Page MenuHomePhabricator

Extension:TimedMediaHandler - ogv-worker-video/audio.js files
Closed, DeclinedPublic


For some reason, cPaenl's Virus Scanner is indicating the extension javascript files (ogv-worker-audio.js and ogv-worker-video.js) as viruses of type "Html.Exploit.CVE_2016_7288-5475092-0".

Is this just a known false-positive issue?

Event Timeline

Bawolff added subscribers: brion, Bawolff.

Its not a "known" false positive but its almost certainly a false positive.

Sounds like a false positive, certainly ogv.js is not an exploit. :) Should report upstream to cpanel or clamav or whatever is doing the scanning?

I've submitted them upstream to clamav for false positive checking.

Having T165019 in mind I'd say it's another false positive...

I'm going to resolve this bug. There's literally nothing we can do here.

Bawolff changed the task status from Invalid to Declined.Jul 19 2017, 6:37 AM
Bawolff changed the visibility from "Custom Policy" to "Public (No Login Required)".