Сегодня внезапно:
Threat name: Exploit.CVE-2015-2426.1
Isolated: 21:40 28/07/2015
Quarantine type: System quarantine
Object name: DejaVuSerif.ttf
Owner: root
Modified: 18:46 25/08/2013
Size: 358.65 KB
Origin path:
/usr/share/fonts/truetype/dejavu/DejaVuSerif.ttf
ОС - Linux Mint 17.2, DrWeb 10.1 из репозитория.
Подозреваемый, согласно базе dpkg, принадлежит пакету fonts-dejavu-core
sudo apt contains /usr/share/fonts/truetype/dejavu/DejaVuSerif.ttf fonts-dejavu-core: /usr/share/fonts/truetype/dejavu/DejaVuSerif.ttf
Результат проверки пакета debsums :
sudo debsums fonts-dejavu-core /usr/share/doc/fonts-dejavu-core/AUTHORS OK /usr/share/doc/fonts-dejavu-core/BUGS OK /usr/share/doc/fonts-dejavu-core/README OK /usr/share/doc/fonts-dejavu-core/changelog.Debian.gz OK /usr/share/doc/fonts-dejavu-core/copyright OK /usr/share/doc/fonts-dejavu-core/langcover.txt.gz OK /usr/share/doc/fonts-dejavu-core/status.txt.gz OK /usr/share/doc/fonts-dejavu-core/unicover.txt.gz OK /usr/share/fonts/truetype/dejavu/DejaVuSans-Bold.ttf OK /usr/share/fonts/truetype/dejavu/DejaVuSans.ttf OK /usr/share/fonts/truetype/dejavu/DejaVuSansMono-Bold.ttf OK /usr/share/fonts/truetype/dejavu/DejaVuSansMono.ttf OK /usr/share/fonts/truetype/dejavu/DejaVuSerif-Bold.ttf OK debsums: missing file /usr/share/fonts/truetype/dejavu/DejaVuSerif.ttf (from fonts-dejavu-core package)
Попытка переустановить пакет приводит к повторному удалению файла в карантин.
Ложное срабатывание?