まっちゃだいふくの日記

セキュリティのこと、ITの気になった記事をリンクしています。

Trend Micro Deep Security 12.0 Update 5 公開のお知らせ:サポート情報 : トレンドマイクロ@ JRE、curl、openssl脆弱性対応、その他累積修正

IT トレンドマイクロ

Trend Micro Deep Security 12.0 Update 5 公開のお知らせ:サポート情報 : トレンドマイクロ

Deep Security 12.0 Update 5 のモジュールを公開いたしました。
■ 公開開始日

2019 年 12 月 18 日 (水)

■ 対象モジュール

Deep Security Manager
Linux 版 Deep Security Agent
Unix 版 Deep Security Agent
Windows 版 Deep Security Agent
Windows 版 Deep Security Notifier
■ 追加機能/修正内容

AIX対応のDeep Secuity Agentが追加されました。
また、追加機能や修正内容は付属の Readme をご覧ください。
※日本語のReadmeは一か月以内を目安に公開いたします。

サポート情報 : トレンドマイクロ

Deep Security Manager - 12.0 update 5

Enhancement

  • Added the Validate the signature on the agent installer checkbox on Support > Deployment Scripts. For more information, see Check digital signatures on software packages. (DSSEG-4934)

Resolved issues

  • A "Newer version of Deep Security Manager is available" alert appeared despite there being none available. (DSSEG-4724)
  • The "Activity Overview" widget sometime displayed the incorrect database size. (DSSEG-4908)

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses.
  • Updated JRE to the latest Critical Patch Update (8.0.232). (DSSEG-4881)
  • Updated to curl 7.67.0. (DSSEG-4906)
  • Updated to openssl-1.0.2t. (DSSEG-4906)

Deep Security Agent - 12.0 update 5

Linux

Enhancements

  • Excluded AWS Lustre from file system kernel hooking to prevent kernel panic. (SEG-65127/SF02650803/DSSEG-4955)

Resolved issues

  • When Application Control was enabled with Zenoss a high-volume of file events were created which caused high CPU usage. (SEG-56946/DSSEG-4792)
  • Deep Security Virtual Appliance took too long to release file descriptors after a VM vMotion. (DSSEG-4817)
  • Using environment variables in Integrity Monitoring rules was not working with Real-time Integrity Monitoring. (SF02611220/SEG-64777/SEG-65541/DSSEG-4953)

Security Updates

  • Security updates are included in this release. For more information about how we protect against vulnerabilities, visit **Vulnerability Responses.
  • Updated to curl 7.67.0. (DSSEG-4906)
  • Updated to openssl-1.0.2t. (DSSEG-4906)

Unix

Enhancement

  • Added the Deep Security Agent for the AIX Operating System versions 6.1, 7.1 and 7.2 is to this release. The security controls supported by this agent are the same as those of the Deep Security 9.0 Agent for AIX, that is Firewall, Intrusion Prevention, Integrity Monitoring and Log Inspection. For detailed feature support information, visit Deep Security Agent platforms. The Deep Security 12.0 Agent for AIX incorporates the many improvements to the Deep Security Agent between Deep Security 9.0 and Deep Security 12.0 . This agent also has the same support life cycle as the Deep Security 12.0 LTS release. (DS-17159)

Resolved issues

  • When Application Control was enabled with Zenoss a high-volume of file events were created which caused high CPU usage. (SEG-56946/DSSEG-4792)
  • Deep Security Virtual Appliance took too long to release file descriptors after a VM vMotion. (DSSEG-4817)
  • Debug log processing encountered errors which caused the Deep Security Agent to restart. (DSSEG-4948)
  • Using environment variables in Integrity Monitoring rules was not working with Real-time Integrity Monitoring. (SF02611220/SEG-64777/SEG-65541/DSSEG-4953)
  • Interaction between Integrity Monitoring processing and Integrity Monitoring data transmission to Deep Security Manager caused the Deep Security Agent to restart abnormally. (DSSEG-4791)

Security Updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses.
  • Updated to curl 7.67.0. (DSSEG-4906)
  • Updated to openssl-1.0.2t. (DSSEG-4906)

Windows

Resolves issues

  • When Application Control was enabled with Zenoss a high-volume of file events were created which caused high CPU usage. (SEG-56946/DSSEG-4792)
  • Deep Security Virtual Appliance took too long to release file descriptors after a VM vMotion. (DSSEG-4817)
  • Using environment variables in Integrity Monitoring rules was not working with Real-time Integrity Monitoring. (SF02611220/SEG-64777/SEG-65541/DSSEG-4953)
  • The server hanged intermittently and utilized a lot of memory. (SF02351375/SEG-59668/DSSEG-4747)

Security Updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses.
  • Updated to curl 7.67.0. (DSSEG-4906)
  • Updated to openssl-1.0.2t. (DSSEG-4906)

経営者のための 情報セキュリティQ&A45

経営者のための 情報セキュリティQ&A45