まっちゃだいふくの日記

セキュリティのこと、ITの気になった記事をリンクしています。

Deep Security Manager - 20.0.854 (20 LTS Update 2023-11-15) / Deep Security Agent - 20.0.0-8438 (20 LTS Update 2023-12-12) リリース@ 各種修正対応

Deep Security Manager - 20.0.854 (20 LTS Update 2023-11-15)

Deep Security Manager - 20.0.854 (20 LTS Update 2023-11-15)

Deep Security Manager - 20.0.854 (20 LTS Update 2023-11-15)
Release date: November 15, 2023
Build number: 20.0.854

New Features

  • Deep Security Manager now supports strong cipher suites when FIPS mode is enabled. DSM-211

Enhancements

  • Deep Security Manager now supports the 20.0.1 Deep Security Agent versioning revision planned for January 2024. DSM-121

Resolved issues

  • Using an Intrusion Prevention event containing a long note triggered an error with a message "Get Events Failed (Internal Server Error)". DSM-327
  • The HostName lookup got stuck in some environments where the DNS setting was incomplete. DSM-307
What's new in Deep Security Manager? | Deep Security

Deep Security Linux Agent - 20.0.0-8438 (20 LTS Update 2023-12-12)

Deep Security Agent - 20.0.0-8438 (20 LTS Update 2023-12-12)
Release date: December 12, 2023
Build number: 20.0.0-8438

New features

  • Debian 12 support: Deep Security Agent 20.0.0-8438 and later supports Debian 12 including Secure Boot support. This requires Deep Security Manager 20.0.864 or later. DSA-1408

Enhancements

  • Remove some file types from the scanning list to avoid high CPU and disk consumption. SF07099651/SEG-188688/DSA-2010

Agent self-protection now protects the Advanced TLS Traffic Inspection process (tm_netagent) preventing local users with administrator privileges from stopping it. DSA-1042/DSA-1043

  • Add the ability to configure target CPU usage of Activity Monitoring. Choose between unlimited, low, and extremely low in the Trend Cloud One - Endpoint & Workload Security console. V1E-6246
  • Telemetry now reports the IPv4 and IPv6 address of all network interfaces. V1E-4543

Resolved issues

  • When using a local Smart Protection Server and a configured proxy, Web Reputation Service would sometimes improperly send traffic through the proxy. Web Reputation Service now sends queries to the local Smart Protection Server directly. DSA-2981
  • A memory leak would occur when loading large Suspicious Object lists. SF06904914/SEG-182231/DSA-1370

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Response. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. DSA-2722

  • Highest CVSS score: 9.8
  • Highest severity: Critical
What's new in Deep Security Agent? | Deep Security

Deep Security Windows Agent - 20.0.0-8438 (20 LTS Update 2023-12-12)

Deep Security Agent - 20.0.0-8438 (20 LTS Update 2023-12-12)
Release date: December 12, 2023
Build number: 20.0.0-8438

New features

  • Windows 11, version 23H2 support: Deep Security Agent 20.0.0-8438 and later support Windows 11, version 23H2. DSA-2255

Enhancements

  • Remove some file types from the scanning list to avoid high CPU and disk consumption. SF07099651/SEG-188688/DSA-2010
  • Agent self-protection now protects the Advanced TLS Traffic Inspection process (tm_netagent) preventing local users with administrator privileges from stopping it. DSA-1042/DSA-1043

Resolved issues

  • When using a local Smart Protection Server and a configured proxy, Web Reputation Service would sometimes improperly send traffic through the proxy. Web Reputation Service now sends queries to the local Smart Protection Server directly. DSA-2981
  • Anti-Malware scan mode would sometimes not match the policy configuration. SF07117203/SEG-191043/PCT-7856/DSA-2561

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Response. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. VRTS-11015/DSA-2156

  • Highest CVSS score: 7.8
  • Highest severity: High
What's new in Deep Security Agent? | Deep Security

Deep Security UNIX Agent - 20.0.0-8438 (20 LTS Update 2023-12-12)

Deep Security Agent - 20.0.0-8438 (20 LTS Update 2023-12-12)
Release date: December 12, 2023
Build number: 20.0.0-8438

Resolved issues

  • When using a local Smart Protection Server and a configured proxy, Web Reputation Service would sometimes improperly send traffic through the proxy. Web Reputation Service now sends queries to the local Smart Protection Server directly. DSA-2981

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Response. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. DSA-2722

  • Highest CVSS score: 9.8
  • Highest severity: Critical
What's new in Deep Security Agent? | Deep Security

Deep Security Agent for macOS - 20.0.0-223 (20 LTS Update 2023-11-21)

Deep Security Agent for macOS - 20.0.0-223 (20 LTS Update 2023-11-21)
Release date: November 21, 2023
Build number: 20.0.0-223

New features:

  • macOS Sonoma support: Deep Security Agent now supports macOS Sonoma (14.0 or later).

Resolved Issues:

What's new in Deep Security Agent for macOS - Workload Security | Trend Micro Cloud One™ Documentation