GVM Libraries v11.0.0

Added

• Allow to configure the path to the redis socket via CMake #256
• A new data model for unified handling of cross references in the NVT meta data as been added. All previous API elements to handle cve, bid, xref have been removed. #225 #232.
• Add function to get an osp scan status and a enum type for the different status #259
• API functions for NVTI to handle timestamps #261
• API function for NVTI to add a single tag #263
• Add osp_get_performance_ext() function. #262
• Add libldap2-dev to prerequisites. #249
• Add function osp_get_vts_filtered(). #251
• Add explicit attributes in nvti struct. #258

Changed

• Change the default path to the redis socket to /run/redis/redis.sock #256
• Handle EAI_AGAIN in gvm_host_reverse_lookup() IPv6 case and function refactor. #229
• Prevent g_strsplit to be called with NULL. #238
• Timestamps for NVTI modification date and creation date now internally handled as seconds since epoch. #265
• The tag cvss_base is not added to redis anymore. #267
• Functions in osp.c with error as argument, will set the error if the connection is missing. #268
• Make QoD Type an explicit element of struct nvti. #250
• Use API to access nvti information. #252
• Make the nvti struct internal. #253
• Make solution and solution_type explicit for nvti. #255
• Internalize struct nvtpref_t. #260
• Extend redis connection error msg with actual path. #264

Fixed

• Prevent g_strsplit to be called with NULL. #238
• Check filter before using it in osp_get_vts_ext. #266

Removed

• Remove inconsistent delays in kb routines. #230

GVM Libraries v10.0.1

This is the first patch release of the gvm-libs module 10.0 for the
Greenbone Vulnerability Management 10 (GVM-10) framework.

Main changes compared to gvm-libs 10.0.0:

• An issue which caused values in the nvticache not being removed has
  been addressed.
• An issue during kb search which caused to reach the limit of open
  file descriptors has been addressed.
• Hostnames and vhosts are added always in lower-case format.
• The error message when the plugin feed version file is not found is shown
  only once.
• An issue caused when a hostname entry is removed has been addressed.
• Multiple certificate formats for S/MIME are allowed. The S/MIME email
  encryption accepts the more common PEM X.509 certificate format in
  addition to PEM-encoded PKCS#7.
• The CMake building process was improved.
• Delays in kb routines have been removed.

GVM Libraries v10.0.0

This is the first release of the gvm-libs module 10.0 for the Greenbone
Vulnerability Management 10 (GVM-10) framework.

It derives from the former openvas-libraries module. Any elements of the
old module that were used by OpenVAS Scanner only, were moved into the
module openvas-scanner. Also the protocol OMP was renamed to GMP.

Compared to the previous gvm-libs major release, it covers
various improvements for the GVM services and applications, as well as a
number of significant advances and clean-ups.

Main changes compared to gvm-libs 1.0:

• Performance fixes related to handling large sets of hosts have been done.
• An issue which caused duplicated or removed values in the nvticache as
  addressed.
• The function gvm_hosts_shuffle has been improved.
• Performance fixes related to handling large sets of hosts have been done.
• Several code improvements and clean-ups have been done.
• Memory management issues have been addressed.

GVM Libraries v1.0.0

This is the first release of the gvm-libs module 1.0 for the Greenbone
Vulnerability Management 10 (GVM-10) framework.

It derives from the former openvas-libraries module. Any elements of the
old module that were used by OpenVAS Scanner only, were moved into the
module openvas-scanner. Also the protocol OMP was renamed to GMP.

Compared to the previous openvas-libraries major release, it covers
various improvements for the GVM services and applications, as well as a
number of significant advances and clean-ups.

Main changes compared to gvm-libs 1.0+beta2:

• Several changes in KB backend has been done to improve Redis performance.
• New filename placeholders for the last modification date were added.
• Initialization of gcrypt was improved to avoid trying to initialize the
  memory pool twice.
• An issue which causes the loss of the path to the configuration file has
  been addressed.
• Code used for Windows support has been removed.
• Memory management issues have been addressed.
• Several code improvements and clean-ups have been done.
• Documentation has been improved.

GVM Libraries v1.0+beta2

This is the second beta release of the gvm-libs module 1.0 for the Greenbone
Vulnerability Management (GVM) framework.

Many thanks to everyone who has contributed to this release:
Hani Benhabiles, Christian Fischer, Matt Mundell, Juan Jose Nicola,
Timo Pollmeier, Jan-Oliver Wagner and Michael Wiegand.

Main changes compared to gvm-libs 1.0+beta1:

• KB backend has been switched to use Redis lists instead of unsorted sets.
• Functions to handle XML elements have been added.
• Functions for GPG(ME)-based email encryption have been added.
• The gvm-libs release version is used as nvticache's name.
• Creation of Radius config from file when using radcli as been added.
• Functions to handle the kb content have been added and improved.
• Nvticache timestamp and OID are stored in a single list key.
• Handling of vhosts and multiple domain names has been improved.
• Parsing of Script Version has been removed.
• Parsing of Script Copyright has been removed.
• Warning about duplicated NVTs has been improved.
• An issue in CMake building process which resulted in build failures has
  been addressed.
• Memory management issues have been addressed.
• Error handling has been improved.
• Several code improvements have been done.
• Documentation has been improved.
• The file headers have been updated to a new standard.

OpenVAS Libraries v9.0.3

This is the third maintenance release of the openvas-libraries 9.0
module for the Open Vulnerability Assessment System 9 (OpenVAS-9).

Many thanks to everyone who contributed to this release:
Hani Benhabiles, Christian Fischer, Matt Mundell, Juan Jose Nicola,
Timo Pollmeier and Michael Wiegand.

Main changes compared to 9.0.2:

• Minimum required openvas-smb version to have WMI support has been raised
  to 1.0.4.
• An issue related to a value inserted in nvticache has been addressed.
• Support to specify a regex-based mandatory key has been added.
• Nvticache cleanup has been improved.
• Handling of duplicate nvt warning has been improved.
• An issue related to the support for radcli library has been addressed.

GVM Libraries v1.0+beta1

This is the first beta release of the gvm-libs module 1.0 for the Greenbone
Vulnerability Management (GVM) framework.

It derives from the former openvas-libraries module. Any elements of the
old module that were used by OpenVAS Scanner only, were moved into the
module openvas-scanner. Also the protocol OMP was renamed to GMP.

Apart from this, the module covers a number of significant advances
and clean-ups compared to the previous openvas-libraries module.

Many thanks to everyone who has contributed to this release:
Hani Benhabiles, Francesco Colista, Albrecht Dress, Christian Fischer, Matt
Mundell, Juan Jose Nicola, Timo Pollmeier, Bjoern Ricks, Jan-Oliver Wagner
and Michael Wiegand.

Main changes compared to openvas-libraries 9.0:

• Many files have been moved to this new module from openvas-libraries
  and other files have been renamed to match the new terminology (libgvm_*).
  Also the default installation paths switched from "openvas" to "gvm"
  and thus any include directive needs to be adapted in depdending source codes.
• Additionally OMP (OpenVAS Management Protocol) has been renamed to GMP
  (Greenbone Management Protocol), including library names, include files
  and data types.
• Function to handle IP connections has been removed since the scanner does
  only unix socket connections.
• Handling of vhosts and multiple domain names to one single IP have
  been added.
• Handling of hostnames that resolve to multiple IPs has been added.
• Handling of Unix and unknown socket types have been added to
  "sockaddr_as_str".
• Several function to handle the kb content have been added.
• A function to ping gvm has been added.
• New compress function with support for gzip header has been added.
• Access to XML entity properties has been improved.
• Host, IP address and port in gvm_server_open_verify are verified for sane
  values.
• Large file support when building with GPGME has been enabled.
• The symbol separator in a log message is now configurable.
• As all modules use the same log functions, legacy log functions have
  been removed.
• Old TODOs have been resolved.
• Documentation has been updated.
• Code readability has been improved by completing coverage of doc-strings.
• The CMake building process was improved.
• An issue template has been added.
• Several memory management issues have been addressed.
• Cmake macro file for code indentation has been removed.
• Minimum required version of glib/gio have been raised to 2.42.
• Minimum required version of zlib has been raised to 1.2.8.
• Minimum required version of cmake has been raised to 3.0.
• Minimum required version of libssh has been raised to 0.6.0.
• Minimum required version of libldap has been raised to 2.4.44.

OpenVAS Libraries v8.0.10

For detailed code changes, please visit
https://github.com/greenbone/gvm-libs/commits/openvas-libraries-8.0
or get the entire source code repository and view log history:
$ git clone https://github.com/greenbone/gvm-libs.git
$ cd gvm-libs && git checkout openvas-libraries-8.0 && git log

This is the tenth maintenance release of the openvas-libraries 8.0 module for
the Open Vulnerability Assessment System 8 (OpenVAS-8).

Many thanks to everyone who has contributed to this release:
Hani Benhabiles, Michael Wiegand and Juan Jose Nicola.

Main changes compared to 8.0.9:

• An issue which caused a segmentation fault due to special characters in
  passwords for SMB login has been addressed.
• Redis performance has been improved reducing the number of queries during
  a scan.
• Handling of unknown or invalid signatures has been improved.

OpenVAS Libraries v9.0.2

This is the second maintenance release of the openvas-libraries 9.0
module for the Open Vulnerability Assessment System 9 (OpenVAS-9).

Many thanks to everyone who contributed to this release:
Hani Benhabiles, Francesco Colista, Juan José Nicola, Timo Pollmeier and Björn
Ricks, Michael Wiegand, Jan-Oliver Wagner, Matt Mundell and Albrecht Dreß.

Main changes compared to 9.0.1:

• Several memory management issues have been addressed.
• NASL cryptography support has been updated.
• Signature handling has been improved.
• Child process signal handling has been improved.
• Support for retrieving the prompt during keyboard-interactive SSH
  authentication has been added.
• An issue which caused a segmentation fault in the NASL command
  'get_port_state' under certain circumstances has been addressed.
• An issue which caused incorrect NTLMSSP hashes under certain circumstances has
  been addressed.
• Handling of connections closed by the client has been improved.
• The default connection timeout when detecting services has been increased.
• The handling of a number of frequently requested knowledge base keys has been
  improved.
• More context to NVT/NASL related log messages has been added.
• An issue which caused an error during close() call on UDP sockets from a NASL
  script has been addressed.
• Support for retrieving vendor version information through a NASL command has
  been added.
• Handling of SIGPIPE from hiredis in case of a socket disconnect has been added.
• Handling of Redis connection error has been improved.
• An issue which caused several running processes on scanned host under
  certain circumstances has been addressed.
• Support for ldap search during the authentication process has been added.
• Simplify scanner signatures verification. NVT's detached signatures were
  replaced with a digitally signed file with the hash list of the NVTs.
• Full nvticache has been moved from .nvti files to Redis
• Support for radcli library has been added.
• Cleanup and handle of the kb content has been improved.