まっちゃだいふくの日記

セキュリティのこと、ITの気になった記事をリンクしています。

Trend Micro Deep Security 11.0 Update 8 公開のお知らせ:サポート情報 : トレンドマイクロ@ SQLiteバージョンアップ、累積修正

Trend Micro Deep Security 11.0 Update 8 公開のお知らせ:サポート情報 : トレンドマイクロ

Deep Security 11.0 Update 8 のモジュールを公開いたしました。
■ 公開開始日

2019 年 3 月 22 日 (月)

■ 対象モジュール

Deep Security Manager
Linux 版 Deep Security Agent
Unix 版 Deep Security Agent
Windows 版 Deep Security Agent
Windows 版 Deep Security Notifier
■ 追加機能/修正内容

追加機能や修正内容は付属の Readme をご覧ください。
※日本語のReadmeは一か月以内を目安に公開いたします。

サポート情報 : トレンドマイクロ

Deep Security Manager

2. What's New
========================================================================

   2.1 Enhancements
   =====================================================================
   This following enhancements are included in this release: 
   
   Enhancement 1:  [DSSEG-3546]
                   This release includes security updates. More details 
				   will be posted after release at the following link:
				   https://success.trendmicro.com/vulnerability-response 
                   ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
   Enhancement 2: [DSSEG-3308/SEG-36501/01231115]
                  Gave the Deep Security Administrator the ability to
                  hide unresolved recommendation scan results from the
                  Intrusion Prevention, Integrity Monitoring and Log
                  Inspection tab in the policy pages. To hide the
                  unresolved recommendation scan results, use the
                  following commands  Intrusion Prevention: dsm_c
                  -action changesetting -name com.trendmicro.ds.network:
                  settings.configuration.showUnresolvedRecommendationsIn
                  foInPolicyPage -value false  Integrity Monitoring:
                  dsm_c -action changesetting -name com.trendmicro.ds.in
                  tegrity:settings.configuration.showUnresolvedRecommend
                  ationsInfoInPolicyPage -value false  Log Inspection:
                  dsm_c -action changesetting -name com.trendmicro.ds.lo
                  ginspection:settings.configuration.showUnresolvedRecom
                  mendationsInfoInPolicyPage -value false
                  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

   2.2 Resolved Known Issues
   =====================================================================
   This release resolves the following issue(s):
   
   Issue 1:       [DSSEG-3538]
                  When customers with a large number of smart folders,
                  computer groups, and policies clicked "Events &
                  Reports > Generate Reports" and then quickly switched
                  to the "Recurring Reports" tab before the initial page
                  was fully loaded, Deep Security Manager would display
                  a spinner but the "Recurring Reports" tab was not
                  populated unless the customer returned to the "Single
                  Report" tab and allowed enough time for it to fully
                  load.
   
   Solution 1:    The Deep Security Manager console has been improved.
                  Instead of presenting "Single Report" and "Recurring
                  Reports" as tabs on the "Generate Reports" page, they
                  are now separate items under "Generate Reports" in the
                  navigation pane, which allows you to access them
                  independently. The solution also makes the initial
                  response of the "Single Report" page visible to the
                  user much earlier and loads the necessary content on
                  demand, significantly reducing latency.
                  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
   
   Issue 2:       [DSSEG-3443]
                  If you tried to use the new VMware NSX licensing
                  edition, namely NSX Data Center for vSphere
                  6.4.1+, then Deep Security Manager would only register
                  the Anti-Malware module even if NSX's Network
                  Introspection Service was enabled and allowed for more
                  modules.
   
   Solution 2:    With this release, Deep Security Manager now supports
                  the new NSX licensing edition, and is able to
                  determine the Deep Security modules supported by
                  each. Further, for any future NSX licensing editions,
                  the Network Introspection Service feature will be
                  registered by default when you deploy Deep Security
                  Manager.
                  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
   
   Issue 3:       [DSSEG-3373/SEG-38979/01302939]
                  The Deep Security Manager did not properly manage the
                  partition tables in a PostgreSQL database, resulting
                  in many AlertUpdateEvents tables remaining in the
                  database.
   
   Solution 3:    This issue is fixed in this release.
                  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
   
   Issue 4:       [DSSEG-3370]
                  An unexpected "Anti-Malware Engine Offline" computer 
				  status occurred on the internal virtual machine (VM) created
                  when provisioning a VMware VDI environment.
   
   Solution 4:    The issue is fixed in this release.
                  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
   
   Issue 5:       [DSSEG-3234/01484611/SEG-41437]
                  False alerts regarding the license expiration were
                  occasionally raised.
   
   Solution 5:    This issue is fixed in this release.
                  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
   
   Issue 6:       [DSSEG-3087/SEG-40021]
                  When a policy was created based on a relay-enabled
                  agent, the policy contained the relay state. All
                  agents that were assigned the policy automatically
                  became relays.
   
   Solution 6:    This issue is fixed in this release.
                  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Linux 版 Deep Security Agent

2. What's New
========================================================================

   2.1 Enhancements
   =====================================================================
   The following enhancement(s) are included in this release:
   
   Enhancement 1: [DSSEG-3547]
                  The version of SQLite used by the Deep Security Agent
                  has been updated.
                  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
				  
   2.2 Resolved Known Issues
   =====================================================================
   This release resolves the following issue(s):
   
   Issue 1:       [DSSEG-3474/SEG-44111]
                  Scan Engine sometimes failed while re-compressing
                  extracted files into archive files. Therefore, Deep
                  Security ManagerÃÂ incorrectly reported archive files as
                  cleaned.
   
   Solution 1:    This issue is fixed in this release.
                  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
   
   Issue 2:       [DSSEG-3467/SEG-21286]
                  Real-time anti-malware scans sometimes caused a kernel
                  panic on some specific file systems.
   
   Solution 2:    This issue is fixed in this release.
                  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
   
   Issue 3:       [DSSEG-3466/SF01248702/SEG-44565]
                  Deep Security crashed with Vormetric
   
   Solution 3:    This issue is fixed in this release.
                  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
   
   Issue 4:       [DSSEG-3442/SF01633410/SEG-44773]
                  WhenÃÂ a Powershell script was executed it would
                  generate temporary files in the temp folder which
                  resulted in an excessive amount of drift and events
                  being reported.
   
   Solution 4:    This issue is fixed in this release.
                  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
   
   Issue 5:       [DSSEG-3439/SEG-43146/SF01531697]
                  Deep Security Anti-Malware caused the 'fusermount'
                  process to fail when mounting the filesystem.
   
   Solution 5:    This issue has been fixed in this release.
                  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
   
   Issue 6:       [DSSEG-3369/SF01415702/SEG-42919]
                  When multiple Smart Protection Servers were
                  configured, the Deep Security Agent process would
                  sometimes crash due to an invalid sps_index.
   
   Solution 6:    The issue is fixed in this release.
                  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
   
   Issue 7:       [DSSEG-3249/SF01532762/SEG-42037]
                  The Deep Security Agent process would sometimes hang
                  when checking the Docker version on a Windows 2008
                  server.
   
   Solution 7:    This issue issue is fixed in this release.
                  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
   
   Issue 8:       [DSSEG-2687/SEG-32679/1033963]
                  Deep Security Agent logged "Error on SIOCETHTOOL:
                  (error 95: Operation not supported)" every minute.
   
   Solution 8:    This issue is fixed in this release.
                  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
				  
   Issue 9:       [DSSEG-3466]
                  Deep Security Agent GSCH driver had an issue with 
                  another third-party file system.				  
   
   Solution 9:    This issue is fixed in this release.
                  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~   

Unix 版 Deep Security Agent

2. What's New
========================================================================
   
   2.1 Enhancements
   =====================================================================
   The following enhancement(s) are included in this release:
   
   Enhancement 1: [DSSEG-3547]
                  The version of SQLite used by the Deep Security Agent
                  has been updated.
                  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
   

   2.2 Resolved Known Issues
   =====================================================================
   This release resolves the following issue(s):
   
   Issue 1:       [DSSEG-3442/SF01633410/SEG-44773]
                  When a Powershell script was executed it would
                  generate temporary files in the temp folder which
                  resulted in an excessive amount of drift and events
                  being reported.
   
   Solution 1:    This issue is fixed in this release.
                  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
   
   Issue 2:       [DSSEG-3369/SF01415702/SEG-42919]
                  When multiple Smart Protection Servers were
                  configured, the Deep Security Agent process would
                  sometimes crash due to an invalid sps_index.
   
   Solution 2:    The issue is fixed in this release.
                  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
   
   Issue 3:       [DSSEG-3249/SF01532762/SEG-42037]
                  The Deep Security Agent process would sometimes hang
                  when checking the Docker version on a Windows 2008
                  server.
   
   Solution 3:    This issue issue is fixed in this release.
                  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
   
   Issue 4:       [DSSEG-2687/SEG-32679/1033963]
                  Deep Security Agent logged "Error on SIOCETHTOOL:
                  (error 95: Operation not supported)" every minute.
   
   Solution 4:    This issue is fixed in this release.
                  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Windows 版 Deep Security Agent

2. What's New
========================================================================

   2.1 Enhancements
   =====================================================================
   The following enhancement(s) are included in this release:
   
   Enhancement 1: [DSSEG-3547]
                  The version of SQLite used by the Deep Security Agent
                  has been updated.
                  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
   

   2.2 Resolved Known Issues
   =====================================================================
   This release resolves the following issue(s):
   
   Issue 1:       [DSSEG-3524]
                  Deep Security Agent's Intrusion Prevention module
                  silently dropped zero payload UDP packets.
   
   Solution 1:    The issue has been fixed in this release
                  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
   
   Issue 2:       [DSSEG-3442/SF01633410/SEG-44773]
                  When a Powershell script was executed it would
                  generate temporary files in the temp folder which
                  resulted in an excessive amount of drift and events
                  being reported.
   
   Solution 2:    This issue is fixed in this release.
                  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
   
   Issue 3:       [DSSEG-3369/SF01415702/SEG-42919]
                  When multiple Smart Protection Servers were
                  configured, the Deep Security Agent process would
                  sometimes crash due to an invalid sps_index.
   
   Solution 3:    The issue is fixed in this release.
                  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
   
   Issue 4:       [DSSEG-3249/SF01532762/SEG-42037]
                  The Deep Security Agent process would sometimes hang
                  when checking the Docker version on a Windows 2008
                  server.
   
   Solution 4:    This issue issue is fixed in this release.
                  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
   
   Issue 5:       [DSSEG-2687/SEG-32679/1033963]
                  Deep Security Agent logged "Error on SIOCETHTOOL:
                  (error 95: Operation not supported)" every minute.
   
   Solution 5:    This issue is fixed in this release.
                  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Windows 版 Deep Security Notifier

2. What's New
========================================================================

   2.1 Enhancements
   =====================================================================
   The following enhancement(s) are included in this release:
   
   Enhancement 1: [DSSEG-3547]
                  The version of SQLite used by the Deep Security Agent
                  has been updated.
                  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
   

   2.2 Resolved Known Issues
   =====================================================================
   This release resolves the following issue(s):
   
   Issue 1:       [DSSEG-3524]
                  Deep Security Agent's Intrusion Prevention module
                  silently dropped zero payload UDP packets.
   
   Solution 1:    The issue has been fixed in this release
                  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
   
   Issue 2:       [DSSEG-3442/SF01633410/SEG-44773]
                  When a Powershell script was executed it would
                  generate temporary files in the temp folder which
                  resulted in an excessive amount of drift and events
                  being reported.
   
   Solution 2:    This issue is fixed in this release.
                  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
   
   Issue 3:       [DSSEG-3369/SF01415702/SEG-42919]
                  When multiple Smart Protection Servers were
                  configured, the Deep Security Agent process would
                  sometimes crash due to an invalid sps_index.
   
   Solution 3:    The issue is fixed in this release.
                  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
   
   Issue 4:       [DSSEG-3249/SF01532762/SEG-42037]
                  The Deep Security Agent process would sometimes hang
                  when checking the Docker version on a Windows 2008
                  server.
   
   Solution 4:    This issue issue is fixed in this release.
                  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
   
   Issue 5:       [DSSEG-2687/SEG-32679/1033963]
                  Deep Security Agent logged "Error on SIOCETHTOOL:
                  (error 95: Operation not supported)" every minute.
   
   Solution 5:    This issue is fixed in this release.
                  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

働きアリからの脱出: 個人で始める働き方改革 (単行本)

働きアリからの脱出: 個人で始める働き方改革 (単行本)