Richard W.M. Jones schreef op wo 17-11-2010 om 09:18 [+0000]: > According to some virus scanning (using clamav) that I'm surprised we > are doing on Fedora packages, the mingw32-nsis package is identified > thus: > > /usr/share/nsis/Stubs/zlib - Trojan.Buzus-7623 > > Upstream NSIS keep a list of false positives, which indicates that > this might be one too: > > http://nsis.sourceforge.net/NSIS_False_Positives > > In any case we are supposed to be building everything from source, so > unless we are carrying around the source for a Windows trojan, this > must be either a false positive or a major packaging error. > > Rich. I just took a look at the build logs and it looks like this file is completely built from source: i686-pc-mingw32-g++ -o build/release/stub_zlib_solid/stub_zlib.exe -s -mwindows -nostdlib -Wl,--exclude-libs,msvcrt.a -Wl,--file-alignment,512 -Wl,-e,_WinMain@16 -Wl,-Map,build/release/stub_zlib_solid/stub_zlib.map -T SCons/Config/linker_script build/release/stub_zlib_solid/bgbg.o build/release/stub_zlib_solid/components.o build/release/stub_zlib_solid/exec.o build/release/stub_zlib_solid/fileform.o build/release/stub_zlib_solid/Main.o build/release/stub_zlib_solid/plugin.o build/release/stub_zlib_solid/Ui.o build/release/stub_zlib_solid/util.o build/release/stub_zlib_solid/crc32.o build/release/stub_zlib_solid/INFBLOCK.o build/release/stub_zlib_solid/resource.o -lkernel32 -luser32 -lgdi32 -lshell32 -ladvapi32 -lcomdlg32 -lcomctl32 -lole32 -lversion -luuid Install file: "build/release/stub_zlib/stub_zlib.exe" as "/home/erik/rpmbuild/BUILDROOT/mingw32-nsis-2.46-1.fc15.x86_64/usr/share/nsis/Stubs/zlib" (stub_zlib.map is an auto-generated file during the build) This looks like a false positive of clamav to me.

Erik van Pienbroek wrote: > This looks like a false positive of clamav to me. Has anybody already uploaded it to http://cgi.clamav.net/sendvirus.cgi (selecting the "false positive" option)? If not, please do so; the sooner we get ClamAV fixed, the better.