Skip to content
This repository has been archived by the owner on Apr 22, 2023. It is now read-only.

AVG AntiVirus Flagging files in Node source distribution as Viruses #3117

Closed
mikechambers opened this issue Apr 15, 2012 · 2 comments
Closed

AVG AntiVirus Flagging files in Node source distribution as Viruses #3117

mikechambers opened this issue Apr 15, 2012 · 2 comments

Comments

@mikechambers
Copy link

node-v0.6.15 Windows

AVG AntiVirus Free Edition 2012
Version : 2012.0.2127
Virus database version : 2411/4938

Flags the following files:

"";"C:\Users\mesh\Downloads\node-v0.6.15\test\pummel\test-net-many-clients.js";"Virus found Script/Exploit";"Moved to Virus Vault"
"";"C:\Users\mesh\Downloads\node-v0.6.15\test\pummel\test-net-throttle.js";"Virus found Script/Exploit";"Moved to Virus Vault"
"";"C:\Users\mesh\Downloads\node-v0.6.15\test\simple\test-net-large-string.js";"Virus found Script/Exploit";"Moved to Virus Vault"

Which are from the node source:

node-v0.6.15.tar.gz
@Sh4rK
Copy link

Sh4rK commented Apr 15, 2012

Most probably it flags them because they build up huge strings, which are often used to carry out stack overflow exploits.

@konobi
Copy link

konobi commented Apr 15, 2012

Contact your anti-virus tech support and report false positives.

@konobi konobi closed this as completed Apr 15, 2012
richardlau pushed a commit to ibmruntimes/node that referenced this issue Oct 6, 2015
@rvagg
2015-10-05, Version 4.1.2 (Stable) Release
820735d 
Notable changes

* http:
  - Fix out-of-order 'finish' event bug in pipelining that can abort
    execution, fixes DoS vulnerability CVE-2015-7384
    (Fedor Indutny) nodejs#3128
  - Account for pending response data instead of just the data on the
    current request to decide whether pause the socket or not
    (Fedor Indutny) nodejs#3128
* libuv: Upgraded from v1.7.4 to v1.7.5, see release notes for details
  (Saúl Ibarra Corretgé) nodejs#3010
  - A better rwlock implementation for all Windows versions
  - Improved AIX support
* v8:
  - Upgraded from v4.5.103.33 to v4.5.103.35 (Ali Ijaz Sheikh) nodejs#3117
  - Backported f782159 from v8's upstream to help speed up Promise
    introspection (Ben Noordhuis) nodejs#3130
  - Backported c281c15 from v8's upstream to add JSTypedArray length
    in post-mortem metadata (Julien Gilli) nodejs#3031

PR-URL: nodejs/node#3128
richardlau pushed a commit to ibmruntimes/node that referenced this issue Oct 6, 2015
@rvagg
2015-10-05, Version 4.1.2 (Stable) Release
85df6ad 
Notable changes

* http:
  - Fix out-of-order 'finish' event bug in pipelining that can abort
    execution, fixes DoS vulnerability CVE-2015-7384
    (Fedor Indutny) nodejs#3128
  - Account for pending response data instead of just the data on the
    current request to decide whether pause the socket or not
    (Fedor Indutny) nodejs#3128
* libuv: Upgraded from v1.7.4 to v1.7.5, see release notes for details
  (Saúl Ibarra Corretgé) nodejs#3010
  - A better rwlock implementation for all Windows versions
  - Improved AIX support
* v8:
  - Upgraded from v4.5.103.33 to v4.5.103.35 (Ali Ijaz Sheikh) nodejs#3117
  - Backported f782159 from v8's upstream to help speed up Promise
    introspection (Ben Noordhuis) nodejs#3130
  - Backported c281c15 from v8's upstream to add JSTypedArray length
    in post-mortem metadata (Julien Gilli) nodejs#3031

PR-URL: nodejs/node#3128
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@konobi @mikechambers @Sh4rK