Ubuntu logo symbolize?

5 / 10

What package format does Ubuntu use for installing software?

6 / 10

When are Ubuntu's LTS versions released?

7 / 10

What is Unity?

8 / 10

What are Ubuntu versions named after?

9 / 10

What's Ubuntu Core?

10 / 10

Which Ubuntu version is Snap introduced?

The average score is 68%