Vagadziri Cisco yakaziviswa kuburikidza nuncio rusununguko la nyowani yekugadzirisa vhezheni yayo yemahara ClamAV 0.10 antivirus package2.4 kuitira kugadzirisa hutatu hutatu hunogona kubvumidza kuronga kubviswa kana kufambiswa kwemafaira ekupokana muchirongwa.
Kune avo vasingazive ClamAV iwe unofanirwa kuziva kuti izvi ndizvo yakavhurwa sosi antivirus uye multiplatform (Iyo ine shanduro dzeWindows, GNU / Linux, BSD, Solaris, Mac OS X uye mamwe masisitimu anoshanda eUnix).
ClamAV inopa maturusi akati wandei anonyatso gadzirirwa kuongorora email. Dhizaini yeClamAV inotyisa uye inochinja nekuda kweyakaomeswa tambo.
Iyo ine simba rekutarisa rakabatanidzwa nemutsetse wekuraira uye maturusi ekugadzirisa dhatabhesi otomatiki
Chinangwa chekutanga cheClamAV ndeche kubudirira kwegadziriro yezvishandiso izvo Ziva uye uvhare malware kubva kuemail. Imwe yemapoinzi akakosha mune iyi mhando yesoftware ndiko kukurumidza nzvimbo uye kuiswa mune chishandiso chemavhairasi matsva akawanikwa uye akaongororwa.
Izvi zvinoitwa nekuda kwekubatana kwezviuru zvevashandisi vanoshandisa ClamAv nemasaiti akaita saVirustotal.com ayo anopa mavhairasi akaongororwa.
Chii chitsva muClamAV 0.102.4?
Mune ino vhezheni itsva yeClamAV 0.102.4 vagadziri yakapa mhinduro kumatambudziko matatu akakomba izvo zvakaonekwa.
Yekutanga yavo yakanyorwa seCVE-2020-3350, inobvumira munhu asina mukana wekurwisa wemuno kuti aite zvisina kufanira kubvisa faira kana kufamba pasisitimu Ichi chikanganiso chakakomba, nekuti semuenzaniso, inogona kubvumira uyo anorwisa kuti abvise iyo / etc / passwd dhairekitori pasina mvumo inodiwa.
Iyo kusagadzikana kunokonzerwa nemamiriro ezvinhu emujaho anoitika kana uchiongorora mafaira akashata uye inobvumira mushandisi ane shell kuwana pane ino sisitimu yekukanganisa dhairekitori rekutarisa kuti aongorore nechiratidzo chekufananidzira chinonongedzera kune imwe nzira.
Somuenzaniso, anorwisa anogona kugadzira dhairekitori uye kurodha faira ine siginicha yekuyedza hutachiona, kutumidza iyi faira "passwd".
Mushure mekutanga hutachiona scan chirongwa, asi usati wabvisa iro dambudziko refaira, iwe unogona kutsiva iyo "kushandisa" dhairekitori neyekufananidza chinongedzo iyo inonongedzera kudhairekitori "/ etc", iyo ichaita kuti antivirus ibvise iyo / etc / passwd faira. Dambudziko iri rinongowanikwa chete kana uchishandisa clamscan, clamdscan uye clamonacc nesarudzo "-fambisa" kana "-bvisa"
Humwe kusagadzikana kwakagadziriswa CVE-2020-3327, CVE-2020-3481.
Kana iwe uchida kuziva zvakawanda nezvazvo unogona tarisa chinotevera chinongedzo.
Maitiro ekuisa ClamAV paLinux?
Kune avo vanofarira kugona kuisa iyi antivirus pane yavo system, vanogona kuzviita nenzira yakapusa uye ndiyo ClamAV inowanikwa mukati mezvitoro zvemazhinji maLinux kugoverwa.
Muchiitiko cheUbuntu uye zvigadzirwa zvacho, unogona kuzviisa kubva kune iyo terminal kana kubva kune system software Center.
Kugona kuisa kubva kumagumo ivo vanofanirwa kungovhura imwe pane yavo system (unogona kuzviita nenzira yekudimbudzira Ctrl + Alt + T) uye mairi ivo vanongofanira kunyora murairo unotevera:
sudo apt-get install clamav
Yenyaya yeavo vari Arch Linux vashandisi uye zvigadzirwa:
sudo pacman-S clamav
Panguva yeavo vanoshandisa Fedora uye zvigadzirwa
sudo dnf install clamav
OpenSUSE
sudo zypper install clamav
Uye vakagadzirira nayo, ivo vanenge vatove neiyi antivirus yakaiswa pane yavo system. Iye zvino sekune antivirus yese, ClamAV zvakare ine dhatabhesi yayo iyo inotora uye inotora kuita fananidzo mu "zvitsananguro" faira. Iyi faira irondedzero inozivisa iyo scanner nezvezvinhu zvisina chokwadi.
Nguva zhinji zvakakosha kuti ukwanise kugadzirisa iyi faira, iyo yatinga gadzirise kubva kune inouraya, kuti tiite izvi nyore kuita:
sudo freshclam