Skip to content

Releases: greenbone/gvm-libs

GVM Libraries v10.0.2

12 May 16:24
3d0150e
Compare
Choose a tag to compare

This is the second patch release of the gvm-libs module 10.0 for the
Greenbone Vulnerability Management 10 (GVM-10) framework.

Main changes compared to gvm-libs 10.0.1:

  • Fix trust and file handling for S/MIME
  • Don't create an entity tree during read_string_c

GVM Libraries v11.0.0

11 Oct 09:25
Compare
Choose a tag to compare

Added

  • Allow to configure the path to the redis socket via CMake #256
  • A new data model for unified handling of cross references in the NVT meta data as been added. All previous API elements to handle cve, bid, xref have been removed. #225 #232.
  • Add function to get an osp scan status and a enum type for the different status #259
  • API functions for NVTI to handle timestamps #261
  • API function for NVTI to add a single tag #263
  • Add osp_get_performance_ext() function. #262
  • Add libldap2-dev to prerequisites. #249
  • Add function osp_get_vts_filtered(). #251
  • Add explicit attributes in nvti struct. #258

Changed

  • Change the default path to the redis socket to /run/redis/redis.sock #256
  • Handle EAI_AGAIN in gvm_host_reverse_lookup() IPv6 case and function refactor. #229
  • Prevent g_strsplit to be called with NULL. #238
  • Timestamps for NVTI modification date and creation date now internally handled as seconds since epoch. #265
  • The tag cvss_base is not added to redis anymore. #267
  • Functions in osp.c with error as argument, will set the error if the connection is missing. #268
  • Make QoD Type an explicit element of struct nvti. #250
  • Use API to access nvti information. #252
  • Make the nvti struct internal. #253
  • Make solution and solution_type explicit for nvti. #255
  • Internalize struct nvtpref_t. #260
  • Extend redis connection error msg with actual path. #264

Fixed

  • Prevent g_strsplit to be called with NULL. #238
  • Check filter before using it in osp_get_vts_ext. #266

Removed

  • Remove inconsistent delays in kb routines. #230

GVM Libraries v10.0.1

17 Jul 10:17
Compare
Choose a tag to compare

This is the first patch release of the gvm-libs module 10.0 for the
Greenbone Vulnerability Management 10 (GVM-10) framework.

Main changes compared to gvm-libs 10.0.0:

  • An issue which caused values in the nvticache not being removed has
    been addressed.
  • An issue during kb search which caused to reach the limit of open
    file descriptors has been addressed.
  • Hostnames and vhosts are added always in lower-case format.
  • The error message when the plugin feed version file is not found is shown
    only once.
  • An issue caused when a hostname entry is removed has been addressed.
  • Multiple certificate formats for S/MIME are allowed. The S/MIME email
    encryption accepts the more common PEM X.509 certificate format in
    addition to PEM-encoded PKCS#7.
  • The CMake building process was improved.
  • Delays in kb routines have been removed.

GVM Libraries v10.0.0

05 Apr 09:48
Compare
Choose a tag to compare

This is the first release of the gvm-libs module 10.0 for the Greenbone
Vulnerability Management 10 (GVM-10) framework.

It derives from the former openvas-libraries module. Any elements of the
old module that were used by OpenVAS Scanner only, were moved into the
module openvas-scanner. Also the protocol OMP was renamed to GMP.

Compared to the previous gvm-libs major release, it covers
various improvements for the GVM services and applications, as well as a
number of significant advances and clean-ups.

Main changes compared to gvm-libs 1.0:

  • Performance fixes related to handling large sets of hosts have been done.
  • An issue which caused duplicated or removed values in the nvticache as
    addressed.
  • The function gvm_hosts_shuffle has been improved.
  • Performance fixes related to handling large sets of hosts have been done.
  • Several code improvements and clean-ups have been done.
  • Memory management issues have been addressed.

GVM Libraries v1.0.0

31 Jan 09:42
Compare
Choose a tag to compare

This is the first release of the gvm-libs module 1.0 for the Greenbone
Vulnerability Management 10 (GVM-10) framework.

It derives from the former openvas-libraries module. Any elements of the
old module that were used by OpenVAS Scanner only, were moved into the
module openvas-scanner. Also the protocol OMP was renamed to GMP.

Compared to the previous openvas-libraries major release, it covers
various improvements for the GVM services and applications, as well as a
number of significant advances and clean-ups.

Main changes compared to gvm-libs 1.0+beta2:

  • Several changes in KB backend has been done to improve Redis performance.
  • New filename placeholders for the last modification date were added.
  • Initialization of gcrypt was improved to avoid trying to initialize the
    memory pool twice.
  • An issue which causes the loss of the path to the configuration file has
    been addressed.
  • Code used for Windows support has been removed.
  • Memory management issues have been addressed.
  • Several code improvements and clean-ups have been done.
  • Documentation has been improved.

GVM Libraries v1.0+beta2

04 Dec 15:27
Compare
Choose a tag to compare
Pre-release

This is the second beta release of the gvm-libs module 1.0 for the Greenbone
Vulnerability Management (GVM) framework.

Many thanks to everyone who has contributed to this release:
Hani Benhabiles, Christian Fischer, Matt Mundell, Juan Jose Nicola,
Timo Pollmeier, Jan-Oliver Wagner and Michael Wiegand.

Main changes compared to gvm-libs 1.0+beta1:

  • KB backend has been switched to use Redis lists instead of unsorted sets.
  • Functions to handle XML elements have been added.
  • Functions for GPG(ME)-based email encryption have been added.
  • The gvm-libs release version is used as nvticache's name.
  • Creation of Radius config from file when using radcli as been added.
  • Functions to handle the kb content have been added and improved.
  • Nvticache timestamp and OID are stored in a single list key.
  • Handling of vhosts and multiple domain names has been improved.
  • Parsing of Script Version has been removed.
  • Parsing of Script Copyright has been removed.
  • Warning about duplicated NVTs has been improved.
  • An issue in CMake building process which resulted in build failures has
    been addressed.
  • Memory management issues have been addressed.
  • Error handling has been improved.
  • Several code improvements have been done.
  • Documentation has been improved.
  • The file headers have been updated to a new standard.

OpenVAS Libraries v9.0.3

29 Aug 16:05
Compare
Choose a tag to compare

This is the third maintenance release of the openvas-libraries 9.0
module for the Open Vulnerability Assessment System 9 (OpenVAS-9).

Many thanks to everyone who contributed to this release:
Hani Benhabiles, Christian Fischer, Matt Mundell, Juan Jose Nicola,
Timo Pollmeier and Michael Wiegand.

Main changes compared to 9.0.2:

  • Minimum required openvas-smb version to have WMI support has been raised
    to 1.0.4.
  • An issue related to a value inserted in nvticache has been addressed.
  • Support to specify a regex-based mandatory key has been added.
  • Nvticache cleanup has been improved.
  • Handling of duplicate nvt warning has been improved.
  • An issue related to the support for radcli library has been addressed.

GVM Libraries v1.0+beta1

17 Apr 14:14
Compare
Choose a tag to compare
Pre-release

This is the first beta release of the gvm-libs module 1.0 for the Greenbone
Vulnerability Management (GVM) framework.

It derives from the former openvas-libraries module. Any elements of the
old module that were used by OpenVAS Scanner only, were moved into the
module openvas-scanner. Also the protocol OMP was renamed to GMP.

Apart from this, the module covers a number of significant advances
and clean-ups compared to the previous openvas-libraries module.

Many thanks to everyone who has contributed to this release:
Hani Benhabiles, Francesco Colista, Albrecht Dress, Christian Fischer, Matt
Mundell, Juan Jose Nicola, Timo Pollmeier, Bjoern Ricks, Jan-Oliver Wagner
and Michael Wiegand.

Main changes compared to openvas-libraries 9.0:

  • Many files have been moved to this new module from openvas-libraries
    and other files have been renamed to match the new terminology (libgvm_*).
    Also the default installation paths switched from "openvas" to "gvm"
    and thus any include directive needs to be adapted in depdending source codes.
  • Additionally OMP (OpenVAS Management Protocol) has been renamed to GMP
    (Greenbone Management Protocol), including library names, include files
    and data types.
  • Function to handle IP connections has been removed since the scanner does
    only unix socket connections.
  • Handling of vhosts and multiple domain names to one single IP have
    been added.
  • Handling of hostnames that resolve to multiple IPs has been added.
  • Handling of Unix and unknown socket types have been added to
    "sockaddr_as_str".
  • Several function to handle the kb content have been added.
  • A function to ping gvm has been added.
  • New compress function with support for gzip header has been added.
  • Access to XML entity properties has been improved.
  • Host, IP address and port in gvm_server_open_verify are verified for sane
    values.
  • Large file support when building with GPGME has been enabled.
  • The symbol separator in a log message is now configurable.
  • As all modules use the same log functions, legacy log functions have
    been removed.
  • Old TODOs have been resolved.
  • Documentation has been updated.
  • Code readability has been improved by completing coverage of doc-strings.
  • The CMake building process was improved.
  • An issue template has been added.
  • Several memory management issues have been addressed.
  • Cmake macro file for code indentation has been removed.
  • Minimum required version of glib/gio have been raised to 2.42.
  • Minimum required version of zlib has been raised to 1.2.8.
  • Minimum required version of cmake has been raised to 3.0.
  • Minimum required version of libssh has been raised to 0.6.0.
  • Minimum required version of libldap has been raised to 2.4.44.

OpenVAS Libraries v8.0.10

27 Mar 10:23
Compare
Choose a tag to compare

For detailed code changes, please visit
https://github.com/greenbone/gvm-libs/commits/openvas-libraries-8.0
or get the entire source code repository and view log history:
$ git clone https://github.com/greenbone/gvm-libs.git
$ cd gvm-libs && git checkout openvas-libraries-8.0 && git log

This is the tenth maintenance release of the openvas-libraries 8.0 module for
the Open Vulnerability Assessment System 8 (OpenVAS-8).

Many thanks to everyone who has contributed to this release:
Hani Benhabiles, Michael Wiegand and Juan Jose Nicola.

Main changes compared to 8.0.9:

  • An issue which caused a segmentation fault due to special characters in
    passwords for SMB login has been addressed.
  • Redis performance has been improved reducing the number of queries during
    a scan.
  • Handling of unknown or invalid signatures has been improved.

OpenVAS Libraries v9.0.2

07 Mar 11:55
Compare
Choose a tag to compare

This is the second maintenance release of the openvas-libraries 9.0
module for the Open Vulnerability Assessment System 9 (OpenVAS-9).

Many thanks to everyone who contributed to this release:
Hani Benhabiles, Francesco Colista, Juan José Nicola, Timo Pollmeier and Björn
Ricks, Michael Wiegand, Jan-Oliver Wagner, Matt Mundell and Albrecht Dreß.

Main changes compared to 9.0.1:

  • Several memory management issues have been addressed.
  • NASL cryptography support has been updated.
  • Signature handling has been improved.
  • Child process signal handling has been improved.
  • Support for retrieving the prompt during keyboard-interactive SSH
    authentication has been added.
  • An issue which caused a segmentation fault in the NASL command
    'get_port_state' under certain circumstances has been addressed.
  • An issue which caused incorrect NTLMSSP hashes under certain circumstances has
    been addressed.
  • Handling of connections closed by the client has been improved.
  • The default connection timeout when detecting services has been increased.
  • The handling of a number of frequently requested knowledge base keys has been
    improved.
  • More context to NVT/NASL related log messages has been added.
  • An issue which caused an error during close() call on UDP sockets from a NASL
    script has been addressed.
  • Support for retrieving vendor version information through a NASL command has
    been added.
  • Handling of SIGPIPE from hiredis in case of a socket disconnect has been added.
  • Handling of Redis connection error has been improved.
  • An issue which caused several running processes on scanned host under
    certain circumstances has been addressed.
  • Support for ldap search during the authentication process has been added.
  • Simplify scanner signatures verification. NVT's detached signatures were
    replaced with a digitally signed file with the hash list of the NVTs.
  • Full nvticache has been moved from .nvti files to Redis
  • Support for radcli library has been added.
  • Cleanup and handle of the kb content has been improved.