Hello OpenVAS users, in the past couple of weeks we have uploaded various updated source code packages for OpenVAS-5. These include various security fixes, bug fixes and other improvements.
We recommend to update to the new versions. See here for the Downloads (also OpenVAS-4): http://www.openvas.org/install-source.html openvas-libraries 5.0.3 ----------------------- We had two releases in a short term here, 5.0.2 and 5.0.3. Main changes compared to 5.0.2: * Add extended version of omp_create_task to allow preferences to be set. Main changes compared to 5.0.1: * Fixed handling of ssh keys for certain cases. * Fixed support for newer gnutls libraries. * Improved built environment for modern gcc compilers. * nmap builtin control: Bugfix in nmap parameters. * Added various sanity NULL checks. * Slightly improved ldap authentication API to mark obligatory and optional parameters. openvas-manager 3.0.3 --------------------- We had two releases in a short term here, 3.0.2 and 3.0.3. Main changes since 3.0.2: * Security bugfix that quotes search phrases for SQL. * Bugfix to have Slave tasks consider max_checks and max_hosts preferences. Main changes since 3.0.1: * Fixed bug to correctly consider user-defined NVT-specific timeouts to be sent to the scanner. * When getting all reports, get only the visible reports for the current user. * Improved answer times by avoiding unnecessary database blocking, especially when doing large reports. * Improved UTF8 support for data received from OpenVAS Scanner. * Improved hostname validation. * Avoid empty lines in user rules. * Fixed some build issues for older compilers and for newer glib versions. * Improvement: Make the date formats of the PDF and LaTeX reports nicer. * Improvement: Added mechanism for updating the report format UUIDs on startup. This allows easier update of built-in report format plugins. * Bugfix: Set port list when creating predefined target. Ensure that list is correct if target exists already. * Bugfix: Consider filtered debug messages properly. * Add DETECTION and NVT/XREF to RESULT in report import. * Improve status management of running tasks. openvas-administrator 1.2.1 --------------------------- The release fixes build issues for newer systems and fixes a segfault bug. Main changes since 1.2.0: * Improve build system to work with newer glib and gcc versions. * Prevent segfault when sync script does not end properly. gsa 3.0.3 --------- We had two releases in a short term here, 3.0.2 and 3.0.3. Main changes since 3.0.2: * Fix security issue that allowed registered users to craft URLs that can kill the GSA daemon (Denial of Service). Main changes since 3.0.1: * Bugfix to not mix summary and comment for report format plugins. * Improved build system. * Bugfix to allow newlines in preference:value, because the value could be a file. * Bugfix to validate SSH port only if SSH credential is given. * Bugfix to add references for second result in delta "changed" case. * Bugfix to re-enable PDF as default download. * Bugfix to avoid broken URLs for CVEs. openvas-cli 1.1.5 ----------------- This release fixes build issues and allows it to use future OMP versions as long as commands are still compatible. Main changes compared to 1.1.4: * Clean up CMake infrastructure and ensure that compilation with modern gccs works. * If the OMP version is unknown just treat it like version 3.0, as later versions may still work with the 3.0 settings. Best regards Jan-Oliver Wagner -- Dr. Jan-Oliver Wagner | ++49-541-335084-0 | http://www.greenbone.net/ Greenbone Networks GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 202460 Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner _______________________________________________ Openvas-announce mailing list Openvas-announce@wald.intevation.org http://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-announce
