After six months of development, Cisco has announced the release of the free Antivirus package clamav 1.4.0. The project was acquired by Cisco in 2013 after the purchase of Sourcefire, which was developing Clamav and Snort. The project code is distributed under the GPLV2 license. Branch 1.4.0 is classified as the usual branch (not LTS), with updates published for at least 4 months after the release of the next branch. Non-LTS branches have the option to load the signature base for at least 4 months after the release of the next branch.
Key changes in Clamav 1.4.0 include:
- Added support for checking the contents of archives in ALZ, LHA, and LZH formats.
- Introduced the ability to disable unclear images (Fuzzy Hashing) to identify similar objects with a certain probability, useful for blocking images used in phishing or malware. Clamscan now offers options to control image scanning and fuzzy hashing, with Clamd incorporating corresponding options.
- Provided cross-compilation instructions for ARM64 (AARCH64) architecture on Linux and Windows.
- Freshclam now includes warnings for blocking or restricting traffic, including Cloudflare Ray ID.
- Removed unnecessary memory testing when the size is fixed or calculated based on reliable sources.
- Implemented optimization that disconnects file calculations when the cache of verified files is disabled.
- Improved Systemd service for launching Clamonacc.
- Enhanced assembly scenarios using cmake.
- Stopped the formation of ready-made 32-bit packages for Linux, while retaining the ability to assemble for 32-bit systems from original texts.
- Initiated the formation of assemblies for Windows prepared for ARM64 architecture, with no ready-made ARM64 packages for Linux currently available.
- Released Clamav Bytecode Compiler 1.4.0, upgraded to use LLVM 16 and generating multiple files with separate objects instead of one file for all compilation passes.
/Reports, release notes, official announcements.