Gvm Libs Versions Save

Added

• Add nvti_get_tag() #285
• Add nvti_solution_method() and nvti_set_solution_method() #283
• Extend osp with target's alive test option.#312
• Extend osp with target's reverse_lookup_* options.#314
• Add unit tests for osp. #315
• Add support for test_alive_hosts_only feature of openvas. #320
• Add function to set and get the NVT QoD. #321
• Add unit tests for networking.c port list functions. #325
• Add gmp_start_task_ext_c. #327
• Make log mutex visible. #328
• Add new scan status QUEUED. #336 #340
• Add gvm_routethrough which is used by Boreas alive detection module. #339
• Move alive detection module Boreas into gvm-libs. #346
• Add new scan status INTERRUPTED. #356
• Add sensible default values for osp_get_vts_opts_t. #360
• Add cli support for boreas standalone tool. #359

Changed

• Improve validation in is_hostname #353
• Use get_vts instead of get_version to get the feed version is osp_get_vts_version(). #357
• Allow all alive test combination for boreas. #370

Fixed

• Fix is_cidr_block(). #322
• Fix is_cidr6_block() and is_short_range_network(). #337
• Fix S/MIME keylist and improve error handling #345
• Fix interrupted state by sending correct number of dead hosts. #371

Removed

• Remove parallel from target options #347
• Remove zero padding from version #377

Added

• Add option to set finished hosts in OSP targets #298
• Add a fast memory-only XML parser #299
• Add new function gvm_libs_version #301

Changed

• Don't create an entity tree during read_string_c. #305

Fixed

• Fix sigsegv when no plugin_feed_info.inc file present. #278
• Fix missing linking to libgnutls in util/CMakeLists.txt. #291
• Free string in all error exit cases #308
• Fix trust and file handling for S/MIME #309
• Get details with get_reports in gmp_get_report_ext #313
• Fix escaping entity attributes in print_entity_to_string #318
• Fix is_cidr_block() #323

This is the second patch release of the gvm-libs module 10.0 for the Greenbone Vulnerability Management 10 (GVM-10) framework.

Main changes compared to gvm-libs 10.0.1:

• Fix trust and file handling for S/MIME
• Don't create an entity tree during read_string_c

Added

• Allow to configure the path to the redis socket via CMake #256
• A new data model for unified handling of cross references in the NVT meta data as been added. All previous API elements to handle cve, bid, xref have been removed. #225 #232.
• Add function to get an osp scan status and a enum type for the different status #259
• API functions for NVTI to handle timestamps #261
• API function for NVTI to add a single tag #263
• Add osp_get_performance_ext() function. #262
• Add libldap2-dev to prerequisites. #249
• Add function osp_get_vts_filtered(). #251
• Add explicit attributes in nvti struct. #258

Changed

• Change the default path to the redis socket to /run/redis/redis.sock #256
• Handle EAI_AGAIN in gvm_host_reverse_lookup() IPv6 case and function refactor. #229
• Prevent g_strsplit to be called with NULL. #238
• Timestamps for NVTI modification date and creation date now internally handled as seconds since epoch. #265
• The tag cvss_base is not added to redis anymore. #267
• Functions in osp.c with error as argument, will set the error if the connection is missing. #268
• Make QoD Type an explicit element of struct nvti. #250
• Use API to access nvti information. #252
• Make the nvti struct internal. #253
• Make solution and solution_type explicit for nvti. #255
• Internalize struct nvtpref_t. #260
• Extend redis connection error msg with actual path. #264

Fixed

• Prevent g_strsplit to be called with NULL. #238
• Check filter before using it in osp_get_vts_ext. #266

Removed

• Remove inconsistent delays in kb routines. #230

This is the first patch release of the gvm-libs module 10.0 for the Greenbone Vulnerability Management 10 (GVM-10) framework.

Main changes compared to gvm-libs 10.0.0:

• An issue which caused values in the nvticache not being removed has been addressed.
• An issue during kb search which caused to reach the limit of open file descriptors has been addressed.
• Hostnames and vhosts are added always in lower-case format.
• The error message when the plugin feed version file is not found is shown only once.
• An issue caused when a hostname entry is removed has been addressed.
• Multiple certificate formats for S/MIME are allowed. The S/MIME email encryption accepts the more common PEM X.509 certificate format in addition to PEM-encoded PKCS#7.
• The CMake building process was improved.
• Delays in kb routines have been removed.

This is the first release of the gvm-libs module 10.0 for the Greenbone Vulnerability Management 10 (GVM-10) framework.

It derives from the former openvas-libraries module. Any elements of the old module that were used by OpenVAS Scanner only, were moved into the module openvas-scanner. Also the protocol OMP was renamed to GMP.

Compared to the previous gvm-libs major release, it covers various improvements for the GVM services and applications, as well as a number of significant advances and clean-ups.

Main changes compared to gvm-libs 1.0:

• Performance fixes related to handling large sets of hosts have been done.
• An issue which caused duplicated or removed values in the nvticache as addressed.
• The function gvm_hosts_shuffle has been improved.
• Performance fixes related to handling large sets of hosts have been done.
• Several code improvements and clean-ups have been done.
• Memory management issues have been addressed.

This is the first release of the gvm-libs module 1.0 for the Greenbone Vulnerability Management 10 (GVM-10) framework.

It derives from the former openvas-libraries module. Any elements of the old module that were used by OpenVAS Scanner only, were moved into the module openvas-scanner. Also the protocol OMP was renamed to GMP.

Compared to the previous openvas-libraries major release, it covers various improvements for the GVM services and applications, as well as a number of significant advances and clean-ups.

Main changes compared to gvm-libs 1.0+beta2:

• Several changes in KB backend has been done to improve Redis performance.
• New filename placeholders for the last modification date were added.
• Initialization of gcrypt was improved to avoid trying to initialize the memory pool twice.
• An issue which causes the loss of the path to the configuration file has been addressed.
• Code used for Windows support has been removed.
• Memory management issues have been addressed.
• Several code improvements and clean-ups have been done.
• Documentation has been improved.

This is the second beta release of the gvm-libs module 1.0 for the Greenbone Vulnerability Management (GVM) framework.

Many thanks to everyone who has contributed to this release: Hani Benhabiles, Christian Fischer, Matt Mundell, Juan Jose Nicola, Timo Pollmeier, Jan-Oliver Wagner and Michael Wiegand.

Main changes compared to gvm-libs 1.0+beta1:

• KB backend has been switched to use Redis lists instead of unsorted sets.
• Functions to handle XML elements have been added.
• Functions for GPG(ME)-based email encryption have been added.
• The gvm-libs release version is used as nvticache's name.
• Creation of Radius config from file when using radcli as been added.
• Functions to handle the kb content have been added and improved.
• Nvticache timestamp and OID are stored in a single list key.
• Handling of vhosts and multiple domain names has been improved.
• Parsing of Script Version has been removed.
• Parsing of Script Copyright has been removed.
• Warning about duplicated NVTs has been improved.
• An issue in CMake building process which resulted in build failures has been addressed.
• Memory management issues have been addressed.
• Error handling has been improved.
• Several code improvements have been done.
• Documentation has been improved.
• The file headers have been updated to a new standard.

This is the third maintenance release of the openvas-libraries 9.0 module for the Open Vulnerability Assessment System 9 (OpenVAS-9).

Many thanks to everyone who contributed to this release: Hani Benhabiles, Christian Fischer, Matt Mundell, Juan Jose Nicola, Timo Pollmeier and Michael Wiegand.

Main changes compared to 9.0.2:

• Minimum required openvas-smb version to have WMI support has been raised to 1.0.4.
• An issue related to a value inserted in nvticache has been addressed.
• Support to specify a regex-based mandatory key has been added.
• Nvticache cleanup has been improved.
• Handling of duplicate nvt warning has been improved.
• An issue related to the support for radcli library has been addressed.

This is the first beta release of the gvm-libs module 1.0 for the Greenbone Vulnerability Management (GVM) framework.

It derives from the former openvas-libraries module. Any elements of the old module that were used by OpenVAS Scanner only, were moved into the module openvas-scanner. Also the protocol OMP was renamed to GMP.

Apart from this, the module covers a number of significant advances and clean-ups compared to the previous openvas-libraries module.

Many thanks to everyone who has contributed to this release: Hani Benhabiles, Francesco Colista, Albrecht Dress, Christian Fischer, Matt Mundell, Juan Jose Nicola, Timo Pollmeier, Bjoern Ricks, Jan-Oliver Wagner and Michael Wiegand.

Main changes compared to openvas-libraries 9.0:

• Many files have been moved to this new module from openvas-libraries and other files have been renamed to match the new terminology (libgvm_*). Also the default installation paths switched from "openvas" to "gvm" and thus any include directive needs to be adapted in depdending source codes.
• Additionally OMP (OpenVAS Management Protocol) has been renamed to GMP (Greenbone Management Protocol), including library names, include files and data types.
• Function to handle IP connections has been removed since the scanner does only unix socket connections.
• Handling of vhosts and multiple domain names to one single IP have been added.
• Handling of hostnames that resolve to multiple IPs has been added.
• Handling of Unix and unknown socket types have been added to "sockaddr_as_str".
• Several function to handle the kb content have been added.
• A function to ping gvm has been added.
• New compress function with support for gzip header has been added.
• Access to XML entity properties has been improved.
• Host, IP address and port in gvm_server_open_verify are verified for sane values.
• Large file support when building with GPGME has been enabled.
• The symbol separator in a log message is now configurable.
• As all modules use the same log functions, legacy log functions have been removed.
• Old TODOs have been resolved.
• Documentation has been updated.
• Code readability has been improved by completing coverage of doc-strings.
• The CMake building process was improved.
• An issue template has been added.
• Several memory management issues have been addressed.
• Cmake macro file for code indentation has been removed.
• Minimum required version of glib/gio have been raised to 2.42.
• Minimum required version of zlib has been raised to 1.2.8.
• Minimum required version of cmake has been raised to 3.0.
• Minimum required version of libssh has been raised to 0.6.0.
• Minimum required version of libldap has been raised to 2.4.44.