Re: [clamav-users] LibClamAV Error: cli_html_normalise: style chunk size underflow

: clamav-users on behalf of Joe Sparks via clamav-users Sent: Wednesday, May 17, 2023 9:42 AM To: clamav-users@lists.clamav.net Cc: Joe Sparks Subject: [clamav-users] LibClamAV Error: cli_html_normalise: style chunk size underflow I recently installed clamscan on a Mac ARM PC. I am running

[clamav-users] LibClamAV Error: cli_html_normalise: style chunk size underflow

I recently installed clamscan on a Mac ARM PC. I am running scans of a directory and receiving this error: LibClamAV Error: cli_html_normalise: style chunk size underflow Does anyone have any insight into the cause and mitigation steps? ___ Manage

Re: [clamav-users] LibClamAV Warning: Don't know how to create filter for: Win.Downloader.LNKAgent-10001628-0

. From: clamav-users on behalf of Ralf Hildebrandt via clamav-users Sent: Tuesday, May 16, 2023 1:08 AM To: clamav-users@lists.clamav.net Cc: Ralf Hildebrandt Subject: [clamav-users] LibClamAV Warning: Don't know how to create filter for: Win.Downloader.LNKAgent-10001628-0 clamav-1.1.0

[clamav-users] LibClamAV Warning: Don't know how to create filter for: Win.Downloader.LNKAgent-10001628-0

clamav-1.1.0-1: === May 16 10:00:23 de freshclam[864]: Tue May 16 10:00:23 2023 -> daily database available for update (local version: 26907, remote version: 26908) May 16 10:00:23 de freshclam[864]: WARNING: Tue May 16 10:00:23 2023 -> *** RESULT 200, SIZE: 7213 *** Why

Re: [clamav-users] LibClamAV Warning: PNG: Unexpected early end-of-file.

Andrew C Aitchison via clamav-users wrote: On Mon, 12 Dec 2022, newcomer01 wrote: Well on my PC I changed a lot because the naming was too messy for me. I have "program" clam*d*scan for which I have a clam*d*.conf and a "program" clamscan for which I have a clamscan.conf. And then the

Re: [clamav-users] LibClamAV Warning: PNG: Unexpected early end-of-file.

at 05:34 PM) +0100 Betreff / Subject: Re: [clamav-users] LibClamAV Warning: PNG: Unexpected early end-of-file. On Mon, 12 Dec 2022, newcomer01 wrote: Well on my PC I changed a lot because the naming was too messy for me. I have "program" clam*d*scan for which I have a clam*d*.conf and a

Re: [clamav-users] LibClamAV Warning: PNG: Unexpected early end-of-file.

Von / From: Andrew C Aitchison <mailto:and...@aitchison.me.uk> An / To: Newcomer01 <mailto:newcome...@posteo.de> Gesendet / Sent: Montag, Dezember 12, 2022 um 16:33 (at 04:33 PM) +0100 Betreff / Subject: Re: [clamav-users] LibClamAV Warning: PNG: Unexpected early end-of-file. On Mon, 12 D

Re: [clamav-users] LibClamAV Warning: PNG: Unexpected early end-of-file.

On Mon, 12 Dec 2022, newcomer01 via clamav-users wrote: can nobody explain, what this message exactly mean? I Get the on lot of my E-mails LibClamAV Warning: PNG: Unexpected early end-of-file. That just means that the PNG file is either not a PNG for or is corrupted - perhaps truncated.

[clamav-users] LibClamAV Warning: PNG: Unexpected early end-of-file.

can nobody explain, what this message exactly mean? I Get the on lot of my E-mails LibClamAV Warning: PNG: Unexpected early end-of-file. Should i change something in my config for clamscan? And mybe devs of clamav reas here to, it would be really nice, if you can add the optional paramteter

Re: [clamav-users] LibClamAV Warning: fmap_readpage: pread fail

. From: clamav-users on behalf of Stephen Scotter via clamav-users Sent: Thursday, March 17, 2022 4:25 AM To: ClamAV Users ML Cc: Stephen Scotter Subject: [clamav-users] LibClamAV Warning: fmap_readpage: pread fail Hi, I noticed Clamd has unexpectantly died on two

Re: [clamav-users] LibClamAV Warning: fmap_readpage: pread fail

Hi there, On Thu, 17 Mar 2022, Stephen Scotter via clamav-users wrote: I noticed Clamd has unexpectantly died on two [VMs] ... System1 Virtual Machine CPU : 1 socket / 2 cores RAM : 2GB Ram ... OS : Debian 10 / buster Clam : ClamAV 0.103.5/26484/Thu Mar 17 08:28:38 2022 Mar 13 13:14:27

Re: [clamav-users] LibClamAV Warning: fmap_readpage: pread fail

I can't comment on this particular error but 2G of RAM is definitely insufficient and I believe 4G would be as well when freshclam is applying updates to the database as there would be 2 copies of it in RAM. Dave. On 2022-03-17 07:25, Stephen Scotter via clamav-users wrote: > Hi, > > I noticed

[clamav-users] LibClamAV Warning: fmap_readpage: pread fail

Hi, I noticed Clamd has unexpectantly died on two of my virtual machines. Investigating lead me to find similar errors in the logs on both hosts around the times I know clamd died (I'm monitoring for the existence of a clamd process with zabbix but only got around to investigating today due to

Re: [clamav-users] LibClamAV Warning: PNG: Unexpected early end-of-file

While verbose (-v) is helpful in some cases, you probably want to use the debug option to get the large volume of LibClamAV messages. I find debug is far more useful than verbose most times. Maarten Sent from a tiny keyboard > On Apr 5, 2021, at 04:17, Vivek Patil via clamav-users > wrote: >

Re: [clamav-users] LibClamAV Warning: PNG: Unexpected early end-of-file

Oh yes, I have tried that too. But only the warning line was printing. The command was: clamscan -v -i -r --cross-fs=no -f "$list_file" On Mon, Apr 5, 2021 at 12:49 PM Eero Volotinen wrote: > Just add more verbose to your scanning parameters. I think it was -v, if I > remember correctly. > >

Re: [clamav-users] LibClamAV Warning: PNG: Unexpected early end-of-file

Just add more verbose to your scanning parameters. I think it was -v, if I remember correctly. Eero On Mon, Apr 5, 2021 at 9:20 AM Vivek Patil wrote: > Eero, > > What more details do you want? > I am scanning my system using "clamscan -i -r --cross-fs=no -f > "$list_file"" using a shell

Re: [clamav-users] LibClamAV Warning: PNG: Unexpected early end-of-file

On 05/04/2021 16:20, Vivek Patil via clamav-users wrote: Eero, What more details do you want? I am scanning my system using "clamscan -i -r --cross-fs=no -f "$list_file"" using a shell script. It giving only the warning message as follows: LibClamAV Warning: PNG: Unexpected early

Re: [clamav-users] LibClamAV Warning: PNG: Unexpected early end-of-file

Hello Vivek, I am scanning my system using "clamscan -i -r --cross-fs=no -f "$list_file"" using a shell script. Please remove "-i" : "clamscan -r --cross-fs=no -f "$list_file"" ... and you will get all files scanned, including the one that trigger the warning -- Cordialement / Best

Re: [clamav-users] LibClamAV Warning: PNG: Unexpected early end-of-file

Eero, What more details do you want? I am scanning my system using "clamscan -i -r --cross-fs=no -f "$list_file"" using a shell script. It giving only the warning message as follows: LibClamAV Warning: PNG: Unexpected early end-of-file. I just wanted to find the location/name of the file. On

Re: [clamav-users] LibClamAV Warning: PNG: Unexpected early end-of-file

Just add more verbose? Eero On Mon 5. Apr 2021 at 8.58, Vivek Patil via clamav-users < clamav-users@lists.clamav.net> wrote: > Hi Team, > > I am getting a warning message while scanning the system. > I used *clamscan *command to scan. > > Details: > Warning message: LibClamAV Warning: PNG:

[clamav-users] LibClamAV Warning: PNG: Unexpected early end-of-file

Hi Team, I am getting a warning message while scanning the system. I used *clamscan *command to scan. Details: Warning message: LibClamAV Warning: PNG: Unexpected early end-of-file ClamAV version: ClamAV 0.103.1 How can we find more details, which file has the issue? -- Email Disclaimer: 

Re: [clamav-users] LibClamAV Error

Hi there, On Mon, 14 Dec 2020, Aitor Serra Martín wrote: - It's update daily. I did it mannually now: ClamAV update process started at Mon Dec 14 16:14:53 2020 daily database available for update (local version: 26016 ... This does not appear to update the rfxn databases. How are _they_

Re: [clamav-users] LibClamAV Error

Hello, - It's update daily. I did it mannually now: ClamAV update process started at Mon Dec 14 16:14:53 2020 daily database available for update (local version: 26016, remote version: 26017) Current database is 1 version behind. - The "long reports" are mails I'm getting when the cronjobs

Re: [clamav-users] LibClamAV Error

Hi there, On Mon, 14 Dec 2020, Aitor Serra Martín wrote: El 13/12/2020 a las 12:41, G.W. Haywood via clamav-users escribió: (a) your version of ClamAV: Version 0.103.0. OK. (b) how and when it was installed: was installing using custombuild scripts from Directa Admin control panel.

Re: [clamav-users] LibClamAV Error

Hello! and thank you for your help. Here are the answers: (a) your version of ClamAV: Version 0.103.0. (b) how and when it was installed: was installing using custombuild scripts from Directa Admin control panel. (c) exactly which databases you are using: ClamAV 0.103.0/26016/Sun Dec 13

Re: [clamav-users] LibClamAV Error

Hi there, On Sun, 13 Dec 2020, Aitor Serra Martín wrote: I'm getting this error all the time with complete scans: LibClamAV Error: [scan_biff_for_xlm_macros] Unexpected state value 4 ... NAME="CloudLinux" ... This message is emitted by the function scan_biff_for_xlm_macros() in

[clamav-users] LibClamAV Error

Hello, I'm getting this error all the time with complete scans: LibClamAV Error: [scan_biff_for_xlm_macros] Unexpected state value 4 Any idea about how to fix it? NAME="CloudLinux" VERSION="8.2 (Yury Malyshev)" ID="cloudlinux" ID_LIKE="rhel fedora centos" VERSION_ID="8.2" Thank you.

Re: [clamav-users] LibClamAV Error: cli_gentempfd_with_prefix: Can't create temporary file /var/lib/clamav/tmp/clamav-79a31bb0e183db96d4b7b27484373a6e.tmp: No such file or directory

On Sat, 2020-01-11 at 12:09 +, G.W. Haywood via clamav-users wrote: > Hi there, > > On Fri, 10 Jan 2020, Chris via clamav-users wrote: > > > Since upgrading to 0.102.1+dfsg-0ubuntu0.18.04.2 this past > > Wednesday > > I'm seeing the above error in my syslog. I see the same error if I > > set

Re: [clamav-users] LibClamAV Error: cli_gentempfd_with_prefix: Can't create temporary file /var/lib/clamav/tmp/clamav-79a31bb0e183db96d4b7b27484373a6e.tmp: No such file or directory

On 11/01/2020 23:09, G.W. Haywood via clamav-users wrote: Hi there, On Fri, 10 Jan 2020, Chris via clamav-users wrote: Since upgrading to 0.102.1+dfsg-0ubuntu0.18.04.2 this past Wednesday I'm seeing the above error in my syslog. I see the same error if I set the temporary path to /var/tmp

Re: [clamav-users] LibClamAV Error: cli_gentempfd_with_prefix: Can't create temporary file /var/lib/clamav/tmp/clamav-79a31bb0e183db96d4b7b27484373a6e.tmp: No such file or directory

Hi there, On Fri, 10 Jan 2020, Chris via clamav-users wrote: Since upgrading to 0.102.1+dfsg-0ubuntu0.18.04.2 this past Wednesday I'm seeing the above error in my syslog. I see the same error if I set the temporary path to /var/tmp clamd[25154]: LibClamAV Error: cli_gentempfd_with_prefix:

[clamav-users] LibClamAV Error: cli_gentempfd_with_prefix: Can't create temporary file /var/lib/clamav/tmp/clamav-79a31bb0e183db96d4b7b27484373a6e.tmp: No such file or directory

Since upgrading to 0.102.1+dfsg-0ubuntu0.18.04.2 this past Wednesday I'm seeing the above error in my syslog. I see the same error if I set the temporary path to /var/tmp clamd[25154]: LibClamAV Error: cli_gentempfd_with_prefix: Can't create temporary file

Re: [clamav-users] LibClamAV Error: cli_scangpt: could not determine sector size

Hi there, On Mon, 11 Nov 2019, Michael Newman via clamav-users wrote: On Nov 11, 2019, at 00:00,G.W. Haywood wrote: Exactly what do you do in order to obtain this message? Does it appear in a terminal session, in a log file,…? I run clamscan from a bash script with this command:

Re: [clamav-users] LibClamAV Error: cli_scangpt: could not determine sector size

> On Nov 11, 2019, at 00:00,G.W. Haywood wrote: > > Exactly what do you do in order to obtain > this message? Does it appear in a terminal session, in a log file,…? I run clamscan from a bash script with this command: /opt/local/bin/clamscan -r --quiet -i -l $log $scandir

Re: [clamav-users] LibClamAV Error: cli_scangpt: could not determine sector size

Hi there, On Sun, 10 Nov 2019, Michael Newman via clamav-users wrote: I recently had to reinstall clamav after an errant MacPorts reclaim removed my installation. After reinstalling I’m now getting this error: LibClamAV Error: cli_scangpt: could not determine sector size I’ve searched

[clamav-users] LibClamAV Error: cli_scangpt: could not determine sector size

I recently had to reinstall clamav after an errant MacPorts reclaim removed my installation. After reinstalling I’m now getting this error: LibClamAV Error: cli_scangpt: could not determine sector size I’ve searched around, but can’t find an explanation anywhere. What does it mean and what

Re: [clamav-users] LibClamAV Warning: RWX mapping denied

Unsatisfying as it may seem, the problem went away as it came, without any obvious reason. For the record, we do have SELinux active on those systems, so it is (was) very likely an SELinux issue. Thanks, Tilman Am 16.07.2018 um 17:07 schrieb Micah Snyder (micasnyd): > Hi Tilman, > > Sorry no

Re: [clamav-users] LibClamAV Warning: RWX mapping denied

Hi Tilman, Sorry no one has responded to you yet. I hate seeing questions go unanswered, but I truthfully don't know the answer. Did you find a solution? Micah Snyder ClamAV Development Talos Cisco Systems, Inc. On Jul 10, 2018, at 4:46 AM, Tilman Schmidt mailto:tschm...@cardtech.de>>

[clamav-users] LibClamAV Warning: RWX mapping denied

This morning, a bunch of RHEL6 systems greeted me with mails saying: /etc/cron.daily/freshclam: ERROR: During database load : LibClamAV Warning: RWX mapping denied: Can't allocate RWX Memory: Permission denied I found an old Red Hat Bugzilla entry (Bug 1172774) for Fedora 21 which was closed as

Re: [clamav-users] LibClamAV Warning: Bytcode 73 failed to run: Time limit reached

Just to let you know: The daily messages have become too annoying so I cleared my Java cache to get rid of the offending file. Consequently I won't be available for testing a fix anymore, at least until the problem reappears on some other file. Am 25.06.2018 um 11:12 schrieb Tilman Schmidt: > The

Re: [clamav-users] LibClamAV Warning: Bytcode 73 failed to run: Time limit reached

The problem still exists. All the messages turn out to be triggered by one single JAR file in the Java deployment cache: ~/.java/deployment/cache/6.0/6/41d72bc6-2cd5ef82: OK ~/.java/deployment/cache/6.0/6$ ls -l 41d72bc6-2cd5ef82 -rw-rw-r-- 1 tschmidt tschmidt 6300341 Jun 8 2017

[clamav-users] LibClamAV Warning: Bytcode 73 failed to run: Time limit reached

The last nightly ClamAV scan on one of my machines emitted a series of error messages I'm not familiar with: LibClamAV Warning: [Bytecode JIT]: Bytecode run timed out, timeout flag set LibClamAV Warning: [Bytecode JIT]: recovered from error LibClamAV Warning: [Bytecode JIT]: JITed code

Re: [clamav-users] LibClamAV Warning-messages

It appears as though the antivirus signatures written in bytecode ran longer than the default timeout. If you wanted to try again with a longer timeout, that's an option. To test with a longer bytecode timeout in clamscan, use the --bytecode-timeout flag and pass in the desired timeout in

[clamav-users] LibClamAV Warning-messages

Hi altogether, I wonder if you could help me with a particular warning-message I get when scanning a certain pdf-file. I downloaded a German-Russian study book as a pdf-file. When scanning it I got the following output: clamscan Russisch_bitte_von_BookFi.pdf LibClamAV Warning: [Bytecode JIT]:

Re: [clamav-users] LibClamAV Warning: Unsupported message format `http'

Tilman, Please attach here: https://bugzilla.clamav.net/show_bug.cgi?id=12002 Thanks, Steve On Fri, Dec 22, 2017 at 9:35 AM, Steven Morgan wrote: > Tilman, > > Thanks for the notification, we will check out the code. I'll open a bug > report where you can post your

Re: [clamav-users] LibClamAV Warning: Unsupported message format `http'

Tilman, Thanks for the notification, we will check out the code. I'll open a bug report where you can post your sample. Steve On Fri, Dec 22, 2017 at 9:03 AM, Tilman Schmidt wrote: > ClamAV running on Ubuntu Xenial, package version > 0.99.2+dfsg-0ubuntu0.16.04.2, emits

[clamav-users] LibClamAV Warning: Unsupported message format `http'

ClamAV running on Ubuntu Xenial, package version 0.99.2+dfsg-0ubuntu0.16.04.2, emits the following warning message when scanning one of my Thunderbird IMAP mail folders: LibClamAV Warning: Unsupported message format `http' - if you believe this file contains a virus, submit it to www.clamav.net

Re: [clamav-users] LibClamAV Warning

Hi, Thanks for the report. Tracking the issue here: https://bugzilla.clamav.net/show_bug.cgi?id=11930 Steve On Tue, Oct 17, 2017 at 2:46 AM, Hajo Locke wrote: > Hello, > > today i see a warning when starting a manuell clamscan: > > # clamscan -ir > LibClamAV Warning:

Re: [clamav-users] LibClamAV Warning

Confirmed. I see the same warnings just running freshclam when attempting to download and process daily-23959.cdiff which contains that signature. It looks to be a relatively complex logical signature that I suspect is malformed. -Al- On Mon, Oct 16, 2017 at 11:46 PM, Hajo Locke wrote: >

[clamav-users] LibClamAV Warning

Hello, today i see a warning when starting a manuell clamscan: # clamscan -ir LibClamAV Warning: Don't know how to create filter for: Win.Trojan.Dovs-6343034-0 LibClamAV Warning: cli_ac_addpatt: cannot use filter for trie Version is 0.99.2  included in Ubuntu 16.04 Thanks, Hajo

Re: [clamav-users] LibClamAV Error: cli_ac_addsig: Signature for Win.Worm.Fadok-6328944-0 is too short

Smartest thing to do would be to update to the current 0.99.2 scan engine. But you must have missed the discussion from yesterday which ended with: > From: David Raynor > Subject: Re: [clamav-users] daily-23474 & daily-23475 updates are failing to > load > Date: June

[clamav-users] LibClamAV Error: cli_ac_addsig: Signature for Win.Worm.Fadok-6328944-0 is too short

I got the following Problem since yesterday: LibClamAV Error: cli_ac_addsig: Signature for Win.Worm.Fadok-6328944-0 is too short LibClamAV Error: cli_parse_add(): Problem adding signature (3). LibClamAV Error: Problem parsing database at line 2793 LibClamAV Error: Can't load daily.ldb:

Re: [clamav-users] LibClamAV Warning

The bytecode signature behind this runtime error has been removed. On Sat, May 6, 2017 at 2:13 PM, Rudy Stebih wrote: > As I didn't hear back from anyone, I placed an exclude statement for the > file just so that I could finish the scan. These warnings are halting the >

Re: [clamav-users] LibClamAV Warning

As I didn't hear back from anyone, I placed an exclude statement for the file just so that I could finish the scan. These warnings are halting the scan! Turns out I got a second LibClamAV warning after I excluded the first one: Scanning C:\Program Files (x86)\InstallShield Installation

Re: [clamav-users] LibClamAV Warning

I thought this was fixed. -- Sent from my iPhone > On May 6, 2017, at 14:01, Rudy Stebih wrote: > > I filed a bug report for this. Bug #11837 > > Cheers, > Rudy > > >> On Wed, May 3, 2017 at 1:25 PM, David Raynor wrote: >> >> Bump for

Re: [clamav-users] LibClamAV Warning

I filed a bug report for this. Bug #11837 Cheers, Rudy On Wed, May 3, 2017 at 1:25 PM, David Raynor wrote: > Bump for visibility. I figure someone from your team should get in touch > with him, since it is not exactly an FP report. Maybe he can still submit > it as

Re: [clamav-users] LibClamAV Warning

Bump for visibility. I figure someone from your team should get in touch with him, since it is not exactly an FP report. Maybe he can still submit it as FP. Don't know. Dave R. On Tue, May 2, 2017 at 10:05 PM, Rudy Stebih wrote: > Hi Folks, > > I've been getting the

[clamav-users] LibClamAV Warning

Hi Folks, I've been getting the following error for a week or so: 'LibClamAV Warning: Bytecode runtime error at line 1226, col 4' I finally found the time to run ClamAV in verbose mode and believe this is the culprit: 'Scanning C:\Program Files (x86)\Applian Director\ClearRegCode.exe' At

Re: [clamav-users] LibClamAV Warning

This is caused by a subset of the detection pattern used in the bytecode signature BC.Win.Exploit.CVE_2017_0060-6099223-0. This is a warning and doesn't impact detection of the bytecode in ClamAV. An updated version of this signature was pushed out this morning in the latest bytecode CVD. You may

[clamav-users] LibClamAV Warning

Hi, I'm very new to Linux and have little technical knowledge. I installed ClamAV and ran a scan (sudo clamscan). I received the following warnings: LibClamAV Warning: Don't know how to create filter for: BC.Win.Exploit.CVE_2017_0060-6099223-0.{} LibClamAV Warning: cli_ac_addpatt: cannot use

[clamav-users] LibClamAV Library

Hi Team, I have an query to do the scan using LibClamAV.dll. I need to the scan using byte[]. Please do let me how to do with byte[]?. Regards, Suresh Shanmugam ___ clamav-users mailing list clamav-users@lists.clamav.net

Re: [clamav-users] LibClamAV Error: yyerror(): test.yar line 6 undefined identifier "filename"

This was on the blog YARA rules using any of the following features will be flagged in error, and the respective rules will be disabled: Single byte YARA string components – currently in the ClamAV matcher, all strings, as well as components of strings delimited by wild cards, must be

Re: [clamav-users] LibClamAV Error: yyerror(): test.yar line 6 undefined identifier "filename"

On 2016-08-11 19:32, Axb wrote: In that post aithor states: "I created some YARA rules that use the external variable „filename“ to work. LOKI and THOR use the „filename“ and other external variables by default." hmm... now how the heck do we get to happen with ClamAv? :) .. talking to

Re: [clamav-users] LibClamAV Error: yyerror(): test.yar line 6 undefined identifier "filename"

In that post aithor states: "I created some YARA rules that use the external variable „filename“ to work. LOKI and THOR use the „filename“ and other external variables by default." hmm... now how the heck do we get to happen with ClamAv? :) .. talking to myself... On 08/11/2016 07:29 PM,

Re: [clamav-users] LibClamAV Error: yyerror(): test.yar line 6 undefined identifier "filename"

Found it! https://www.bsk-consulting.de/2015/12/22/yara-rules-to-detect-uncommon-system-file-sizes/ see "rule Suspicious_Size_chrome_exe" and others... Assumed it was a "legal" keyword. On 08/11/2016 07:26 PM, Axb wrote: I picked the filename condition from a sample rule on a web site with

Re: [clamav-users] LibClamAV Error: yyerror(): test.yar line 6 undefined identifier "filename"

I picked the filename condition from a sample rule on a web site with a number of yara rules. Too bad I didn't bookmark it... Will try to find it again. On 08/11/2016 05:08 PM, Steven Morgan wrote: filename does not appear as a yara keyword:

Re: [clamav-users] LibClamAV Error: yyerror(): test.yar line 6 undefined identifier "filename"

filename does not appear as a yara keyword: http://yara.readthedocs.io/en/latest/writingrules.html Is it a new keyword not yet in a released version of yara? Did you mean filesize? On Thu, Aug 11, 2016 at 5:21 AM, Axb wrote: > Guys, > > clamscan --database=test.yar

[clamav-users] LibClamAV Error: yyerror(): test.yar line 6 undefined identifier "filename"

Guys, clamscan --database=test.yar blah.html LibClamAV Error: yyerror(): test.yar line 6 undefined identifier "filename" LibClamAV Error: cli_loadyara: failed to parse rules file test.yar, error count 1 test.yar: OK blah.html: OK test.yar rule TEST_BLAH_FILENAME { strings:

Re: [clamav-users] LibClamAV warning, cli_pdf unimplemented filter DCTDECODE

Thank you for the detailed answer; I am using the HEAD version from an OSX Homebrew install; I recently changed from stable, and had not had this warning before. Cheers, Rick On 5/20/16 02:58, Kevin Lin wrote: > This warning occurs in the new experimental pdf filter rework that is not > part of

Re: [clamav-users] LibClamAV warning, cli_pdf unimplemented filter DCTDECODE

This warning occurs in the new experimental pdf filter rework that is not part of any existing ClamAV releases (as of 0.99.2). Thus as a disclaimer, it must be stated that the version of ClamAV being used may be unstable or incomplete especially with the experimental section that this warnings is

[clamav-users] LibClamAV warning, cli_pdf unimplemented filter DCTDECODE

Hi, Where can I find info on this warning when running clamscan?: LibClamAV Warning: cli_pdf: unimplemented filter type [10] => DCTDECODE I've been searching, but I can't find much on LibClamAV and filters, much less cli_pdf or DCTDECODE. Best regards, Rick -- Rick Valenzuela Videojournalist

Re: [clamav-users] LibClamAV Warning: cli_tnef: file truncated, returning CLEAN

Hi, Looking in the code, the file was truncated, as the warning message states. The message is issued by the TNEF file parser. Returning CLEAN from the parser tells the caller(the TNEF scanner) to scan all of the previously extracted parts of the TNEF message for viruses. Hope this helps, Steve

[clamav-users] LibClamAV Warning: cli_tnef: file truncated, returning CLEAN

Hello, I would like to know what this clamd warn means: "LibClamAV Warning: cli_tnef: file truncated, returning CLEAN" I run ClamAV 0.99.1/21486/Tue Apr 5 22:19:10 2016 on amavisd and clamav-milter. In deep, I would like to know if this warning could be a issue allowing some malwares

Re: [clamav-users] LibClamAV Warning in conjunction with SWF Files

On Dec 11, 2015, at 1:58 PM, Andreas van Ohlen > wrote: LibClamAV Warning: SWF: declared output length != inflated stream size, 486465 != 795244 I am guessing that the Flash file being analyzed declared the length to be 795244 for a

[clamav-users] LibClamAV Warning in conjunction with SWF Files

Hi Guys, since the update to 0.99 on my Manjaro Linux System I get the warning LibClamAV Warning: SWF: declared output length != inflated stream size, 486465 != 795244 when scanning with "clamscan -ri". What does this mean and how can I fix it? Thanks!

Re: [clamav-users] LibClamAV Warning: cli_scanxz: decompress file size exceeds limits

Chamal, Have a look at the --max-filesize parameter on the clamscan man page and try using with a value that accommodates your file size. Steve On Fri, Sep 26, 2014 at 1:09 AM, chamal desilva chama...@yahoo.com wrote: Hi, OS: Ubuntu 14.04 64 bit ClamAv Version: ClamAV 0.98.1/19437/Fri Sep

[clamav-users] LibClamAV Warning: cli_scanxz: decompress file size exceeds limits

Hi, OS: Ubuntu 14.04 64 bit ClamAv Version: ClamAV 0.98.1/19437/Fri Sep 26 04:06:13 2014 1. Download http://llvm.org/releases/3.5.0/cfe-3.5.0.src.tar.xz 2. Scan - clamscan cfe-3.5.0.src.tar.xz 3. Receive this warning and output. LibClamAV Warning: cli_scanxz: decompress file size exceeds

Re: [clamav-users] Libclamav :: Issue with version 0.98.4 on FC20 - Can't load /usr/local/share/clamav/daily.cvd: Can't allocate memory

] Libclamav :: Issue with version 0.98.4 on FC20 - Can't load /usr/local/share/clamav/daily.cvd: Can't allocate memory gt; Date: 8 Aug 2014 12:44:39 - gt; From: Chinmay nbsp;Mahata lt;chinmay_mah...@rediffmail.comgt; gt; Subject: [clamav-users] Libclamav ::nbsp;Issue with version 0.98.4 on FC20

[clamav-users] Libclamav :: Issue with version 0.98.4 on FC20 - Can't load /usr/local/share/clamav/daily.cvd: Can't allocate memory

Hi, nbsp;nbsp;nbsp; I need to use clamav library in one of my modules. I downloaded latest version of clamav (clamav-0.98.tar.gz) and installed on my system FC-20. Then I built the code in example directory and tired to test my installation. But getting some error LibClamAV Error: Can't load

Re: [clamav-users] Libclamav :: Issue with version 0.98.4 on FC20 - Can't load /usr/local/share/clamav/daily.cvd: Can't allocate memory

On Fri, Aug 8, 2014 at 8:44 AM, Chinmay Mahata chinmay_mah...@rediffmail.com wrote: Hi, nbsp;nbsp;nbsp; I need to use clamav library in one of my modules. I downloaded latest version of clamav (clamav-0.98.tar.gz) and installed on my system FC-20. Then I built the code in example directory

Re: [clamav-users] Libclamav :: Issue with version 0.98.4 on FC20 - Can't load /usr/local/share/clamav/daily.cvd: Can't allocate memory

how much RAM do you have available? Looks like it thinks you don't have any left. On 8/8/2014 8:44 AM, Chinmay Mahata wrote: Hi, nbsp;nbsp;nbsp; I need to use clamav library in one of my modules. I downloaded latest version of clamav (clamav-0.98.tar.gz) and installed on my system FC-20.

Re: [clamav-users] Libclamav :: Issue with version 0.98.4 on FC20 - Can't load /usr/local/share/clamav/daily.cvd: Can't allocate memory

@lists.clamav.netgt; Subject: Re: [clamav-users] Libclamav :: Issue with version 0.98.4 on FC20 - Can't load /usr/local/share/clamav/daily.cvd: Can't allocate memory how much RAM do you have available? nbsp;Looks like it thinks you don't have any left. On 8/8/2014 8:44 AM, Chinmay Mahata wrote: gt; Hi

Re: [clamav-users] Libclamav :: Issue with version 0.98.4 on FC20 - Can't load /usr/local/share/clamav/daily.cvd: Can't allocate memory

Date: 8 Aug 2014 12:44:39 - From: Chinmay Mahata chinmay_mah...@rediffmail.com Subject: [clamav-users] Libclamav :: Issue with version 0.98.4 on FC20 Can't load /usr/local/share/clamav/daily.cvd: Can't allocate memory Hi, I need to use clamav library in one of my modules. I

Re: [clamav-users] Libclamav :: Issue with version 0.98.4 on FC20 - Can't load /usr/local/share/clamav/daily.cvd: Can't allocate memory

On Fri, Aug 08, 2014 at 11:13:45PM -0400, Paul Kosinski wrote: The problem turned out to be that libclamav's initialization mechanism didn't itself initialize OpenSSL, which ClamAV now (unfortunately) needs. As discussed in earlier threads, that small thing was fixed in 0.98.5 beta which you

[clamav-users] LibClamAV Warning: fmap_unneed: unneed on a unlocked page LibClamAV Warning: fmap_unneed: unneed on a unlocked page

hi! scanning a samba share gives me this warning: LibClamAV Warning: fmap_unneed: unneed on a unlocked page LibClamAV Warning: fmap_unneed: unneed on a unlocked page does anyone know what does it mean? thanks in advance, René ___ Help us build

Re: [clamav-users] LibClamAV Warning: fmap_unneed: unneed on a unlocked page LibClamAV Warning: fmap_unneed: unneed on a unlocked page

This warning is related to file map handling. This message will appear when ClamAV tried to unlock the wrong locked page of the file map. It is a temporary issue, since the page will be unlocked when the file is closed and map is unmapped anyway. There is one known issue that can lead to this

Re: [clamav-users] libclamav could not verify database (SPARCv8 cpu)

unsubscribe ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/support/ml

Re: [clamav-users] libclamav could not verify database (SPARCv8 cpu)

It may be something platform-specific. Please open a bugzilla bug at bugzilla.clamav.net. If you can attach the config.log files from both 0.97.8 and 0.98 then we can take a closer look from there. Dave R. On Sun, Sep 29, 2013 at 10:00 AM, Ari Sovijärvi listat2...@apz.fi wrote: Note that

Re: [clamav-users] libclamav could not verify database (SPARCv8 cpu)

Definitely for my case it is a sha256 calculation problem. I started to compare debug output from x86 (which works ok) and this VLIW stuff and found the following: libclamav/dsig.c cli_versig2() fails on if(!(salt = memchr(data, 0x01, BLK_LEN))) for VLIW and difference in ctx contents (compared

[clamav-users] libclamav could not verify database (SPARCv8 cpu)

Note that clamav was compiled for SPARCv8 compatible processor so for me it looks like a byte-order problem. Actually it is not a SPARC, but a VLIW processor binary compatible with x86. At least standart byte-order check in C shows little-endian. I have ClamAV running on a FreeBSD

Re: [clamav-users] libclamav could not verify database (SPARCv8 cpu)

UPDATE Hello, I tried to start a directory scan with client used clamav-0.97.7.tar.gz and fresh databases and get the following errors (actually not from stderr but using strace): LibClamAV Warning: Cannot dlopen libclamunrar_iface: file not found - unrar support unavailable LibClamAV

[clamav-users] libclamav could not verify database (SPARCv8 cpu)

Hello, I tried to start a directory scan with client used clamav-0.97.7.tar.gz and fresh databases and get the following errors (actually not from stderr but using strace): LibClamAV Warning: Cannot dlopen libclamunrar_iface: file not found - unrar support unavailable LibClamAV Warning:

[clamav-users] LibClamAV Warnings

All of our RedHat boxes that are running clam are reporting these errors (started yesterday). We run clam every day on each of these servers, in the middle of the night, and we haven't had an issue until now. It concerns me that all of them are doing this (each one reporting a different

Re: [clamav-users] LibClamAV Warnings

-Original Message- LibClamAV Warning: Bytecode run timed out in interpreter after 765000 opcodes LibClamAV Warning: Bytcode 16 failed to run: Unknown error code LibClamAV Warning: Bytecode runtime error at line 95, col 13 LibClamAV Error: Opcode 45 of type 0 is not implemented yet!

Re: [clamav-users] LibClamAV Warnings

We're looking into it, guys. Don't have an answer right now, but thanks for the info. By chance, do you have a sample that triggers this behavior? Matt On Fri, Nov 16, 2012 at 11:04 AM, Maarten Broekman mbroek...@maileig.com wrote: -Original Message- LibClamAV Warning: Bytecode run

Re: [clamav-users] LibClamAV Warnings

...@lists.clamav.net] On Behalf Of Matt Olney Sent: Friday, November 16, 2012 11:15 AM To: ClamAV users ML Subject: Re: [clamav-users] LibClamAV Warnings We're looking into it, guys. Don't have an answer right now, but thanks for the info. By chance, do you have a sample that triggers this behavior

Re: [clamav-users] LibClamAV Warnings

...@lists.clamav.net] On Behalf Of Matt Olney Sent: Friday, November 16, 2012 11:15 AM To: ClamAV users ML Subject: Re: [clamav-users] LibClamAV Warnings We're looking into it, guys. Don't have an answer right now, but thanks for the info. By chance, do you have a sample that triggers this behavior? Matt

Re: [clamav-users] LibClamAV Warnings

: Friday, November 16, 2012 11:33 AM To: ClamAV users ML Subject: Re: [clamav-users] LibClamAV Warnings Can you attach that sample to this bug: https://bugzilla.clamav.net/show_bug.cgi?id=6139 Or if you don't have and don't want a bugzilla account, you can zip it up, password protect

Re: [clamav-users] LibClamAV Warnings

...@lists.clamav.net [mailto:clamav-users- boun...@lists.clamav.net] On Behalf Of Matt Olney Sent: Friday, November 16, 2012 11:33 AM To: ClamAV users ML Subject: Re: [clamav-users] LibClamAV Warnings Can you attach that sample to this bug: https://bugzilla.clamav.net/show_bug.cgi?id=6139

Re: [clamav-users] LibClamAV Warnings

Success -Original Message- From: clamav-users-boun...@lists.clamav.net [mailto:clamav-users- boun...@lists.clamav.net] On Behalf Of Matt Olney Sent: Friday, November 16, 2012 11:44 AM To: ClamAV users ML Subject: Re: [clamav-users] LibClamAV Warnings Try now? On Fri, Nov 16

Re: [clamav-users] LibClamAV Warnings

The issue should have been fixed with bytecode.cvd version 202. Please let us know if you still have some issues. Thanks, - Alain ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml

  1   2   3   4   >