greenbone/gvmd v20.8.0

Greenbone Vulnerability Manager v20.8.0

on GitHub

Added

• Add setting "BPM Dashboard Configuration" #764
• Faster SecInfo REF retrieval for GET_REPORTS #793
• Improve performance of GET_REPORTS #801 #811 #817
• Speed up the HELP 'brief' case #807
• Faster startup #826
• Add option --optimize migrate-relay-sensors #827
• Add host_id filter for tls_certificates #835
• Allow use of public key auth in SCP alert #845
• Refuse to import config with missing NVT preference ID #853 #860
• Add "Base" scan config #862
• Add setting "BPM Data" #915
• Automatically load predefined configs from the feed #931 #933 #934
• Automatically load predefined port lists from the feed #950 #952
• Automatically load predefined report formats from the feed #968 #970
• Print UUIDs in --get-users when --verbose given #991
• Add --get-roles #992
• Add --rebuild #998
• Lock a file around the NVT sync #1002
• Add a delay for re-requesting scan information via osp #1012
• Add --optimize option cleanup-result-encoding #1013
• Perform integrity check of VTs after updates #1024 #1035
• Ensure path of listening UNIX socket exists #1040
• Add --rebuild-scap option #1051
• Stop current scheduling of task when permission denied #1058
• Trim malloc heap after updating cache #1085
• Handle QUEUED osp scan status. #1113
• Add time placeholders for SCP path #1164
• Expand detection information of results #1182
• Add filter columns for special NVT tags #1199
• Add currently_syncing for NVTs in GMP get_feeds #1210
• Add logging for ANALYZE at end of migration #1211
• Basic systemd, logrotate and config files have been added #1240

Changed

• Update SCAP and CERT feed info in sync scripts #810
• Extend command line options for managing scanners #815
• Try authentication when verifying GMP scanners #837
• Try importing private keys with libssh if GnuTLS fails #841
• Extend GMP API for nvt object to carry a explicit solution element #849 #1143
• Allow resuming OSPd-based OpenVAS tasks #869
• Require PostgreSQL 9.6 as a minimum #872
• Speed up the SCAP sync #875 #877 #879 #881 #883 #887 #889 #890 #891 #901
• Change rows of built-in default filters to -2 (use "Rows Per Page" setting) #896
• Force NVT update in migrate_219_to_220 #895
• Use temp tables to speed up migrate_213_to_214 #911
• Allow "Start Task" alert method for SecInfo events #960
• New Community Feed download URL in sync tools #982
• Change setting UUID to correct length #1018
• Change licence to AGPL-3.0-or-later #1026
• Count only best OS matches for OS asset hosts #1029
• Clean up NVTs set to name in cleanup-result-nvts #1039
• Improve validation of note and override ports #1045
• The internal list of current Local Security Checks for the Auto-FP feature was updated #1054
• Simplify sync lockfile handling #1059
• Do not ignore empty hosts_allow and ifaces_allow #1064
• Reduce the memory cache of NVTs #1076
• Sync SCAP using a second schema #1111
• Use error variable in osp_get_vts_version(). #1159
• Include unknown preferences when uploading or syncing configs #1005
• Set the default OSPD unix socket path to /var/run/ospd/ospd.sock #1238
• The default OSPD unix path is now configurable #1244

Fixed

• Add NULL check in nvts_feed_version_epoch #768
• Faster counting in GET_REPORTS when ignoring pagination #795
• Improve performance of GET_REPORTS #797
• Consider results_trash when deleting users #800
• Update to gvm-portnames-update to use new nomenclature #802
• Escaping correctly the percent sign in sql statements #818
• Try to get NVT preferences by id in create_config #821
• Remove incorrect duplicates from config preference migrator #830
• Update config preferences after updating NVTs #832
• Fix order of fingerprints in get_tls_certificates #833
• Fix notes XML for lean reports #836
• Fix asset host details insertion SQL #839
• MODIFY_USER saves comment when COMMENT is empty #838
• Prevent HOSTS_ORDERING from being '(null)' #859
• Fix result diff generation to ignore white space in delta reports #861
• Fix resource type checks for permissions #863
• Fix result_nvt for new OSP and slave results #865
• Fix preference ID in "Host Discovery" config #867
• Fix SQL for tickets with overrides #871
• Fix result_nvt for new OSP and slave results #873
• Use right format specifier for merge_ovaldef version #874
• Fix creation of "Super" permissions #892
• Add tags used for result NVTs to update_nvti_cache #916
• Apply usage_type of tasks in get_aggregates (9.0) #912
• Add target's alive test method before starting a scan. #947
• Set run status only after getting OSP-OpenVAS scan #948 #951
• Fix get_system_reports for GMP scanners #949
• Fix QoD handling in nvti cache and test_alert #954
• Use stop_osp_task for SCANNER_TYPE_OSP_SENSOR #955
• Add target's reverse_lookup_* options #959
• Fix "Start Task" alerts by using alert owner #957
• Fix Verinice ISM report format and update version #962
• Always use details testing alerts with a report #964
• Remove extra XML declaration in Anonymous XML #965
• Fix SecInfo alert filter conditions #971
• Accept expanded scheme OIDs in parse_osp_report #984
• Fix SCAP update not finishing when CPEs are older #986
• Move report format dirs when inheriting user #989
• Delete report format dirs when deleting user #993
• Put 'lean' back to 0 for GET_RESULTS #1001
• Improve handling of removed NVT prefs #1003
• Ensure parent exists when moving report format dir #1019
• Use nvti_qod instead of the old nvti_get_tag() #1022
• Remove active clause when filtering resources by tag #1025
• Add user limits on hosts and ifaces to OSP prefs #1033
• Fix order of tar options in gvm-lsc-deb-creator.sh #1034
• Fix handling of termination signals #1034
• Remove db init warning that no longer makes sense #1044
• Use correct elements to get task ID in wizards #1004 #1046
• Use current row for iterator_null, instead of first row #1047
• Setup general task preferences to launch an osp openvas task. #1055
• Fix doc of get_tasks in GMP doc #1066
• Improve refs and error handling in NVTs update #1067
• Fix failure detection for xml_split command #1074
• Fix deletion of OVAL definition data #1079
• Fix feed lock in sync script #1088
• Handle removed CPEs and CVEs in SCAP sync #1097
• Fix NVTs list in CVE details #1100
• Fix handling of duplicate settings #1106
• Fix XML escaping in setting up GMP scans #1122
• Fix and simplify parse_iso_time and add tests #1129
• Fix gvm-manage-certs. #1140
• Fix CVE scanner and results handling #1141
• Remove user from tags when deleting user #1161
• Handle INTERRUPTED scans #1146
• Check hosts in MODIFY_OVERRIDE, as in CREATE_OVERRIDE #1162
• Preserve task "once" value #1176
• Check number of args to ensure period_offsets is 0 #1175
• Fix name handling when creating host assets #1183 #1214
• Outdated references to "openvassd" have been updated to "openvas" #1189
• Quote identifiers in SQL functions using EXECUTE #1192
• Fix handling of interrupted tasks #1207
• Allow group access to lockfile and fix growing or empty timestamp #1213
• Ignore whitespace when checking for changed delta results #1219
• Check permissions when applying tag in filter #1222
• Add missing min_qod to FILTERS in GET_VULNS response #1224
• Improve EXE installer NSIS script generation #1226
• Add qod as name in results columns, for sorting #1243

Removed

• Remove support for "All SecInfo": removal of "allinfo" for type in get_info #790
• Removed tag_value() by using nvti_get_tag() #825
• Remove support for "MODIFY_REPORT" GMP command #823
• Remove 1.3.6.1.4.1.25623.1.0.90011 from Discovery config (9.0) #847
• Removed migration tool "gvm-migrate-to-postgres" including the man page #905
• Remove agents #922
• Remove GMP COMMANDS #923
• Remove unused port names facility #1041
• Add migrator to remove dead hosts #1071
• Remove classic schedules elements from GMP #1116 #1121
• Remove parallel from target options. #1119
• Remove default port list from CREATE_TARGET #1151