File gvmd.changes of Package gvmd
-------------------------------------------------------------------
Tue Feb 21 09:54:18 UTC 2023 - Martin Hauke <mardnh@gmx.de>
- Update to version 22.4.2
* https://github.com/greenbone/gvmd/releases/tag/v22.4.2
-------------------------------------------------------------------
Thu Apr 7 07:36:59 UTC 2022 - Martin Hauke <mardnh@gmx.de>
- Update to version 21.4.5
Added
* Backtrace output when a sigsegv occurs.
* Improve handling osp connection errors.
Changed
* Use GVMD_RUN_DIR instead of GVM_RUN_DIR.
* Use full path GVMD_PID_PATH for PID files.
* Replace blocking table locks with a non-blocking retry loop.
* Change some migration and OSP warnings to info.
* Change failed call to xsltproc to a warning.
Bug Fixes
* Test if location is null in cve_scan_host to prevent an
assertion error.
* Choose correct scan launch function for OSP scans.
- Update to version 21.4.4
Added
* Add --rebuild-gvmd-data command line option.
Fixed
* Ensure gvmd sends error messages if gvmcg fails.
* Fix resume task.
* Added a dedicated error message for the create ticket dialogue
when the create permission permission is missing.
* Fix import of report results / errors without host.
-------------------------------------------------------------------
Fri Aug 20 10:24:14 UTC 2021 - Martin Hauke <mardnh@gmx.de>
- Update to version 21.4.3
Fixed
* Fix sending prefs for whole, growing VT families.
* Add trash columns for target "elevate" credential.
Added
* Add --optimize add-/cleanup-feed-permissions.
Changed
* Use less report cache SQL when adding results.
Fixed
* Fix VTs hash check and add --dump-vt-verification.
* Solved a performance problem when filtering results by tags.
* Fix VTs hash check and add --dump-vt-verification.
* Fix memory errors in modify_permission.
* Fix sensor connection for performance reports on failure.
* Sort the "host" column by IPv4 address if possible.
* Fix for parse_iso_time_tz error with musl library.
- Update to version 21.4.2
Fixed
* Amended Test, if the ssh elevate credential is different from
the ssh credential.
* Added the missing GMP documentation for the ssh elevate
credential.
-------------------------------------------------------------------
Mon Jun 28 15:35:05 UTC 2021 - Martin Hauke <mardnh@gmx.de>
- Update to version 21.4.1
Added
* Add NVT tag "deprecated".
* Extend GMP for new privilege escalation credential.
* Include new ssh elevate (escalation) credential in OSP request.
* Add test if the ssh elevate credential is different from the
ssh credential.
Changed
* Update default log config.
Fixed
* Improve VT version handling for CVE & OVAL results.
* Fix migration to DB version 242 from gvmd 20.08.
* Update subject alternative name in certificate generation.
* Fix whole-only config family selection.
* Migrate GMP Scanners to OSP Sensors.
* Solved a peformance problem for tasks after scanning lots of
hosts.
* Solved a performance problem when filtering results by tags.
-------------------------------------------------------------------
Fri Apr 16 18:34:05 UTC 2021 - Martin Hauke <mardnh@gmx.de>
- Update to version 21.4.0
Added
* Extend GMP for extended severities
* Parameter --db-user to set a database user
* Add allow_simultaneous_ips field for targets
* Speed up GET_VULNS
* Speed up result counting iterator
* Speed up result iterator
* Improve GMP docs around users
* Cache report counts when Dynamic Severity is enabled
* Detection entry detection while importing reports
Changed
* Move EXE credential generation to a Python script
* Clarify documentation for --scan-host parameter
* In result iterator access severity directly if possible
* Change SCAP and CERT data to use "severity" consistently
* Expect report format scripts to exit with code 0
* Send entire families to ospd-openvas using VT_GROUP
* Limit "whole-only" config families to "growing" and "every nvt"
* Access current user with an SQL function
* Refactor modify_config, allowing multiple simultaneous changes
* Add retry on a deadlock within sql#sql
* Don't require report format plugin for XML report
* Wording of Rebuilding NVTs because integrity check failed
Fixed
* Use GMP version with leading zero for feed dirs
* Check db version before creating SQL functions
* Fix severity_in_level SQL function
* Fix and simplify SecInfo migration
* Prevent CPE/NVD_ID from being "(null)"
* Check DB versions before CERT severity updates
* Add owner checks to report_count queries
Removed
* Remove solution element from VT tags
* Drop GMP scanners
* Reduce Severity Classes
* Removed Severity Classes
* Remove remaining use of "Severity Class" in where_levels_auto
* Remove the functionality "autofp" (Auto False Positives)
* Remove severity type "debug"
* Remove element "threat" of element "notes"
-------------------------------------------------------------------
Sat Mar 6 17:16:19 UTC 2021 - Martin Hauke <mardnh@gmx.de>
- Update to version 20.8.1
See https://github.com/greenbone/gvmd/blob/master/CHANGELOG.md
for all changes
-------------------------------------------------------------------
Wed Aug 12 19:17:47 UTC 2020 - Martin Hauke <mardnh@gmx.de>
- Update to version 20.8.0
See https://github.com/greenbone/gvmd/blob/master/CHANGELOG.md
for all changes
- Add patch:
* gvmd-postgresql-header-location.patch
-------------------------------------------------------------------
Tue Aug 11 15:54:06 UTC 2020 - Martin Hauke <mardnh@gmx.de>
- Update to version 9.0.1
Added
* Add option --optimize migrate-relay-sensors
* Add host_id filter for tls_certificates
* Allow use of public key auth in SCP alert
* Refuse to import config with missing NVT preference ID
* Add "Base" scan config
* Add setting "BPM Data"
* Add --optimize option cleanup-result-encoding
* Add --rebuild
* Lock a file around the NVT sync
* Add --rebuild-scap option
Changed
* Extend command line options for managing scanners
* Update SCAP and CERT feed info in sync scripts
* Try authentication when verifying GMP scanners
* Try importing private keys with libssh if GnuTLS fails
* Allow resuming OSPd-based OpenVAS tasks
* Require PostgreSQL 9.6 as a minimum
* Speed up the SCAP sync
* Change rows of built-in default filters to -2 (use "Rows Per
Page" setting)
* Force NVT update in migrate_219_to_220
* Use temp tables to speed up migrate_213_to_214
* Add a delay for re-requesting scan information via osp
* Count only best OS matches for OS asset hosts
* Clean up NVTs set to name in cleanup-result-nvts
* New Community Feed download URL in sync tools
* Do not ignore empty hosts_allow and ifaces_allow
Fixed
* Consider results_trash when deleting users
* Try to get NVT preferences by id in create_config
* Fix preference ID in "Host Discovery" config
* Fix order of fingerprints in get_tls_certificates
* Update config preferences after updating NVTs
* Fix asset host details insertion SQL
* Fix notes XML for lean reports
* MODIFY_USER saves comment when COMMENT is empty
* MODIFY_PERMISSION saves comment when COMMENT is empty
* Fix result diff generation to ignore white space in delta reports
* Fix resource type checks for permissions
* Fix result_nvt for new OSP and slave results
* Use right format specifier for merge_ovaldef version
* Fix creation of "Super" permissions
* Setup general task preferences to launch an osp openvas task.
* Add tags used for result NVTs to update_nvti_cache
* Apply usage_type of tasks in get_aggregate
* Setup target's alive test setting to launch an osp openvas task
* Remove incorrect duplicates from config preference migrator
* Correct pref ID in migrate_219_to_220
* Fix alive test. Target's alive test setting has priority over scan
config
* Set run status only after getting OSP-OpenVAS scan
* Fix get_system_reports for GMP scanners
* Use stop_osp_task for SCANNER_TYPE_OSP_SENSOR
* Setup target's reverse_lookup_* settings to launch an osp
openvas task
* Always use details testing alerts with a report
* Remove extra XML declaration in Anonymous XML
* Fix Verinice ISM report format and update version
* Fix SCP alert authentication and logging
* Accept expanded scheme OIDs in parse_osp_report
* Fix SCAP update not finishing when CPEs are older
* Add user limits on hosts and ifaces to OSP prefs
* Fix scanner_options not inserted correctly when starting ospd
task
* Fix QoD handling in NVTi cache and sensor scans
* Fix doc of get_tasks in GMP doc
* Fix deletion of OVAL definition data
Removed
* Remove 1.3.6.1.4.1.25623.1.0.90011 from Discovery
config (9.0)
- Add patch:
* gvmd-postgresql-header-location.patch
-------------------------------------------------------------------
Thu Apr 9 20:12:52 UTC 2020 - Martin Hauke <mardnh@gmx.de>
- Update to version 9.0.0
This is the first release of the gvmd module 9.0 for the
Greenbone Vulnerability Management (GVM) framework.
Added
* Added TLS certificates as a new resource type
* Update NVTs via OSP #392 #609 #626 #753 #767
* Handle addition of ID to NVT preferences. #413 #744
* Add setting 'OMP Slave Check Period' #491
* Document switching between releases when using Postgres. #563
* Cgreen based unit tests for gvmd has been added. #579
* New usage_type property to distinguish normal scan tasks and
configs from compliance audits and policies #613 #625 #633
* Command cleanup-report-formats for --optimize option #652
* Enable SecInfo alert checks #670
* Add an explicit solution column to NVTs #681 #702 #730
* Document container tasks in GMP doc #688
* Add explicit columns for the NVT tags "summary", "insight",
"detection", "impact" and "affected" #719 #746
* Add lean option to GET_REPORTS #745
* Add scanner relays and OSP sensor scanner type #756 #759
Changed
* Always convert iCalendar strings to use UTC. #777
* Check if NVT preferences exist before inserting. #406
* Raise minimum version for SQL functions. #420
* Run OpenVAS scans via OSP instead of OTP.
* Request nvti_cache update only at very end of NVT update. #426
* Consolidate NVT references into unified "refs" element.
* Update gvm-libs version requirements to v11.0. #480
* Adjust to use new API for vt references. #526
* Expect NVT sync script in bin directory. #546
* Change internal handling of NVT XML to use nvti_t. #562
* Change NVT references like CVEs and BID to general vt_refs.
* Update Postgres to SQLite migration. #581 #601 #604 #605
* Update result diff generation at delta reports #650
* Check and create default permissions individually #671
* Add -f arg to sendmail call in email alert #676 #678
* Change get_tickets to use the status text for filtering. #697
* Made checks to prevent duplicate user names stricter. #708 #722
* Send delete command to ospd after stopping the task. #710
* Check whether hosts are alive and have results when adding
them in slave scans. #717 #726 #736 #771
* Use explicit nvti timestamps #725
* New columns Ports, Apps, Distance, and Auth in the CSV Hosts
report format #733
* The details attribute of GET_REPORTS now defaults to 0 #747
* Incoming VT timestamps via OSP are now assumed to be seconds
since epoch #754
* Accelerate NVT feed update #757
Fixed
* Make get_settings return only one setting when setting_id is
given #779
* A PostgreSQL statement order issue #611 has been addressed #642
* Fix iCalendar recurrence and timezone handling #654
* Fix issues with some scheduled tasks by using iCalendar more
instead of old period fields #656
* Fix an issue in getting the reports from GMP scanners #659 #665
* Fix GET_SYSTEM_REPORTS using slave_id #668
* Fix RAW_DATA when calling GET_INFO with type NVT without
attributes name or info_id #682
* Fix ORPHAN calculations in GET_TICKETS #684 #692
* Fix assignment of orphaned tickets to the current user #685
* Fix response from GET_VULNS when given vuln_id does not exists
* Make bulk tagging with a filter work if the resources are
already tagged #711
* Check if the scan finished before deleting it and ensure that
the task is set to done #714
* Fix columnless search phrase filter keywords with quotes #715
* Fix issues importing results or getting them from slaves if
they contain "%s" #723
* Fix sorting by numeric filter columns #751
* Fix array index error when modifying roles and groups #762
* Add NULL check in nvts_feed_version_epoch #773
* Fix percent sign escaping in report_port_count #782
* If the nvt preference is "file" type, encode it into Base64
format #785
Removed
* The handling of NVT updates via OTP has been removed. #575
* Bid and xref have been removed from table nvts. #582
* Database migration from revisions before 185 has been removed.
* Drop SQLite support #610 #612 #614
* Remove create report task creation #616
* Remove --backup command line option #615
* Remove GET_REPORTS type "assets" #617 #620
* Remove errors for unknown elements #619
* Remove unused reports column nbefile #675
* Eliminate get_tag() and parse_tags() #743
* Remove helper functions and other code for handling OTP
* Remove stray prototype nvt_iterator_copyright #721
-------------------------------------------------------------------
Mon Apr 15 13:16:44 UTC 2019 - Martin Hauke <mardnh@gmx.de>
- Initial package, version 8.0.0
