[Bug 45852] Avira anti-virus claims joy.cpl is a virus (tarball version) TR/Crypt.ZPACK.Gen2
wine-bugs at winehq.org
wine-bugs at winehq.org
Tue Sep 18 11:03:10 CDT 2018
https://bugs.winehq.org/show_bug.cgi?id=45852
--- Comment #3 from Fred <fred at clift.org> ---
AV is up to date.
Here is the virustotal scan:
https://www.virustotal.com/#/file/25566c21ab8b095c3e67723ac7e88334c9f45d391d43340fef6201caebc8e862/
It very well could be a false-positive on their part. Are wine builds
reproducible? Could someone make sure that the source on whatever machine
builds the release isn't compromised and that building from that source
produces the same output?
Looking at the big picture, it doesn't seem that this would be the favored
point of attack if the build system were compromised by an attacker who wanted
to include malware in an opensource project. I'm leaning toward 'its a safe
false positive' myself, but it's probably worth a double check of the build
boxes.
--
Do not reply to this email, post in Bugzilla using the
above URL to reply.
You are receiving this mail because:
You are watching all bug changes.
More information about the wine-bugs
mailing list