Merge 7.94 release branch

CHANGELOG

@@ -1,15 +1,69 @@
 #Nmap Changelog ($Id$); -*-text-*-
 
-o [GH#2338][NSE] Fix mpint packing in ssh2 library, which was causing OpenSSH
- errors like "ssh_dispatch_run_fatal: bignum is negative" [Sami Loone]
+Nmap 7.94 [2023-05-19]
+
+o Zenmap and Ndiff now use Python 3! Thanks to the many contributors who made
+ this effort possible:
+ + [GH#2088][GH#1176][Zenmap] Updated Zenmap to Python 3 and PyGObject. [Jakub Kulík]
+
+ + [GH#1807][GH#1176][Ndiff] Updated Ndiff to Python 3. [Brian Quigley]
+
+ + Additional Python 3 update fixes by Sam James, Daniel Miller. Special thanks
+ to those who opened Python 3-related issues and pull requests: Eli
+ Schwartz, Romain Leonard, Varunram Ganesh, Pavel Zhukov, Carey Balboa,
+ Hasan Aliyev, and others.
+
+o [Windows] Upgraded Npcap (our Windows raw packet capturing and
+ transmission driver) from version 1.71 to the latest version 1.75. It
+ includes dozens of performance improvements, bug fixes and feature
+ enhancements described at https://npcap.com/changelog.
+
+o Nmap now prints vendor names based on MAC address for MA-S (24-bit), MA-M
+ (28-bit), and MA-L (36-bit) registrations instead of the fixed 3-byte MAC
+ prefix used previously for lookups.
+
+o Added partial silent-install support to the Nmap Windows
+ installer. It previously didn't offer silent mode (/S) because the
+ free/demo version of Npcap Windoes packet capturing driver that it
+ needs and ships with doesn't include a silent installer. Now with
+ the /S option, Nmap checks whether Npcap is already installed
+ (either the free version or OEM) and will silently install itself if
+ so. This is similar to how the Wireshark installer works and is
+ particularly helpful for organizations that want to fully automate
+ their Nmap (and Npcap) deployments. See
+ https://nmap.org/nmap-silent-install for more details.
+
+o Lots of profile-guided memory and processing improvements for Nmap, including
+ OS fingerprint matching, probe matching and retransmission lookups for large
+ hostgroups, and service name lookups. Overhauled Nmap's string interning and
+ several other startup-related procedures to speed up start times, especially
+ for scans using OS detection. [Daniel Miller]
+
+o Integrated many of the most-submitted IPv4 OS fingerprints for recent
+ versions of Windows, iOS, macOS, Linux, and BSD. Added 22 fingerprints,
+ bringing the new total to 5700!
+
+o [NSE][GH#548] Added the tftp-version script which requests a
+ nonexistent file from a TFTP server and matches the error message
+ to a database of known software. [Mak Kolybabi]
+
+o [Ncat][GH#1223] Ncat can now accept "connections" from multiple UDP hosts in
+ listen mode with the --keep-open option. This also enables --broker and
+ --chat via UDP. [Daniel Miller]
 
-o Additional Python 3 update fixes by Sam James, Daniel Miller. Special thanks
- to those who opened Python 3-related issues and pull requests: Eli Schwartz, Romain
- Leonard, Varunram Ganesh, Pavel Zhukov, Carey Balboa, Hasan Aliyev, and others.
+o [GH#2575] Upgraded OpenSSL binaries (for the Windows builds and for
+ RPM's) to version 3.0.8. This resolves some CVE's (CVE-2022-3602;
+ CVE-2022-3786) which don't impact Nmap proper since it doesn't do
+ certificate validation, but could possibly impact Ncat when the
+ --ssl-verify option is used.
 
-o [GH#1807][GH#1176][Ndiff] Updated Ndiff to Python 3. [Brian Quigley]
+o Upgrade included libraries: zlib 1.2.13, Lua 5.4.4, libpcap 1.10.4
 
-o [GH#2088][GH#1176][Zenmap] Updated Zenmap to Python 3 and PyGObject. [Jakub Kulík]
+o [GH#2532] Removed the bogus OpenSSL message from the Windows Nmap
+ executable which looked like "NSOCK ERROR ssl_init_helper(): OpenSSL
+ legacy provider failed to load." We actually already have the legacy
+ provider built-in to our OpenSSL builds, and that's why loading the
+ external one fails.
 
 o [GH#2541] UDP port scan (-sU) and version scan (-sV) now both use the same
  data source, nmap-service-probes, for data payloads. Previously, the
@@ -24,25 +78,33 @@ o Nmap's service scan (-sV) can now probe the UDP service behind a DTLS tunnel,
 o [Ncat] Ncat in listen mode with --udp --ssl will use DTLS to secure incoming
  connections. [Daniel Miller]
 
-o [Ncat][GH#1223] Ncat can now accept "connections" from multiple UDP hosts in
- listen mode with the --keep-open option. This also enables --broker and
- --chat via UDP. [Daniel Miller]
+o [GH#1023] Handle Internationalized Domain Names (IDN) like Яндекс.рф on
+ platforms where getaddrinfo supports the AI_IDN flag. [Daniel Miller]
 
-o [GH#2507] Updates to the Japanese manpage translation by Taichi Kotake.
+o [Ncat] Addressed an issue from the Debian bug tracker
+ (https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=969314) regarding data
+ received immediately after a SOCKS CONNECT response. Ncat can now be
+ correctly used in the ProxyCommand option of OpenSSH.
+
+o Improved DNS domain name parsing to avoid recursion and enforce name length
+ limits, avoiding a theoretical stack overflow issue with certain crafted DNS
+ server responses, reported by Philippe Antoine.
 
-o [NSE][GH#548] New script tftp-version requests a nonexistent file from a TFTP
- server and matches the error message to a database of known software.
- [Mak Kolybabi]
+o [GH#2338][NSE] Fix mpint packing in ssh2 library, which was causing OpenSSH
+ errors like "ssh_dispatch_run_fatal: bignum is negative" [Sami Loone]
+
+o [GH#2507] Updates to the Japanese manpage translation by Taichi Kotake.
 
-o [Ncat][GH#1026][GH#2426] Speed up transfers on Windows by avoiding a 125ms
- wait for every read from STDIN. [scriptjunkie]
+o [Ncat][GH#1026][GH#2426] Dramatically speed up Ncat transfers on
+ Windows by avoiding a 125ms wait for every read from
+ STDIN. [scriptjunkie]
 
 o [GH#1192][Windows] Periodically reset the system idle timer to keep the
  system from going to sleep while scans are in process. This only affects port
  scans and OS detection scans, since NSE and version scan do not rely on
  timing data to adjust speed.
 
-o Update the Nmap Public Source License (NPSL) to Version 0.95. This
+o Updated the Nmap Public Source License (NPSL) to Version 0.95. This
  just clarifies that the derivative works definition and all other
  license clauses only apply to parties who choose to accept the
  license in return for the special rights granted (such as Nmap
@@ -52,9 +114,6 @@ o Update the Nmap Public Source License (NPSL) to Version 0.95. This
  work. Versions of Nmap released under previous versions of the NPSL
  may also be used under the NPSL 0.95 terms.
 
-o [GH#1023] Handle Internationalized Domain Names (IDN) like Яндекс.рф on
- platforms where getaddrinfo supports the AI_IDN flag. [Daniel Miller]
-
 o Avoid storing many small strings from IPv4 OS detection results in the global
  string_pool. These were effectively leaked after a host is done being
  scanned, since string_pool allocations are not freed until Nmap quits.

docs/man-xlate/nmap-es.1

@@ -2,12 +2,12 @@
 .\" Title: nmap
 .\" Author: [see the "Autor" section]
 .\" Generator: DocBook XSL Stylesheets v1.79.1 <https://docbook.sf.net/>
-.\" Date: 31/03/2023
+.\" Date: 17/05/2023
 .\" Manual: Guía de referencia de Nmap
 .\" Source: Nmap
 .\" Language: Spanish
 .\"
-.TH "NMAP" "1" "31/03/2023" "Nmap" "Guía de referencia de Nmap"
+.TH "NMAP" "1" "17/05/2023" "Nmap" "Guía de referencia de Nmap"
 .\" -----------------------------------------------------------------
 .\" * Define some portability stuff
 .\" -----------------------------------------------------------------

docs/man-xlate/nmap-fr.1

@@ -2,12 +2,12 @@
 .\" Title: nmap
 .\" Author: [see the "Auteur" section]
 .\" Generator: DocBook XSL Stylesheets v1.79.1 <https://docbook.sf.net/>
-.\" Date: 31/03/2023
+.\" Date: 17/05/2023
 .\" Manual: Guide de référence Nmap
 .\" Source: Nmap
 .\" Language: French
 .\"
-.TH "NMAP" "1" "31/03/2023" "Nmap" "Guide de référence Nmap"
+.TH "NMAP" "1" "17/05/2023" "Nmap" "Guide de référence Nmap"
 .\" -----------------------------------------------------------------
 .\" * Define some portability stuff
 .\" -----------------------------------------------------------------

docs/man-xlate/nmap-hr.1

@@ -2,12 +2,12 @@
 .\" Title: nmap
 .\" Author: [see the "Author" section]
 .\" Generator: DocBook XSL Stylesheets v1.79.1 <https://docbook.sf.net/>
-.\" Date: 03/31/2023
+.\" Date: 05/17/2023
 .\" Manual: Nmap vodič
 .\" Source: Nmap
 .\" Language: Croatian
 .\"
-.TH "NMAP" "1" "03/31/2023" "Nmap" "Nmap vodič"
+.TH "NMAP" "1" "05/17/2023" "Nmap" "Nmap vodič"
 .\" -----------------------------------------------------------------
 .\" * Define some portability stuff
 .\" -----------------------------------------------------------------

docs/man-xlate/nmap-hu.1

@@ -2,12 +2,12 @@
 .\" Title: nmap
 .\" Author: [FIXME: author] [see https://docbook.sf.net/el/author]
 .\" Generator: DocBook XSL Stylesheets v1.79.1 <https://docbook.sf.net/>
-.\" Date: 31/03/2023
+.\" Date: 17/05/2023
 .\" Manual: Nmap Referencia Útmutató
 .\" Source: Nmap
 .\" Language: Hungarian
 .\"
-.TH "NMAP" "1" "31/03/2023" "Nmap" "Nmap Referencia Útmutató"
+.TH "NMAP" "1" "17/05/2023" "Nmap" "Nmap Referencia Útmutató"
 .\" -----------------------------------------------------------------
 .\" * Define some portability stuff
 .\" -----------------------------------------------------------------

docs/man-xlate/nmap-id.1

@@ -2,12 +2,12 @@
 .\" Title: nmap
 .\" Author: [see the "Penulis" section]
 .\" Generator: DocBook XSL Stylesheets v1.79.1 <https://docbook.sf.net/>
-.\" Date: 03/31/2023
+.\" Date: 05/17/2023
 .\" Manual: Panduan Referensi Nmap
 .\" Source: Nmap
 .\" Language: Indonesian
 .\"
-.TH "NMAP" "1" "03/31/2023" "Nmap" "Panduan Referensi Nmap"
+.TH "NMAP" "1" "05/17/2023" "Nmap" "Panduan Referensi Nmap"
 .\" -----------------------------------------------------------------
 .\" * Define some portability stuff
 .\" -----------------------------------------------------------------

docs/man-xlate/nmap-it.1

@@ -2,12 +2,12 @@
 .\" Title: nmap
 .\" Author: [see the "Autore" section]
 .\" Generator: DocBook XSL Stylesheets v1.79.1 <https://docbook.sf.net/>
-.\" Date: 31/03/2023
+.\" Date: 17/05/2023
 .\" Manual: Guida di riferimento di Nmap
 .\" Source: Nmap
 .\" Language: Italian
 .\"
-.TH "NMAP" "1" "31/03/2023" "Nmap" "Guida di riferimento di Nmap"
+.TH "NMAP" "1" "17/05/2023" "Nmap" "Guida di riferimento di Nmap"
 .\" -----------------------------------------------------------------
 .\" * Define some portability stuff
 .\" -----------------------------------------------------------------

docs/man-xlate/nmap-ja.1

@@ -2,12 +2,12 @@
 .\" Title: nmap
 .\" Author: [FIXME: author] [see https://docbook.sf.net/el/author]
 .\" Generator: DocBook XSL Stylesheets v1.79.1 <https://docbook.sf.net/>
-.\" Date: 31/03/2023
+.\" Date: 17/05/2023
 .\" Manual: Nmap リファレンスガイド
 .\" Source: Nmap
 .\" Language: Japanese
 .\"
-.TH "NMAP" "1" "31/03/2023" "Nmap" "Nmap リファレンスガイド"
+.TH "NMAP" "1" "17/05/2023" "Nmap" "Nmap リファレンスガイド"
 .\" -----------------------------------------------------------------
 .\" * Define some portability stuff
 .\" -----------------------------------------------------------------
@@ -93,7 +93,7 @@ Nmapの最新バージョンは、\m[blue]\fB\%https://nmap.org\fR\m[]から入
 .RS 4
 .\}
 .nf
-Nmap 7\&.93SVN ( https://nmap\&.org )
+Nmap 7\&.94 ( https://nmap\&.org )
 Usage: nmap [Scan Type(s)] [Options] {target specification}
 TARGET SPECIFICATION:
  Can pass hostnames, IP addresses, networks, etc\&.

docs/man-xlate/nmap-pl.1

@@ -2,12 +2,12 @@
 .\" Title: nmap
 .\" Author: [see the "Autor" section]
 .\" Generator: DocBook XSL Stylesheets v1.79.1 <https://docbook.sf.net/>
-.\" Date: 03/31/2023
+.\" Date: 05/17/2023
 .\" Manual: Opis programu Nmap
 .\" Source: Nmap
 .\" Language: Polish
 .\"
-.TH "NMAP" "1" "03/31/2023" "Nmap" "Opis programu Nmap"
+.TH "NMAP" "1" "05/17/2023" "Nmap" "Opis programu Nmap"
 .\" -----------------------------------------------------------------
 .\" * Define some portability stuff
 .\" -----------------------------------------------------------------

docs/man-xlate/nmap-pt_BR.1

@@ -2,12 +2,12 @@
 .\" Title: nmap
 .\" Author: [see the "Autor" section]
 .\" Generator: DocBook XSL Stylesheets v1.79.1 <https://docbook.sf.net/>
-.\" Date: 31/03/2023
+.\" Date: 17/05/2023
 .\" Manual: Guia de Referência do Nmap
 .\" Source: Nmap
 .\" Language: Portuguese (Brazil)
 .\"
-.TH "NMAP" "1" "31/03/2023" "Nmap" "Guia de Referência do Nmap"
+.TH "NMAP" "1" "17/05/2023" "Nmap" "Guia de Referência do Nmap"
 .\" -----------------------------------------------------------------
 .\" * Define some portability stuff
 .\" -----------------------------------------------------------------

docs/man-xlate/nmap-ro.1

@@ -2,12 +2,12 @@
 .\" Title: nmap
 .\" Author: [FIXME: author] [see https://docbook.sf.net/el/author]
 .\" Generator: DocBook XSL Stylesheets v1.79.1 <https://docbook.sf.net/>
-.\" Date: 03/31/2023
+.\" Date: 05/17/2023
 .\" Manual: Ghid de referinta Nmap
 .\" Source: Nmap
 .\" Language: Romanian
 .\"
-.TH "NMAP" "1" "03/31/2023" "Nmap" "Ghid de referinta Nmap"
+.TH "NMAP" "1" "05/17/2023" "Nmap" "Ghid de referinta Nmap"
 .\" -----------------------------------------------------------------
 .\" * Define some portability stuff
 .\" -----------------------------------------------------------------

docs/man-xlate/nmap-sk.1

@@ -2,12 +2,12 @@
 .\" Title: nmap
 .\" Author: [FIXME: author] [see https://docbook.sf.net/el/author]
 .\" Generator: DocBook XSL Stylesheets v1.79.1 <https://docbook.sf.net/>
-.\" Date: 31. marca 2023
+.\" Date: 17. mája 2023
 .\" Manual: Nmap - Referencna prirucka
 .\" Source: Nmap
 .\" Language: Slovak
 .\"
-.TH "NMAP" "1" "31. marca 2023" "Nmap" "Nmap \- Referencna prirucka"
+.TH "NMAP" "1" "17. mája 2023" "Nmap" "Nmap \- Referencna prirucka"
 .\" -----------------------------------------------------------------
 .\" * Define some portability stuff
 .\" -----------------------------------------------------------------