GVM Libraries v21.4.0

Added

• Use dedicated port list for alive detection (Boreas only) if supplied via OSP. #391
• Allow to re allocate the finish flag in the host queue for alive tests.
  #407
  #410
• Add multiple severities for nvti #317 #472
• Add support for new OSP element for defining alive test methods via separate subelements. #409
• Add v3 handling to get_cvss_score_from_base_metrics. #411
• Add severity_date tag in epoch time format. #412
• Make more scanner preferences available to openvas-nasl. #413
• Use memory purge redis command when initializing new kb. #452

Changed

• Add separators for a new (ip address) field in ERRMSG and DEADHOST messages. #376
• Continuously send dead hosts to ospd-openvas to enable a smooth progress bar if only ICMP is chosen as alive test. #389
• Retry if response via tls1.3 is still not received. #394
• Replace current implementation of alive test arp ping with version using libnet. #423
• Let setup_log_handlers return an error if it does not have write access to some log file or log dir instead of aborting immediately.
  #447
  #451
• Fix openvas preference name. The option was rename to "allow_simultaneous_ips". #461
• Do not start the sniffer thread when only consider alive is chosen for alive test. #466]

Fixed

• Fix finish_signal_on_queue for boreas. #464

Removed

• Remove handling of severity class from auth #402
• Remove version from the nvticache name. #386

GVM Libraries v20.8.1

Added

• Add function to get duplicated hosts from the hosts list. #387
• Add file access tests using effective UID/GID #422

Changed

• Reduce ping timeout when using test_alive_hosts_only feature. #400
• Retry if response via tls1.3 is still not received. #404

Fixed

• Fix port list for tcp pings when using test_alive_hosts_only feature. #392
• Set source address correctly and do not try to send ARP to unreachable destination. #401
• Increase minimum gpgme version #405
• Always NULL check ifaddrs->ifa_addr #416
• Correct g_hash_table_remove arg #419
• Accept underscore as valid char in hostname strings #430
• Add throttle for pinging with test_alive_hosts_only feature when socket buffer is full. #429

GVM Libraries v20.8.0

Added

• Add nvti_get_tag() #285
• Add nvti_solution_method() and nvti_set_solution_method() #283
• Extend osp with target's alive test option.#312
• Extend osp with target's reverse_lookup_* options.#314
• Add unit tests for osp. #315
• Add support for test_alive_hosts_only feature of openvas. #320
• Add function to set and get the NVT QoD. #321
• Add unit tests for networking.c port list functions. #325
• Add gmp_start_task_ext_c. #327
• Make log mutex visible. #328
• Add new scan status QUEUED. #336 #340
• Add gvm_routethrough which is used by Boreas alive detection module. #339
• Move alive detection module Boreas into gvm-libs. #346
• Add new scan status INTERRUPTED. #356
• Add sensible default values for osp_get_vts_opts_t. #360
• Add cli support for boreas standalone tool. #359

Changed

• Improve validation in is_hostname #353
• Use get_vts instead of get_version to get the feed version is osp_get_vts_version(). #357
• Allow all alive test combination for boreas. #370

Fixed

• Fix is_cidr_block(). #322
• Fix is_cidr6_block() and is_short_range_network(). #337
• Fix S/MIME keylist and improve error handling #345
• Fix interrupted state by sending correct number of dead hosts. #371

Removed

• Remove parallel from target options #347
• Remove zero padding from version #377

GVM Libraries v11.0.1

Added

• Add option to set finished hosts in OSP targets #298
• Add a fast memory-only XML parser #299
• Add new function gvm_libs_version #301

Changed

• Don't create an entity tree during read_string_c. #305

Fixed

• Fix sigsegv when no plugin_feed_info.inc file present. #278
• Fix missing linking to libgnutls in util/CMakeLists.txt. #291
• Free string in all error exit cases #308
• Fix trust and file handling for S/MIME #309
• Get details with get_reports in gmp_get_report_ext #313
• Fix escaping entity attributes in print_entity_to_string #318
• Fix is_cidr_block() #323

GVM Libraries v10.0.2

This is the second patch release of the gvm-libs module 10.0 for the
Greenbone Vulnerability Management 10 (GVM-10) framework.

Main changes compared to gvm-libs 10.0.1:

• Fix trust and file handling for S/MIME
• Don't create an entity tree during read_string_c

GVM Libraries v11.0.0

Added

• Allow to configure the path to the redis socket via CMake #256
• A new data model for unified handling of cross references in the NVT meta data as been added. All previous API elements to handle cve, bid, xref have been removed. #225 #232.
• Add function to get an osp scan status and a enum type for the different status #259
• API functions for NVTI to handle timestamps #261
• API function for NVTI to add a single tag #263
• Add osp_get_performance_ext() function. #262
• Add libldap2-dev to prerequisites. #249
• Add function osp_get_vts_filtered(). #251
• Add explicit attributes in nvti struct. #258

Changed

• Change the default path to the redis socket to /run/redis/redis.sock #256
• Handle EAI_AGAIN in gvm_host_reverse_lookup() IPv6 case and function refactor. #229
• Prevent g_strsplit to be called with NULL. #238
• Timestamps for NVTI modification date and creation date now internally handled as seconds since epoch. #265
• The tag cvss_base is not added to redis anymore. #267
• Functions in osp.c with error as argument, will set the error if the connection is missing. #268
• Make QoD Type an explicit element of struct nvti. #250
• Use API to access nvti information. #252
• Make the nvti struct internal. #253
• Make solution and solution_type explicit for nvti. #255
• Internalize struct nvtpref_t. #260
• Extend redis connection error msg with actual path. #264

Fixed

• Prevent g_strsplit to be called with NULL. #238
• Check filter before using it in osp_get_vts_ext. #266

Removed

• Remove inconsistent delays in kb routines. #230

GVM Libraries v10.0.1

This is the first patch release of the gvm-libs module 10.0 for the
Greenbone Vulnerability Management 10 (GVM-10) framework.

Main changes compared to gvm-libs 10.0.0:

• An issue which caused values in the nvticache not being removed has
  been addressed.
• An issue during kb search which caused to reach the limit of open
  file descriptors has been addressed.
• Hostnames and vhosts are added always in lower-case format.
• The error message when the plugin feed version file is not found is shown
  only once.
• An issue caused when a hostname entry is removed has been addressed.
• Multiple certificate formats for S/MIME are allowed. The S/MIME email
  encryption accepts the more common PEM X.509 certificate format in
  addition to PEM-encoded PKCS#7.
• The CMake building process was improved.
• Delays in kb routines have been removed.

GVM Libraries v10.0.0

This is the first release of the gvm-libs module 10.0 for the Greenbone
Vulnerability Management 10 (GVM-10) framework.

It derives from the former openvas-libraries module. Any elements of the
old module that were used by OpenVAS Scanner only, were moved into the
module openvas-scanner. Also the protocol OMP was renamed to GMP.

Compared to the previous gvm-libs major release, it covers
various improvements for the GVM services and applications, as well as a
number of significant advances and clean-ups.

Main changes compared to gvm-libs 1.0:

• Performance fixes related to handling large sets of hosts have been done.
• An issue which caused duplicated or removed values in the nvticache as
  addressed.
• The function gvm_hosts_shuffle has been improved.
• Performance fixes related to handling large sets of hosts have been done.
• Several code improvements and clean-ups have been done.
• Memory management issues have been addressed.

GVM Libraries v1.0.0

This is the first release of the gvm-libs module 1.0 for the Greenbone
Vulnerability Management 10 (GVM-10) framework.

It derives from the former openvas-libraries module. Any elements of the
old module that were used by OpenVAS Scanner only, were moved into the
module openvas-scanner. Also the protocol OMP was renamed to GMP.

Compared to the previous openvas-libraries major release, it covers
various improvements for the GVM services and applications, as well as a
number of significant advances and clean-ups.

Main changes compared to gvm-libs 1.0+beta2:

• Several changes in KB backend has been done to improve Redis performance.
• New filename placeholders for the last modification date were added.
• Initialization of gcrypt was improved to avoid trying to initialize the
  memory pool twice.
• An issue which causes the loss of the path to the configuration file has
  been addressed.
• Code used for Windows support has been removed.
• Memory management issues have been addressed.
• Several code improvements and clean-ups have been done.
• Documentation has been improved.

GVM Libraries v1.0+beta2

This is the second beta release of the gvm-libs module 1.0 for the Greenbone
Vulnerability Management (GVM) framework.

Many thanks to everyone who has contributed to this release:
Hani Benhabiles, Christian Fischer, Matt Mundell, Juan Jose Nicola,
Timo Pollmeier, Jan-Oliver Wagner and Michael Wiegand.

Main changes compared to gvm-libs 1.0+beta1:

• KB backend has been switched to use Redis lists instead of unsorted sets.
• Functions to handle XML elements have been added.
• Functions for GPG(ME)-based email encryption have been added.
• The gvm-libs release version is used as nvticache's name.
• Creation of Radius config from file when using radcli as been added.
• Functions to handle the kb content have been added and improved.
• Nvticache timestamp and OID are stored in a single list key.
• Handling of vhosts and multiple domain names has been improved.
• Parsing of Script Version has been removed.
• Parsing of Script Copyright has been removed.
• Warning about duplicated NVTs has been improved.
• An issue in CMake building process which resulted in build failures has
  been addressed.
• Memory management issues have been addressed.
• Error handling has been improved.
• Several code improvements have been done.
• Documentation has been improved.
• The file headers have been updated to a new standard.