Nmap 6.01 Released

900913

Fyodor fyodor@insecure.org
00:26 (2 hours ago)




to nmap-hackers


Hi folks! I'm happy to report that the Nmap 6.00 release
(http://nmap.org/6 ) last month was a huge success, with hundreds of
thousands of downloads and a bunch of positive articles and reviews.
But any release this big is going to uncover a few issues, so we've
released Nmap 6.01 to address them. This should also appease the more
conservative users who always wait for the first patch update before
installing a major software release. Meanwhile, the more adventurous
users should skip 6.01 entirely and compile straight from our SVN
repository (http://nmap.org/book/install.html#inst-svn)!

Nmap 6.01 source code and binary packages for Linux, Windows, and Mac
are available at:

http://nmap.org/download.html

If you find any bugs, please let us know on nmap-dev as described at
http://nmap.org/book/man-bugs.html. We're not planning another
near-term stable release, but you can inspire one by finding a big
enough bug .

Here are the changes in 6.01:

o [Zenmap] Fixed a hang that would occur on Mac OS X 10.7. A symptom
of the hang was this message in the system console:
"Couldn't recognize the image file format for file
'/Applications/Zenmap.app/Contents/MacOS/../Resources/share/zenmap/pixmaps/radialnet/padlock.png'".
[David Fifield]

o [Zenmap] Fixed a crash that happened when activating the host filter.
File "zenmapCore\SearchResult.pyo", line 155, in match_os
KeyError: 'osmatches'
[jah]

o Fixed an error that occurred when scanning certain addresses like
192.168.0.0 on Windows XP:
get_srcaddr: can't connect socket: The requested address is not valid in its context.
nexthost: failed to determine route to 10.80.0.0
[David Fifield]

o Fixed a bug that caused Nmap to fail to find any network interface when
at least one of them is in the monitor mode. The fix was to define the
ARP_HRD_IEEE80211_RADIOTAP 802.11 radiotap header identifier in the
libdnet-stripped code. Network interfaces that are in this mode are used
by radiotap for 802.11 frame injection and reception. The bug was
reported by Tom Eichstaedt and Henri Doreau.
http://seclists.org/nmap-dev/2012/q2/449
http://seclists.org/nmap-dev/2012/q2/478
[Djalal Harouni, Henri Doreau]

o Fixed the greppable output of hosts that time-out (when --host-timeout was
used and the host timed-out after something was received from that host).
This issue was reported by Matthew Morgan. [jah]

o [Zenmap] Updated the version of Python used to build the Windows
release from 2.7.1 to 2.7.3 to remove a false-positive security
alarm flagged by tools such as Secunia PSI. There was a minor
vulnerability in certain Python27.dll web functionality (which Nmap
doesn't use anyway) and Secunia was flagging all software which
includes that version of Python27.dll. This update should prevent
the false alarm.

In fun weekend news, I'm happy to report that Nmap may be in another
upcoming movie! When I secure a screenshot, I'll post it to the Nmap
Facebook, Twitter, and Movie pages:

http://facebook.com/nmap
http://twitter.com/nmap
http://nmap.org/movies.html

Enjoy the new release!
-Fyodor

infodox

Best way to keep track of nmap is the SVN. Official releases are lagging behind it.


infodox@shinigami:~$ nmap -V

Nmap version 6.02 ( http://nmap.org )
Platform: i686-pc-linux-gnu
Compiled with: nmap-liblua-5.2.1 openssl-1.0.1 nmap-libpcre-7.6 libpcap-1.1.1 nmap-libdnet-1.12 ipv6
Compiled without:
infodox@shinigami:~$

Omnomnom. New nmap. New scripts too

OH!

Fixed a bug that caused Nmap to fail to find any network interface when
at least one of them is in the monitor mode. The fix was to define the
ARP_HRD_IEEE80211_RADIOTAP 802.11 radiotap header identifier in the
libdnet-stripped code. Network interfaces that are in this mode are used
by radiotap for 802.11 frame injection and reception. The bug was
reported by Tom Eichstaedt and Henri Doreau.
http://seclists.org/nmap-dev/2012/q2/449
http://seclists.org/nmap-dev/2012/q2/478
[Djalal Harouni, Henri Doreau]

About time they fixed that bug!