Sometimes cPanel can be late with pushing out critical updates for third-party software. At the time of this writing, cPanel’s latest release of ClamAV is 0.91 which was determined to have a major security exploit, so all users are encouraged to update to 0.92. This upgrade guide assumes that you used cPanel’s plugin installer to successfully run ClamAV on your system.
cd /usr/local/cpanel/modules-install/clamavconnector-Linux-i686
wget http://freshmeat.net/redir/clamav/29355/url_tgz/clamav-0.92.tar.gz
wget http://downloads.sourceforge.net/clamav/clamav-0.92.tar.gz.sig
tar -xvzf clamav-0.92.tar.gz
wget http://missysadmin.com/files/clamav/install2
chmod 755 install2
You’ll need to check the 2nd and 3rd line in the install2 script to make sure they match the old and new versions of ClamAV. To find the old version, run clamd –version.
AVV=0.92
AVVOLD=0.91.2
From here, just run ./install2 and let the installation run. You can confirm the upgrade by calling the binary with the version switch:
root@server [~]# clamd –version
ClamAV 0.91.2/5186/Wed Dec 19 22:38:25 2007
At this point it’s also a good idea to uncheck the ‘install and keep updated’ box for ClamAV in WHM.