MISP
/
misp-website
mirror of https://github.com/MISP/misp-website
2
0
Fork 0
Code Issues Releases Wiki Activity

Update 2018-06-07-MISP.2.4.92.released.md

pull/6/head
Andras Iklody 2018-06-07 22:30:06 +02:00 committed by GitHub
parent 2a658da3aa
commit 3ee72eedbc
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 8 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

16
_posts/2018-06-07-MISP.2.4.92.released.md
View File

@ -4,23 +4,23 @@ layout: post
featured: /assets/images/misp-small.png
---
A new version of MISP [2.4.92](https://github.com/MISP/MISP/tree/v2.4.92) has been released including performance improvement, improvements and bug fixes.
A new version of MISP [2.4.92](https://github.com/MISP/MISP/tree/v2.4.92) has been released including aggressive performance boosts, various improvements and bug fixes.
We received feedback from various users about the impact on performance when the [MISP warning-lists](http://www.github.com/MISP/misp-warninglists/) are enabled (a feature allowing to detect and filter false positives from attributes in MISP). The performance issue with warning-lists has been resolved in a way that today enabling warning-lists will barely have impact when viewing or browsing events. We hope this performance improvement will increase the adoption of the warning-lists at large.
We received feedback from various users about the negative impact on performance when the [MISP warning-lists](http://www.github.com/MISP/misp-warninglists/) are enabled (a feature allowing the detection and filtering of false positive attributes in MISP). The performance hit incurred by enabling warning-lists has been reduced to such an extend that enabling them will barely have any impact on performance when viewing or browsing events. We hope this performance gain will increase the overall adoption of the warning-lists.
A benchmarking tool has been added to the AppModel allowing to easily spot performance issue in the application. Aggregate execution time, number of iterations or peaked memory usage can be easily spotted in order to smooth debugging within MISP.
A benchmarking tool has been added to the AppModel allowing us to easily spot performance issues across the application. Aggregate execution time, number of iterations and peaked memory usage can be easily spotted in order to facilitate rapid and accurate profiling of the performance across the various functionalities of MISP.
API has been improved to allow objects to be added via template UUID and version.
The API has been improved to allow objects to be added by template UUID and version in addition to the local ID.
A new role permission to publish to the ZMQ pub-sub channel has been added (as kindly requested by our favorite user who regularly sends us horse heads). This role allows to enable or disable ZMQ publishing per user.
A new role permission to publish to the ZMQ pub-sub channel has been added (as kindly requested by our favorite user, who regularly motivates us by sending decapitated horse heads if we slack). This role allows administrators to enable or disable ZMQ publishing per user.
The flash message system has been rewrote from scratch allowing a cleaner approach relying on bootstrap's internals with 3 different levels of notification.
The flash message system has been rewritten from scratch, providing a cleaner approach that relies on bootstrap's internal flash messaging look and feel, along with 3 different levels of notifications.
Allow hard delete of attributes who were never published to avoid any leak of sensitive information via soft deleted attributes.
Allow hard deleting of attributes that were never published in order to avoid the leaking of sensitive information via soft deleted attributes.
Two security vulnerabilities were fixed: [CVE-2018-11245](https://cve.circl.lu/cve/CVE-2018-11245) and [CVE-2018-11562](https://cve.circl.lu/cve/CVE-2018-11562). Thanks to the reporters Jarek Kozluk from zbp.pl and Dawid Czarnecki. Don't hesitate to contact us for [reporting vulnerabilities](https://github.com/MISP/MISP/blob/2.4/CONTRIBUTING.md#reporting-security-vulnerabilities), we love those contributions.
STIX 1 and STIX 2 export and import moved to Python 3 (don't forget to update the dependencies). STIX 1 export has been improved to include additional objects such X.509 certificate and MISP objects. STIX 1 import has been improved for email, whois, and artifact objects along with tags journal entries. STIX 2 export improved regkey object parsing, ip|port and custom object export.
The STIX 1 and STIX 2 exports and imports were migrated to Python 3 (don't forget to update the dependencies). The STIX 1 export has been improved to include additional objects such X.509 certificate and MISP objects. The STIX 1 import has been improved for email, whois, and artifact objects along with tags via journal entries. The STIX 2 export has improved regkey object parsing, along with ip|port and custom object export.
The full change log is available [here](https://www.misp.software/Changelog.txt). [PyMISP change log](https://www.misp.software/PyMISP-Changelog.txt) is also available.