Project Filelist for OpenVAS
File Release Notes and Changelog
Release Name: 6.0.9
This is the ninth maintenance release of the Greenbone Security Assistant (GSA) 6.0 module for the Open Vulnerability Assessment System release 8 (OpenVAS-8). This release addresses an important security issue: - Due to incomplete URL checking it was possible to trigger a segmentation fault terminating the main daemon process by including invalid UTF-8 characters in a request URL. The release also incorporates several improvements from the development branch of OpenVAS. Please see below for a comprehensive list of changes. Many thanks to everyone who contributed to this release: Matthew Mundell, Timo Pollmeier and Jan-Oliver Wagner.
Main changes compared to 6.0.8: * Requests and their parameters are now checked for invalid UTF-8. * An issue which caused a GLib critical error when parsing parameters under certain circumstances has been addressed. * The values for a number of parameters are now checked more strictly.