Today, we are publishing ClamAV 1.5.1.
This version has been released shortly after ClamAV 1.5.0 in order to address several significant issues that were identified following its publication.
The release files for the patch versions are available for download on the ClamAV downloads page, on the GitHub Release page, and through Docker Hub. The images on Docker Hub may not be immediately available on release day.
ClamAV 1.5.1 is a patch release with the following fixes:
Fixed a significant performance issue when scanning some PE files
Fixed an issue recording file entries from a ZIP archive central directory which resulted in "Heuristics.Limits.Exceeded.MaxFiles" alerts when using the ClamScan
--alert-exceeds-maxcommand line option or ClamDAlertExceedsMaxconfig file optionImproved performance when scanning TNEF email attachments
Fixed an issue with recording metadata for OOXML office documents
Fixed an issue with signature matches for VBA in OLE2 office documents
Loosened overly restrictive rules for embedded file identification and increased the limit for finding PE files embedded in other PE files
Fixed an issue with extracting some RAR archives embedded in other files
Fixed an issue with calculating fuzzy hashes affecting some images by updating the version for several Rust library dependencies
- This release does not require a newer version of the Rust compiler toolchain than what was required for ClamAV 1.5.0
