On Tue, 2005-02-08 at 16:11 +0000, Francis Stevens wrote: > > Tried the patch and it fixes the problem for all the false positives > I've seen so far, so it looks good to me. Will this make it into 0.83? > > Thanks for the rapid response. >
Yes, I would expect so.
BTW, all the "false positives" I've seen so far are also reported as
broken by the showriff utility, which was written specifically to check
these files.
For example:
$ showriff virus-2005-02-08-n0009134
Contents of file virus-2005-02-08-n0009134 (18926/0x8926 bytes):
(0x00000000) ID:<RIFF> Size: 0x000049e6
Form Type = <CDR8>
(0x0000000c) ID:<vrsn> Size: 0x00000002
(0x00000016) ID:<DISP> Size: 0x0000282c
(0x0000284a) ID:<LIST> Size: 0x00000114
List Type = <INFO>
(0x00002856) ID:<IKEY> Size: 0x00000080
(0x000028de) ID:<ICMT> Size: 0x00000080
(0x00002966) ID:<LIST> Size: 0x0000046c
List Type = <cmpr>
(0x00002972) ID:<<> Size: 0x00000f6c
(0x00002dda) ID:<LIST> Size: 0x00001bd7
List Type = <cmpr>
(0x00002de6) ID:<t> Size: 0x000053dc
***** Error: Chunk exceeds file
-trog
signature.asc
Description: This is a digitally signed message part
_______________________________________________ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
