Details
-
Bug
-
Resolution: Not a Bug
-
Major
-
None
-
26.1.1.Final
-
None
-
-
---
-
---
Description
Wildfly is flagged to potentially contain malware by clamav scanner.
The malware that is found is tagged by clamav as PUA.Html.Exploit.CVE_2012_0469-1
I believe this is false positive report: It is originating from Pouchdb project, included in HAL console. I've written details at https://github.com/pouchdb/pouchdb/issues/8521 as well as reported this to clamav as false positive https://www.clamav.net/reports/fp but there has been no response so far.
This presents a problem when there is a policy of not delivering software with any potential malware findings - now Wildfly releases are flagged to potentially contain malware.