まっちゃだいふくの日記

セキュリティのこと、ITの気になった記事をリンクしています。

Deep Security 10.0 update 27が2020年08月07日にリリースされていました。 @ JRE/Nginxの脆弱性対応、マネージャーにクリティカルの脆弱性対応

Deep Security Manager - 10.0 update 27

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. VRTS-4652/DSSEG-5538/DSSEG-5888/DSSEG-5740

  • Highest CVSS Score: 9.8
  • Severity: Critical
    • Updated JRE to the latest Critical Patch Update release (8.0.251)
What's new in Deep Security Manager? | Deep Security

Deep Security Linux Agent- 10.0 update 27

Resolved issues

  • Real-time Anti-Malware with filesystem hooking enabled did not work on older kernel versions. SEG-82411/SF03471236/DSSEG-5946
  • Kernel Panic occurred when Web Reputation, Firewall, or Intrusion Prevention were enabled. SEG-80201/SF03332691/DSSEG-5868
  • When a re-transmission packet with new packets was sent, it sometimes produced an "Unsupported SSL Version" Intrusion Prevention event. SEG-73893/03100673/DSSEG-5866
  • Ceph is now excluded from file system kernel hooking to prevent kernel panic. SEG-75664/SF03131718/DSSEG-5585

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. SEG-78524/SF03321021/DSSEG-5751

  • Highest CVSS score: 5.3
  • Highest severity: Medium
    • Updated Nginx to 1.18.0.
What's new in Deep Security Agent? | Deep Security

Deep Security Unix Agent - 10.0 update 27

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. SEG-78524/SF03321021/DSSEG-5751

  • Highest CVSS score: 5.3
  • Highest severity: Medium
    • Updated Nginx to 1.18.0.
What's new in Deep Security Agent? | Deep Security

Deep Security Agent - 10.0 update 27

Resolved issues

  • When Integrity Monitoring was enabled, the owner of a file was incorrectly changed to a user that did not exist. SEG-77290/03251273/DSSEG-5720
  • When a re-transmission packet with new packets was sent, it sometimes produced an "Unsupported SSL Version" Intrusion Prevention event. SEG-73893/03100673/DSSEG-5866

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. SEG-78524/SF03321021/DSSEG-5751

  • Highest CVSS score: 5.3
  • Highest severity: Medium
    • Updated Nginx to 1.18.0.
What's new in Deep Security Agent? | Deep Security