まっちゃだいふくの日記

セキュリティのこと、ITの気になった記事をリンクしています。

Deep Security 11.0 update 22が2020年07月15日にリリースされていました。 @ Nginxの脆弱性対応、マネージャーの高の脆弱性対応

IT トレンドマイクロ

Deep Security Manager 11.0 update 22

Resolved issues

  • An error occurred when properties were changed on the Log Inspection rule "1002729 - Default Rules Configuration" in Policy > Common Objects > Log Inspection Rules. SEG-77260/SF03263573/DSSEG-5734

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. SEG-70989/SF02964497/DSSEG-5655/DSSEG-5539/DSSEG-5887/DSSEG-5739

  • Highest CVSS Score: 8.1
  • Highest Severity: High

Deep Security Linux Agent 11.0 update 22

Enhancements

  • Integrity Monitoring detects changes to the "setuid" and "setgid" attributes for Linux and Unix platforms. SEG-78797/DSSEG-5766
  • Real-time Integrity Monitoring explicitly matches the directory specified in the base directory. Previously, it matched all paths that started with the base directory. SEG-79112/03301290/DSSEG-5820
  • Ceph is now excluded from file system kernel hooking to prevent kernel panic. SEG-75664/SF03131718/DSSEG-5583
  • Continued to improve the Account Domain Authentication experience. SEG-73480/SF02989282/DSSEG-5673

Resolved issues

  • If you enabled real-time Integrity Monitoring, it would sometimes slow down Account Domain Authentication. SEG-73480/SF02989282/DSSEG-5621
  • When a re-transmission packet with new packets was sent, it sometimes produced an "Unsupported SSL Version" Intrusion Prevention event. DSSEG-5878
  • When Anti-Malware real-time scans were enabled in Linux, sometimes the system crashed because buffers from procfs were not validated. SEG-80183/SF03384970/DSSEG-5839
  • In certain circumstances, Application Control caused the agent to go offline and restart. SEG-74143/SF03119820/DSSEG-5654
  • When Application Control was enabled it would sometimes cause the agent to periodically restart. SEG-75985/SF03184883/DSSEG-5845
  • Kernel Panic occurred when Web Reputation, Firewall, or Intrusion Prevention were enabled. SEG-80201/SF03332691/DSSEG-5850
  • When real-time Integrity Monitoring was enabled with the rule "1002875: Unix Add/Remove Software" applied, the RPM database sometimes locked. SEG-67275/SF02663756/DSSEG-5869

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. DSSEG-5750/SEG-78524/SF03321021

  • Updated Nginx to 1.18.0
  • CVSS Score: 5.3
  • Severity: Medium

Deep Security Agent Unix 11.0 update 22

Enhancements

  • Continued to improve the Account Domain Authentication experience. SEG-73480/SF02989282/DSSEG-5673
  • Integrity Monitoring detects changes to the "setuid" and "setgid" attributes for Linux and Unix platforms. SEG-78797/DSSEG-5766

Resolved issues

  • In certain circumstances, Application Control caused the agent to go offline and restart. SEG-74143/SF03119820/DSSEG-5654

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. DSSEG-5750/SEG-78524/SF03321021

  • Updated Nginx to 1.18.0
  • CVSS Score: 5.3
  • Severity: Medium

Deep Security Windows Agent - 11.0 update 22

Enhancements

  • Continued to improve the Account Domain Authentication experience. SEG-73480/SF02989282/DSSEG-5673
  • Real-time Integrity Monitoring explicitly matches the directory specified in the base directory. Previously, it matched all paths that started with the base directory. SEG-79112/03301290/DSSEG-5820

Resolved issues

  • When a re-transmission packet with new packets was sent, it sometimes produced an "Unsupported SSL Version" Intrusion Prevention event. DSSEG-5878
  • In certain circumstances, Application Control caused the agent to go offline and restart. SEG-74143/SF03119820/DSSEG-5654
  • A VM that was protected by Deep Security Virtual Appliance was shown as "Unknown/Unreachable" in Deep Security Notifier. SEG-73367/SF02900880/DSSEG-5724
  • Agent self-protection did not protect Deep Security Notifier. SEG-76015/SF03168155/DSSEG-5761
  • When Integrity Monitoring was enabled, the owner of a file was incorrectly changed to a user that did not exist. DSSEG-5730

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. DSSEG-5750/SEG-78524/SF03321021

  • Updated Nginx to 1.18.0
  • CVSS Score: 5.3
  • Severity: Medium

未来を創るプレゼン 最高の「表現力」と「伝え方」

未来を創るプレゼン 最高の「表現力」と「伝え方」