Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fixed false positive ClamAV bug in SaxXmlParser.php #59

Merged
merged 1 commit into from Jul 15, 2017
Merged

Fixed false positive ClamAV bug in SaxXmlParser.php #59

merged 1 commit into from Jul 15, 2017

Conversation

brammittendorff
Copy link
Contributor

@brammittendorff brammittendorff commented Jun 26, 2017
edited

  • Fixed false positive ClamAV bug in the SaxXmlParser thanks to @iman61

See Issue:
#56

Scan result after the fix (files 499, malware hits 0, cleaned hits 0, time 9s):

[bram@nerd ~]$ maldet -u && maldet -d
Linux Malware Detect v1.6.1
            (C) 2002-2017, R-fx Networks <proj@rfxn.com>
            (C) 2017, Ryan MacDonald <ryan@rfxn.com>
This program may be freely redistributed under the terms of the GNU GPL v2

maldet(27091): {sigup} performing signature update check...
maldet(27091): {sigup} local signature set is version 2017051530038
maldet(27091): {sigup} latest signature set already installed
Linux Malware Detect v1.6.1
            (C) 2002-2017, R-fx Networks <proj@rfxn.com>
            (C) 2017, Ryan MacDonald <ryan@rfxn.com>
This program may be freely redistributed under the terms of the GNU GPL v2

maldet(27191): {update} checking for available updates...
maldet(27191): {update} hashing install files and checking against server...
/usr/local/maldetect/internals/functions: line 1842: /usr/local/maldetect/internals/VERSION.hash: Permission denied
maldet(27191): {update} latest version already installed.
[bram@nerd ~]$ maldet -a /home/bram/PHPTAL/
Linux Malware Detect v1.6.1
            (C) 2002-2017, R-fx Networks <proj@rfxn.com>
            (C) 2017, Ryan MacDonald <ryan@rfxn.com>
This program may be freely redistributed under the terms of the GNU GPL v2

maldet(27408): {scan} signatures loaded: 16561 (13831 MD5 | 1951 HEX | 779 YARA | 0 USER)
maldet(27408): {scan} building file list for /home/bram/PHPTAL/, this might take awhile...
maldet(27408): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6
maldet(27408): {scan} file list completed in 0s, found 499 files...
maldet(27408): {scan} found clamav binary at /usr/bin/clamscan, using clamav scanner engine...
maldet(27408): {scan} scan of /home/bram/PHPTAL/ (499 files) in progress...
maldet(27408): {scan} clamscan returned an error, check /usr/local/maldetect/pub/bram/clamscan_log for more details!

maldet(27408): {scan} scan completed on /home/bram/PHPTAL/: files 499, malware hits 0, cleaned hits 0,  time 9s

@brammittendorff
Update SaxXmlParser.php
ce595d3 
- Fixed false positive ClamAV bug in the SaxXmlParser
@brammittendorff brammittendorff changed the title Update SaxXmlParser.php Fixed false positive ClamAV bug in SaxXmlParser.php Jun 26, 2017
@Potherca Potherca self-requested a review July 5, 2017 19:01
@Potherca Potherca merged commit de4c466 into phptal:master Jul 15, 2017
@Potherca Potherca mentioned this pull request Jul 15, 2017
Merged
@Potherca Potherca mentioned this pull request Aug 29, 2017
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Potherca Potherca Potherca approved these changes

Assignees
No one assigned
Labels
bug - confirmed security
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@brammittendorff @Potherca