Releases: greenbone/gvm-libs
GVM Libraries v10.0.2
This is the second patch release of the gvm-libs module 10.0 for the
Greenbone Vulnerability Management 10 (GVM-10) framework.
Main changes compared to gvm-libs 10.0.1:
- Fix trust and file handling for S/MIME
- Don't create an entity tree during read_string_c
GVM Libraries v11.0.0
Added
- Allow to configure the path to the redis socket via CMake #256
- A new data model for unified handling of cross references in the NVT meta data as been added. All previous API elements to handle cve, bid, xref have been removed. #225 #232.
- Add function to get an osp scan status and a enum type for the different status #259
- API functions for NVTI to handle timestamps #261
- API function for NVTI to add a single tag #263
- Add osp_get_performance_ext() function. #262
- Add libldap2-dev to prerequisites. #249
- Add function osp_get_vts_filtered(). #251
- Add explicit attributes in nvti struct. #258
Changed
- Change the default path to the redis socket to /run/redis/redis.sock #256
- Handle EAI_AGAIN in gvm_host_reverse_lookup() IPv6 case and function refactor. #229
- Prevent g_strsplit to be called with NULL. #238
- Timestamps for NVTI modification date and creation date now internally handled as seconds since epoch. #265
- The tag cvss_base is not added to redis anymore. #267
- Functions in osp.c with error as argument, will set the error if the connection is missing. #268
- Make QoD Type an explicit element of struct nvti. #250
- Use API to access nvti information. #252
- Make the nvti struct internal. #253
- Make solution and solution_type explicit for nvti. #255
- Internalize struct nvtpref_t. #260
- Extend redis connection error msg with actual path. #264
Fixed
- Prevent g_strsplit to be called with NULL. #238
- Check filter before using it in osp_get_vts_ext. #266
Removed
- Remove inconsistent delays in kb routines. #230
GVM Libraries v10.0.1
This is the first patch release of the gvm-libs module 10.0 for the
Greenbone Vulnerability Management 10 (GVM-10) framework.
Main changes compared to gvm-libs 10.0.0:
- An issue which caused values in the nvticache not being removed has
been addressed. - An issue during kb search which caused to reach the limit of open
file descriptors has been addressed. - Hostnames and vhosts are added always in lower-case format.
- The error message when the plugin feed version file is not found is shown
only once. - An issue caused when a hostname entry is removed has been addressed.
- Multiple certificate formats for S/MIME are allowed. The S/MIME email
encryption accepts the more common PEM X.509 certificate format in
addition to PEM-encoded PKCS#7. - The CMake building process was improved.
- Delays in kb routines have been removed.
GVM Libraries v10.0.0
This is the first release of the gvm-libs module 10.0 for the Greenbone
Vulnerability Management 10 (GVM-10) framework.
It derives from the former openvas-libraries module. Any elements of the
old module that were used by OpenVAS Scanner only, were moved into the
module openvas-scanner. Also the protocol OMP was renamed to GMP.
Compared to the previous gvm-libs major release, it covers
various improvements for the GVM services and applications, as well as a
number of significant advances and clean-ups.
Main changes compared to gvm-libs 1.0:
- Performance fixes related to handling large sets of hosts have been done.
- An issue which caused duplicated or removed values in the nvticache as
addressed. - The function gvm_hosts_shuffle has been improved.
- Performance fixes related to handling large sets of hosts have been done.
- Several code improvements and clean-ups have been done.
- Memory management issues have been addressed.
GVM Libraries v1.0.0
This is the first release of the gvm-libs module 1.0 for the Greenbone
Vulnerability Management 10 (GVM-10) framework.
It derives from the former openvas-libraries module. Any elements of the
old module that were used by OpenVAS Scanner only, were moved into the
module openvas-scanner. Also the protocol OMP was renamed to GMP.
Compared to the previous openvas-libraries major release, it covers
various improvements for the GVM services and applications, as well as a
number of significant advances and clean-ups.
Main changes compared to gvm-libs 1.0+beta2:
- Several changes in KB backend has been done to improve Redis performance.
- New filename placeholders for the last modification date were added.
- Initialization of gcrypt was improved to avoid trying to initialize the
memory pool twice. - An issue which causes the loss of the path to the configuration file has
been addressed. - Code used for Windows support has been removed.
- Memory management issues have been addressed.
- Several code improvements and clean-ups have been done.
- Documentation has been improved.
GVM Libraries v1.0+beta2
This is the second beta release of the gvm-libs module 1.0 for the Greenbone
Vulnerability Management (GVM) framework.
Many thanks to everyone who has contributed to this release:
Hani Benhabiles, Christian Fischer, Matt Mundell, Juan Jose Nicola,
Timo Pollmeier, Jan-Oliver Wagner and Michael Wiegand.
Main changes compared to gvm-libs 1.0+beta1:
- KB backend has been switched to use Redis lists instead of unsorted sets.
- Functions to handle XML elements have been added.
- Functions for GPG(ME)-based email encryption have been added.
- The gvm-libs release version is used as nvticache's name.
- Creation of Radius config from file when using radcli as been added.
- Functions to handle the kb content have been added and improved.
- Nvticache timestamp and OID are stored in a single list key.
- Handling of vhosts and multiple domain names has been improved.
- Parsing of Script Version has been removed.
- Parsing of Script Copyright has been removed.
- Warning about duplicated NVTs has been improved.
- An issue in CMake building process which resulted in build failures has
been addressed. - Memory management issues have been addressed.
- Error handling has been improved.
- Several code improvements have been done.
- Documentation has been improved.
- The file headers have been updated to a new standard.
OpenVAS Libraries v9.0.3
This is the third maintenance release of the openvas-libraries 9.0
module for the Open Vulnerability Assessment System 9 (OpenVAS-9).
Many thanks to everyone who contributed to this release:
Hani Benhabiles, Christian Fischer, Matt Mundell, Juan Jose Nicola,
Timo Pollmeier and Michael Wiegand.
Main changes compared to 9.0.2:
- Minimum required openvas-smb version to have WMI support has been raised
to 1.0.4. - An issue related to a value inserted in nvticache has been addressed.
- Support to specify a regex-based mandatory key has been added.
- Nvticache cleanup has been improved.
- Handling of duplicate nvt warning has been improved.
- An issue related to the support for radcli library has been addressed.
GVM Libraries v1.0+beta1
This is the first beta release of the gvm-libs module 1.0 for the Greenbone
Vulnerability Management (GVM) framework.
It derives from the former openvas-libraries module. Any elements of the
old module that were used by OpenVAS Scanner only, were moved into the
module openvas-scanner. Also the protocol OMP was renamed to GMP.
Apart from this, the module covers a number of significant advances
and clean-ups compared to the previous openvas-libraries module.
Many thanks to everyone who has contributed to this release:
Hani Benhabiles, Francesco Colista, Albrecht Dress, Christian Fischer, Matt
Mundell, Juan Jose Nicola, Timo Pollmeier, Bjoern Ricks, Jan-Oliver Wagner
and Michael Wiegand.
Main changes compared to openvas-libraries 9.0:
- Many files have been moved to this new module from openvas-libraries
and other files have been renamed to match the new terminology (libgvm_*).
Also the default installation paths switched from "openvas" to "gvm"
and thus any include directive needs to be adapted in depdending source codes. - Additionally OMP (OpenVAS Management Protocol) has been renamed to GMP
(Greenbone Management Protocol), including library names, include files
and data types. - Function to handle IP connections has been removed since the scanner does
only unix socket connections. - Handling of vhosts and multiple domain names to one single IP have
been added. - Handling of hostnames that resolve to multiple IPs has been added.
- Handling of Unix and unknown socket types have been added to
"sockaddr_as_str". - Several function to handle the kb content have been added.
- A function to ping gvm has been added.
- New compress function with support for gzip header has been added.
- Access to XML entity properties has been improved.
- Host, IP address and port in gvm_server_open_verify are verified for sane
values. - Large file support when building with GPGME has been enabled.
- The symbol separator in a log message is now configurable.
- As all modules use the same log functions, legacy log functions have
been removed. - Old TODOs have been resolved.
- Documentation has been updated.
- Code readability has been improved by completing coverage of doc-strings.
- The CMake building process was improved.
- An issue template has been added.
- Several memory management issues have been addressed.
- Cmake macro file for code indentation has been removed.
- Minimum required version of glib/gio have been raised to 2.42.
- Minimum required version of zlib has been raised to 1.2.8.
- Minimum required version of cmake has been raised to 3.0.
- Minimum required version of libssh has been raised to 0.6.0.
- Minimum required version of libldap has been raised to 2.4.44.
OpenVAS Libraries v8.0.10
For detailed code changes, please visit
https://github.com/greenbone/gvm-libs/commits/openvas-libraries-8.0
or get the entire source code repository and view log history:
$ git clone https://github.com/greenbone/gvm-libs.git
$ cd gvm-libs && git checkout openvas-libraries-8.0 && git log
This is the tenth maintenance release of the openvas-libraries 8.0 module for
the Open Vulnerability Assessment System 8 (OpenVAS-8).
Many thanks to everyone who has contributed to this release:
Hani Benhabiles, Michael Wiegand and Juan Jose Nicola.
Main changes compared to 8.0.9:
- An issue which caused a segmentation fault due to special characters in
passwords for SMB login has been addressed. - Redis performance has been improved reducing the number of queries during
a scan. - Handling of unknown or invalid signatures has been improved.
OpenVAS Libraries v9.0.2
This is the second maintenance release of the openvas-libraries 9.0
module for the Open Vulnerability Assessment System 9 (OpenVAS-9).
Many thanks to everyone who contributed to this release:
Hani Benhabiles, Francesco Colista, Juan José Nicola, Timo Pollmeier and Björn
Ricks, Michael Wiegand, Jan-Oliver Wagner, Matt Mundell and Albrecht Dreß.
Main changes compared to 9.0.1:
- Several memory management issues have been addressed.
- NASL cryptography support has been updated.
- Signature handling has been improved.
- Child process signal handling has been improved.
- Support for retrieving the prompt during keyboard-interactive SSH
authentication has been added. - An issue which caused a segmentation fault in the NASL command
'get_port_state' under certain circumstances has been addressed. - An issue which caused incorrect NTLMSSP hashes under certain circumstances has
been addressed. - Handling of connections closed by the client has been improved.
- The default connection timeout when detecting services has been increased.
- The handling of a number of frequently requested knowledge base keys has been
improved. - More context to NVT/NASL related log messages has been added.
- An issue which caused an error during close() call on UDP sockets from a NASL
script has been addressed. - Support for retrieving vendor version information through a NASL command has
been added. - Handling of SIGPIPE from hiredis in case of a socket disconnect has been added.
- Handling of Redis connection error has been improved.
- An issue which caused several running processes on scanned host under
certain circumstances has been addressed. - Support for ldap search during the authentication process has been added.
- Simplify scanner signatures verification. NVT's detached signatures were
replaced with a digitally signed file with the hash list of the NVTs. - Full nvticache has been moved from .nvti files to Redis
- Support for radcli library has been added.
- Cleanup and handle of the kb content has been improved.