Deep Security Manager 11.0 update 22
Resolved issues
- An error occurred when properties were changed on the Log Inspection rule "1002729 - Default Rules Configuration" in Policy > Common Objects > Log Inspection Rules. SEG-77260/SF03263573/DSSEG-5734
Security updates
Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. SEG-70989/SF02964497/DSSEG-5655/DSSEG-5539/DSSEG-5887/DSSEG-5739
- Highest CVSS Score: 8.1
- Highest Severity: High
Deep Security Linux Agent 11.0 update 22
Enhancements
- Integrity Monitoring detects changes to the "setuid" and "setgid" attributes for Linux and Unix platforms. SEG-78797/DSSEG-5766
- Real-time Integrity Monitoring explicitly matches the directory specified in the base directory. Previously, it matched all paths that started with the base directory. SEG-79112/03301290/DSSEG-5820
- Ceph is now excluded from file system kernel hooking to prevent kernel panic. SEG-75664/SF03131718/DSSEG-5583
- Continued to improve the Account Domain Authentication experience. SEG-73480/SF02989282/DSSEG-5673
Resolved issues
- If you enabled real-time Integrity Monitoring, it would sometimes slow down Account Domain Authentication. SEG-73480/SF02989282/DSSEG-5621
- When a re-transmission packet with new packets was sent, it sometimes produced an "Unsupported SSL Version" Intrusion Prevention event. DSSEG-5878
- When Anti-Malware real-time scans were enabled in Linux, sometimes the system crashed because buffers from procfs were not validated. SEG-80183/SF03384970/DSSEG-5839
- In certain circumstances, Application Control caused the agent to go offline and restart. SEG-74143/SF03119820/DSSEG-5654
- When Application Control was enabled it would sometimes cause the agent to periodically restart. SEG-75985/SF03184883/DSSEG-5845
- Kernel Panic occurred when Web Reputation, Firewall, or Intrusion Prevention were enabled. SEG-80201/SF03332691/DSSEG-5850
- When real-time Integrity Monitoring was enabled with the rule "1002875: Unix Add/Remove Software" applied, the RPM database sometimes locked. SEG-67275/SF02663756/DSSEG-5869
Security updates
Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. DSSEG-5750/SEG-78524/SF03321021
- Updated Nginx to 1.18.0
- CVSS Score: 5.3
- Severity: Medium
Deep Security Agent Unix 11.0 update 22
Enhancements
Resolved issues
- In certain circumstances, Application Control caused the agent to go offline and restart. SEG-74143/SF03119820/DSSEG-5654
Security updates
Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. DSSEG-5750/SEG-78524/SF03321021
- Updated Nginx to 1.18.0
- CVSS Score: 5.3
- Severity: Medium
Deep Security Windows Agent - 11.0 update 22
Enhancements
- Continued to improve the Account Domain Authentication experience. SEG-73480/SF02989282/DSSEG-5673
- Real-time Integrity Monitoring explicitly matches the directory specified in the base directory. Previously, it matched all paths that started with the base directory. SEG-79112/03301290/DSSEG-5820
Resolved issues
- When a re-transmission packet with new packets was sent, it sometimes produced an "Unsupported SSL Version" Intrusion Prevention event. DSSEG-5878
- In certain circumstances, Application Control caused the agent to go offline and restart. SEG-74143/SF03119820/DSSEG-5654
- A VM that was protected by Deep Security Virtual Appliance was shown as "Unknown/Unreachable" in Deep Security Notifier. SEG-73367/SF02900880/DSSEG-5724
- Agent self-protection did not protect Deep Security Notifier. SEG-76015/SF03168155/DSSEG-5761
- When Integrity Monitoring was enabled, the owner of a file was incorrectly changed to a user that did not exist. DSSEG-5730
Security updates
Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. DSSEG-5750/SEG-78524/SF03321021
- Updated Nginx to 1.18.0
- CVSS Score: 5.3
- Severity: Medium