GLPI Agent 1.12 is available!

by | Jan 24, 2025 | News

GLPI Agent 1.12 has been released.

You can download it on the GLPI Agent github project: https://github.com/glpi-project/glpi-agent/releases/tag/1.12

This version comes with some fixes and enhancements and here are the essential ones:

  • It introduces glpi-version option to enable inventory_format dependent features when not using native inventory
  • Httpd interface has been reworked:
    • /now forces a full inventory by default
    • /now supports partialfulldelay and task parameters: default is /now?full=1&task=all&delay=0
    • Index page will now show 2 links:
      • the usual one has been renamed “Force running all targets planned tasks” to clarify its purpose
      • the second one uses the usual “Force an inventory” text but it will now really only trigger inventory task
  • You can now install agent into a path including a parenthesis on Windows without an error
  • Fix server url parsing when it has no url scheme
  • On MacOS, a new ssl-keystore option value is available to choose system SSL CA keychain
  • For Inventory task:
    • We try to keep network interface with a “vpn” word reference in description as even disabled on windows
    • Add support for glpi-version option
    • Network interface inventory on linux has been enhanced 
    • --partial option support has been fixed when used with glpi-agent script
    • Trellix/McAfee agent is now recognized as an antivirus on Windows
    • Few USB devices was ignored on linux, this is fixed
    • On Windows, agent now strips connected USB printers serialnumber from leading zeros
  • For RemoteInventory task:
    • remote inventories have their own state file so they also generates partial inventories when possible
  • For NetDiscovery and NetInventory tasks:
    • Devices support has been enhanced for:
      • Aerohive and Intelbras devices
      • Raritan, Bachmann and RNX PDU devices
      • Avaya J100 IP phones and Lexmark printers
    • HP peripherals support has been fixed when device reports invalid firmware dates
    • Agent now avoids to send discovery XML when using NetScan from ToolBox
  • For Deploy task:
    • Command run checks were wrong for few cases, this is now fixed
    • When using P2P feature, agent now avoids to scan network and broadcast addresses
    • Sha512 check now supports checksum provided in uppercase
  • For Collect task:
    • Sha512 check now supports checksum provided in uppercase
    • “checkSumSHA2” check is now renamed “checkSumSHA256” and so permit to support sha256 checksum
  • For ESX task:
    • ESX virtualmachines can now be reported with ip and OS. This feature requires at least GLPI 10.0.17 server-side.
    • Add guessed Total ESX memory size as memory component
  • For ToolBox plugin:
    • Fixed enabled jobs start up and log support
    • Counters update does no more requires debug mode to be enabled

About packaging, here is what you should retain:

  • On Windows, perl is now built with OpenSSL v3.4.0, libxml2 library v2.13.6, libssh2 v1.11.1 and libiconv 1.18 supports.
  • The MacOSX packaging now uses OpenSSL v3.4.0.
  • Perl installer for linux now supports --delaytime option
  • Perl installer for linux, on systems using “dnf”, will now use an option to disable local package gpg check during agent installation

You can check changes details in the official online Changelog available here: https://github.com/glpi-project/glpi-agent/blob/1.12/Changes

As usual, we invite you to update your agents to take advantage of these improvements.

Follow us on social networks so you don’t miss any news!

Follow us!

GLPI Agent: Release 1.7.3

by | Apr 3, 2024 | News

GLPI Agent 1.7.3 has been released.

You can download it on the GLPI Agent github project: https://github.com/glpi-project/glpi-agent/releases/tag/1.7.3

This version essentially fixes a regression introduced in the MSI packaging for Windows in the 1.7.2 version:

  • the LOCAL parameter was forced to the agent installation folder when not used. After that, local inventory was also generated even if this wasn’t required. This LOCAL configuration will be removed during this update.
  • CVE-2024-28241 patch was modified to not be enabled if the installation folder and (if used) the LOCAL parameter remain under the default system folder as there’s not security issue in that case.

These updates only impact Windows installation performed with MSI packaging.

We invite you to upgrade your agents on Windows as soon as possible.

You don’t need to upgrade to 1.7.3 GLPI Agents that were not installed on Windows and which are at least in 1.7 version.

Stay connected! Follow us on our social media platforms!

GLPI Agent 1.7.2 available!

by | Mar 25, 2024 | News

GLPI Agent 1.7.2 has been released!

GLPI Agent Release 1.7.2

You can download it on the GLPI Agent github project: https://github.com/glpi-project/glpi-agent/releases/tag/1.7.2

This version specifically fixes 2 critical security issues related to MSI packaging on windows:

  • CVE-2024-28240: A local user could modify the GLPI Agent configuration to gain higher privileges.
  • CVE-2024-28241: A local user could modify the GLPI-Agent installation to gain higher privileges, but only when GLPI Agent is not installed in the default installation folder.

These security issues impact all Windows installation performed with MSI packaging.

We encourage you to upgrade all these agents as soon as possible!

Anyway you don’t need to upgrade to 1.7.2 after updating to 1.7.1 if your GLPI Agent was not installed on windows with the MSI package.