From 8e53cbafb1dd381d8a3ab0e6ba3a637a0b9a94af Mon Sep 17 00:00:00 2001 From: Alexandre Dulaunoy Date: Fri, 21 Jun 2024 15:25:33 +0200 Subject: [PATCH] chg: [changelog] updated --- static/Changelog-PyMISP.txt | 15 +++ static/Changelog-misp-galaxy.txt | 111 ++++++++++++++++++++++ static/Changelog-misp-modules.txt | 9 ++ static/Changelog-misp-objects.txt | 27 ++++++ static/Changelog-misp-stix.txt | 48 ++++++++++ static/Changelog-misp-warninglists.txt | 31 +++++++ static/Changelog.txt | 124 ++++++++++++++++++++++++- 7 files changed, 364 insertions(+), 1 deletion(-) diff --git a/static/Changelog-PyMISP.txt b/static/Changelog-PyMISP.txt index 3ed75e7..a3f8c21 100644 --- a/static/Changelog-PyMISP.txt +++ b/static/Changelog-PyMISP.txt @@ -2,6 +2,21 @@ Changelog ========= +v2.4.194 (2024-06-21) +--------------------- + +Changes +~~~~~~~ +- Bump changelog. [Raphaël Vinot] +- Bump version. [Raphaël Vinot] +- Bump deps. [Raphaël Vinot] + +Fix +~~~ +- Make a response in the tests a MISPUser obj. [Raphaël Vinot] +- Tests failing du to missing error. [Raphaël Vinot] + + v2.4.193 (2024-06-06) --------------------- diff --git a/static/Changelog-misp-galaxy.txt b/static/Changelog-misp-galaxy.txt index e90227a..7a63fad 100644 --- a/static/Changelog-misp-galaxy.txt +++ b/static/Changelog-misp-galaxy.txt @@ -1,6 +1,117 @@ # Changelog +## v2.4.194 (2024-06-21) + +### New + +* [GSMA MoTIF] new galaxy fixes #966. [Christophe Vandeplas] + +### Changes + +* [threat-actor] version updated. [Alexandre Dulaunoy] + +* [doc] README updated. [Alexandre Dulaunoy] + +* [sigma] updated. [Alexandre Dulaunoy] + +* [ransomware] aligned with ransomlook.io. [Alexandre Dulaunoy] + +* [threat-actor] version updated. [Alexandre Dulaunoy] + +* [tests] checks for up2date README. [Christophe Vandeplas] + +### Fix + +* Update README. [Christophe Vandeplas] + +* Fixes CaSe InSenSiTiVe duplicates. [Christophe Vandeplas] + +* [Ransomware] remove Freeme / FreeMe duplicate. [Christophe Vandeplas] + +* [Ransomware] remove Freeme / FreeMe duplicate. [Christophe Vandeplas] + +* [tests] readme git diff. [Christophe Vandeplas] + +* [tool] adoc generation to standard misp repo. [Alexandre Dulaunoy] + +* [GSMA MoTIF] fix empty values. [Christophe Vandeplas] + +* [README] updated readme. [Christophe Vandeplas] + +### Other + +* Merge pull request #990 from MISP/dependabot/pip/tools/mkdocs/urllib3-2.2.2. [Alexandre Dulaunoy] + + build(deps): bump urllib3 from 2.1.0 to 2.2.2 in /tools/mkdocs + +* Build(deps): bump urllib3 from 2.1.0 to 2.2.2 in /tools/mkdocs. [dependabot[bot]] + + Bumps [urllib3](https://github.com/urllib3/urllib3) from 2.1.0 to 2.2.2. + - [Release notes](https://github.com/urllib3/urllib3/releases) + - [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst) + - [Commits](https://github.com/urllib3/urllib3/compare/2.1.0...2.2.2) + + --- + updated-dependencies: + - dependency-name: urllib3 + dependency-type: direct:production + ... + +* Merge pull request #992 from Mathieu4141/threat-actors/fix-stone-panda-typo. [Christophe Vandeplas] + + [threat actors] fix stone panda typo + +* [threat actors] fix stone panda typo. [Mathieu Beligon] + +* Merge pull request #991 from Mathieu4141/threat-actors/2ee7c45f-2707-464a-bc89-f2e024b2bbda. [Alexandre Dulaunoy] + + [threat actors] Add 7 actors & 1 alias + +* Update readme. [Mathieu Beligon] + +* [threat-actors] Add TraderTraitor aliases. [Mathieu4141] + +* [threat-actors] Add UAC-0020. [Mathieu4141] + +* [threat-actors] Add Bondnet. [Mathieu4141] + +* [threat-actors] Add TA571. [Mathieu4141] + +* [threat-actors] Add Sp1d3r. [Mathieu4141] + +* [threat-actors] Add UNC5537. [Mathieu4141] + +* [threat-actors] Add Gitloker. [Mathieu4141] + +* [threat-actors] Add UTG-Q-008. [Mathieu4141] + +* Merge pull request #988 from MISP/dependabot/pip/tools/requests-2.32.2. [Christophe Vandeplas] + + build(deps): bump requests from 2.23.3 to 2.32.2 in /tools + +* Build(deps): bump requests from 2.23.3 to 2.32.2 in /tools. [dependabot[bot]] + + Bumps [requests](https://github.com/psf/requests) from 2.23.3 to 2.32.2. + - [Release notes](https://github.com/psf/requests/releases) + - [Changelog](https://github.com/psf/requests/blob/main/HISTORY.md) + - [Commits](https://github.com/psf/requests/commits/v2.32.2) + + --- + updated-dependencies: + - dependency-name: requests + dependency-type: direct:production + ... + +* Merge pull request #987 from cvandeplas/main. [Christophe Vandeplas] + + FS.57 Mobile Threat Intelligence Framework (MoTIF) Principles galaxy/matrix #966 + +* Merge remote-tracking branch 'MISP/main' [Christophe Vandeplas] + +* Wip: [GSMA MoTIF] new galaxy - initial pdf parsing. [Christophe Vandeplas] + + ## v2.4.193 (2024-06-06) ### New diff --git a/static/Changelog-misp-modules.txt b/static/Changelog-misp-modules.txt index 148eed6..b123686 100644 --- a/static/Changelog-misp-modules.txt +++ b/static/Changelog-misp-modules.txt @@ -1,6 +1,15 @@ # Changelog +## v2.4.194 (2024-06-21) + +### Changes + +* [requirements] security issue with this library updated. [Alexandre Dulaunoy] + + Reported by Bogdan Manole + + ## v2.4.193 (2024-06-06) ### Fix diff --git a/static/Changelog-misp-objects.txt b/static/Changelog-misp-objects.txt index 0cd3461..c7ce331 100644 --- a/static/Changelog-misp-objects.txt +++ b/static/Changelog-misp-objects.txt @@ -1,6 +1,33 @@ # Changelog +## v2.4.194 (2024-06-21) + +### New + +* [ddos-claim] new object added describing DDoS claim (a discussed st FIRST2024. [Alexandre Dulaunoy] + +### Changes + +* [doc] updated. [Alexandre Dulaunoy] + +* [tools] fix the reference to the standard git repository. [Alexandre Dulaunoy] + +* Remove categories and object_relation definitions from phone-number. [samitainio] + +### Fix + +* [ddos-claim] descriptions fixed following CERT-SE feedback. [Alexandre Dulaunoy] + +* [ddos-claim] clarify the validity based on CERT-EU feedback. [Alexandre Dulaunoy] + +### Other + +* Merge pull request #433 from samitainio/main. [Alexandre Dulaunoy] + +* Add: phone-number object. [samitainio] + + ## v2.4.193 (2024-06-06) ### Changes diff --git a/static/Changelog-misp-stix.txt b/static/Changelog-misp-stix.txt index 040bd70..147b4ab 100644 --- a/static/Changelog-misp-stix.txt +++ b/static/Changelog-misp-stix.txt @@ -1,6 +1,54 @@ # Changelog +## v2.4.194 (2024-06-21) + +### Changes + +* [poetry] Updated lock file with latest versions. [Christian Studer] + +* [poetry] Latest version. [Christian Studer] + +* [stix2 export] Cleaner STIX 2.x object IDs handling. [Christian Studer] + +### Fix + +* [stix2 import] Deduplication of the Event tags that were also added to Attributes. [Christian Studer] + + - Tags attached to Events are by definition + applied to all Attributes and do not need to be + attached again to any Attribute + +* [stix2 import] Removed unused methods. [Christian Studer] + + - Removed all methods ported previously in the + different converters + +* [stix2 import] Avoid returning an error message for marking-definition refs not parsed. [Christian Studer] + + - Marking definition objects are loaded and parsed + directly so we do not need to parse them when we + loop through the object refs. + +* [stix2 export] Cleaner code. [Christian Studer] + + - At least whenever complying with pep8 does not + make the code definitely less readable than + leaving it as is + +* [stix2 import] Differenciating the network traffic mapping to use when parsing indicators. [Christian Studer] + +### Other + +* Merge branch 'dev' of github.com:MISP/misp-stix. [Christian Studer] + +* Merge branch 'parser_feature' of github.com:MISP/misp-stix into dev. [Christian Studer] + +* Merge branch 'main' of github.com:misp/misp-stix into parser_feature. [Christian Studer] + +* Merge branch 'main' of github.com:MISP/misp-stix into dev. [Christian Studer] + + ## v2.4.193 (2024-06-06) ### Changes diff --git a/static/Changelog-misp-warninglists.txt b/static/Changelog-misp-warninglists.txt index 402a743..9c8bf18 100644 --- a/static/Changelog-misp-warninglists.txt +++ b/static/Changelog-misp-warninglists.txt @@ -1,6 +1,37 @@ # Changelog +## v2.4.194 (2024-06-21) + +### Changes + +* [warning-lists] updated to the latest version. [Alexandre Dulaunoy] + +* [tools publicdns] add missing composite attribute type. [Alexandre Dulaunoy] + +* [public dns] updated. [Alexandre Dulaunoy] + +### Fix + +* [public-dns] filter out non-domain related fields. [Alexandre Dulaunoy] + + Fix #275 as reported by @cgrangerdc + +### Other + +* Merge pull request #276 from karenyousefi/main. [Alexandre Dulaunoy] + + Update + +* Update list.json. [Karen Yousefi] + + Update to V15 + +* Update list.json. [Karen Yousefi] + +* Update list.json. [Karen Yousefi] + + ## v2.4.193 (2024-06-06) ### Changes diff --git a/static/Changelog.txt b/static/Changelog.txt index 26646af..c19a629 100755 --- a/static/Changelog.txt +++ b/static/Changelog.txt @@ -2,7 +2,123 @@ Changelog ========= -v2.4.193 (2024-06-06) +%%version%% (unreleased) +------------------------ + +Changes +~~~~~~~ +- [PyMISP] Bump changelog. [Raphaël Vinot] + + +v2.4.194 (2024-06-21) +--------------------- + +New +~~~ +- [bookmark] Added bookmark functionality. [Sami Mokaddem] + + - Allow any user to create a bookmark + - Bookmarks can be shared to all users belonging to the bookmark organisation +- [heartbeat] added. [iglocska] + + - new endpoint, /users/heartbeat + - accessible unauthed, simply returns a 200 response if the instance is operational + - No checks are done on live status, version, etc. The idea is to simply see if the instance is up + - Skips most of beforefilter() altogether, making it very fast. +- [skip otp requirement] role permission added to exclude certain roles + from the otp requirement. [iglocska] + + - handy for filtered, local service accounts +- [users api] added new boolean field to the output indicating whether + totp is set for the user. [iglocska] + + - A simple boolean field to show whether totp has been set up for the given account + - works for /users/view, /admin/users/view, /admin/users/index + +Changes +~~~~~~~ +- [misp-stix] Bumped latest version. [Christian Studer] +- [schema] bump. [iglocska] +- [version] bump. [iglocska] +- [PyMISP] Bump version. [Raphaël Vinot] +- [warning-lists] updated. [Alexandre Dulaunoy] +- [misp-galaxy] updated. [Alexandre Dulaunoy] +- [misp-objects] updated. [Alexandre Dulaunoy] +- [bookmark:index] Added title acting as doc for exposed_to_org field. + [Sami Mokaddem] +- [bookmarks:index] Improved support of quick search. [Sami Mokaddem] +- [warning-lists] updated. [Alexandre Dulaunoy] +- [ACL] added heartbeat to the ACL component. [iglocska] +- [schema and mysql.sql] updated. [iglocska] + + - it's been long overdue + +Fix +~~~ +- [default roles] delegation permission added to sync user and + publisher. [iglocska] +- [default role] readded. [iglocska] +- [PyMISP] Mistake in tests. [Raphaël Vinot] +- [roles] defaults fixed. [iglocska] +- [event report markdown editor] not displaying tags, fixes #9774. + [iglocska] + + - garbage response type bites us in the arse again +- [feed ingestion] include a user agent to circumvent issues with feeds + requiring it, fixes #9773. [iglocska] +- [galaxycluster blocklist] editing missing view, fixes #9766. + [iglocska] +- [missing org logo] in decaying model readded, fixes #9768. [iglocska] + + - went fubar after the move to base64 encoded org images +- [decaying tool] JSON response fixes, fixes #9769. [iglocska] + + - AJAX queries shouldn't receive the responses back as text/html when we're dealing with JSON responses +- [object references links] fixed, fixes #9787. [iglocska] + + - Clicking on a referenced object didn't refocus the view as it does for attributes + - moved to using data fields for referencing the correct object + + - The code handling this was an eldritch nightmare that only worked when enough sheep have been sacirificed to the wicked javascript deity on the last full moon +- [server edit] view - notice error fixed. [iglocska] + + - url_params in the pull rules may not exist on old server objects +- [bookmark:index] Fixed typo in description. [Sami Mokaddem] +- [mysql.sql] default role settings fixed. [iglocska] + + memory_limit / max_execution_time should be NULL not 0 +- [openapi] local flag in EventTags should be boolean. [iglocska] +- [doc] correct filenames in rhel background worker migration guide + steps. [Jeroen Pinoy] +- [sighting sync] raised tiny chunk size to improve performance. + [iglocska] + +Other +~~~~~ +- Merge branch 'develop' into 2.4. [iglocska] +- Merge branch 'develop' of github.com:MISP/MISP into develop. + [Christian Studer] +- Merge branch 'bookmarks' into develop. [iglocska] +- Merge branch 'develop' into bookmarks. [iglocska] +- Merge branch '2.4' into develop. [iglocska] +- Update README.md. [Andras Iklody] +- Merge pull request #9782 from mdhirt/mdhirt-fix-#9781. [Andras Iklody] + + Update eventattributetoolbar.ctp +- Update eventattributetoolbar.ctp. [Mike] + + Fixed invalid object _( on lines 266 and 274 +- Merge branch 'develop' of github.com:MISP/MISP into develop. + [iglocska] +- Merge branch 'develop' of github.com:MISP/MISP into develop. + [iglocska] +- Merge pull request #9771 from Wachizungu/fix-rhel-background-workers- + migration-guide. [Alexandre Dulaunoy] + + fix: [doc] correct filenames in rhel background worker migration guid… + + +v2.4.193 (2024-06-11) --------------------- New @@ -38,6 +154,11 @@ New Changes ~~~~~~~ +- [recorrelation] added new functionality to set the recorrelation chunk + size. [iglocska] + + - recorrelate in configurable chunk sizes (rather than the old hard coded value of 500) + - immediately execute the saving of correlations after each chunk (should drastically reduce memory usage for massive events) - [version] bump. [iglocska] - [PyMISP] Bump version. [Raphaël Vinot] - [misp-stix] Bumped latest version. [Christian Studer] @@ -136,6 +257,7 @@ Fix Other ~~~~~ - Merge branch 'develop' into 2.4. [iglocska] +- Merge branch 'develop' into 2.4. [iglocska] - Merge branch 'develop' of github.com:MISP/MISP into develop. [Christian Studer] - Merge pull request #9764 from Wachizungu/add-mysqlobserverextended-