New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.

Issue 441184 link

Starred by 13 users

Issue metadata

Status: WontFix
Owner: ----
Closed: Jun 2015
Cc:
Components:
EstimatedDays: ----
NextAction: ----
OS: Windows
Pri: 2
Type: Bug



Sign in to add a comment

AntiVirus detected Malware while syncing using gclient

Reported by meghs.p...@gmail.com, Dec 11 2014

Issue description

UserAgent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/38.0.2125.111 Safari/537.36

Steps to reproduce the problem:
1. Run gclient sync --reset --with_branch_heads--jobs 16

What is the expected behavior?
Sync should proceed without any issues

What went wrong?
Our AntiVirus detected Malware during gclient sync.

I am copying logs from our AntiVirus here:

\chromium\src\third_party\WebKit\LayoutTests\fast\images\resources\missing-plte-before-trns.png	Exploit-PNGfile (Trojan)

Did this work before? N/A 

Chrome version: 38.0.1916.138  Channel: n/a
OS Version: 6.1 (Windows 7, Windows Server 2008 R2)
Flash Version: Shockwave Flash 15.0 r0

The Malware png file does not exist in the WebKit source repository.
 
Labels: -Cr-Services-Sync Hotlist-Webkit Test-Security Cr-Blink-Image
Thanks for the report. Re-assigning to blink & security.

It appears image file was added as a test case specifically to ensure the browser can render a malignant PNG without crashing. So this might be a case where Chromium and your AntiVirus are both working as intended.

See:
https://groups.google.com/a/chromium.org/forum/#!topic/blink-reviews/Oly35xA5few
@ #1 Thank you for your response. Any updates on this ?

Comment 3 by chinta@chromium.org, Dec 15 2014

Cc: chinta@chromium.org
Labels: TE-NeedFurtherTriage
Hi, any updates on this ?
Our antivirus is detecting the png file as a Malware and deleting it. Gclient runs a 'git reset --hard HEAD' causing the png file to appear to again and our Antivirus deletes this again. This issue is blocking us from making builds for CEF. Do we have any updates on this?

Thank you.

Comment 6 by chinta@chromium.org, Dec 31 2014

Labels: -TE-NeedFurtherTriage TE-NeedsFurtherTriage

Comment 7 by i...@borovkov.com, Jan 6 2015

Does uninstalling Antivirus solves the problem? 
@#5. It would be very nice to get CEF Builds running again. Is it not possible to make an exception in the antivirus for this file specifically?
We managed to get exclusions for the failing folders. We'll soon be uploading CEF builds to the website

Comment 10 by noel@chromium.org, Jun 22 2015

Status: WontFix
See #1, this is a WontFix for Cr-Blink-Image, the image was added intentionally and there are many such images in the LayoutTest fast/image/resources that the AntiVirus s/w is not even detecting.

WontFix (working as intended).

Comment 11 by ajha@chromium.org, Feb 12 2016

 Issue 575965  has been merged into this issue.

Sign in to add a comment