Linux Security 64 Change Log

Samuel_L

New Linux Security 64 update has been released

New BaseGuard (1.0.568) and FSBG (1.0.548) updates have been released. BaseGuard and FSBG are part of Linux Security 64. This update includes the following changes:

• CSLP-3953: Fixed an issue where scanning service could temporarily consume CPU resources excessively.
• CSLP-3952: Fixed an issue where scanning results were sometimes inconsistent due to a caching related issue.
• CSLP-3926: Fixed an issue where files were not properly cleaned up when offline updates were used.
• CSLP-3951: Fixed an issue where an error about "invalid component in version element" was printed to the journal.
• CSLP-3794: Fixed an issue where the same machine appeared with different names in different web services.
• CSLP-3948: Fixed an issue where information about latest engine update was not correctly shown in Policy Manager.
• CSLP-3950: Updated OpenSSL to 1.1.1k.
• Miscellaneous enhancements and bug fixes.

Samuel_L

New pinnable Linux Security 64 version is available

New pinnable Linux Security 64 version "linuxsecurity-2021_2" has been released. Product version pinning enables Linux Security 64 installation to be locked to a specific version of the product. When the product version has been pinned the installation will still receive new engine and definition updates. Linux Security 64 supports product version pinning when managed by Policy Manager.

Each pinnable product version has an associated expiration date after which the version will no longer be supported. For "linuxsecurity-2021_2" the expiration date is 2022-06-16T09:00:00Z.

"linuxsecurity-2021_2" contains the following components:

•    Linux Security 64 version 12.0.242
• FSBG version 1.0.548
• BaseGuard version 1.0.568

To learn more about product version pinning refer to the "Configuring automatic update options with Policy Manager" section of the Linux Security 64 manual

Samuel_L

New Linux Security 64 update has been released

New Linux Security 64 (12.0.266), BaseGuard (1.0.574), and FSBG (1.0.568) updates have been released. BaseGuard and FSBG are part of Linux Security 64. This update includes the following changes:

• CSLP-3865: Triggering "send status update" action via Elements EPP Portal now causes Linux Security 64 to check for updates.
• CSLP-3932: Files can now be excluded from integrity checking based on file name patterns.
• CSLP-3762: Add support for SolarWinds RMM.
• CSLP-3967: Made activation and uninstallation more robust.
• CSLP-3924: Increased Security Cloud timeout to 30 minutes.
• CSLP-3940: Fixed an issue where rename and remove operations did not work correctly when the file being operated on was located directly inside / directory.
• Miscellaneous enhancements and bug fixes.

Known Issues

• Scanning files as a non-root user using fsanalyze command-line utility causes error message to be shown.
• If the product is being used with Policy Manager 15.20 or older, detection alerts from fsanalyze will result in an unknown alert type error being shown in Policy Manager Console. This issue will be resolved in the upcoming version of Policy Manager.

Samuel_L

New Linux Security 64 update has been released

New BaseGuard (1.0.576) update has been released. BaseGuard is a part of Linux Security 64. This update includes the following changes:

• Miscellaneous enhancements and bug fixes.

Samuel_L

New Linux Security 64 update has been released

New BaseGuard (1.0.579) update has been released. BaseGuard is a part of Linux Security 64. This update includes the following changes:

• CSLP-3986: Fixed an issue where, under certain conditions, scanning could stop working following a large number of service restarts.
• Miscellaneous enhancements and bug fixes.

Samuel_L

New Linux Security 64 update has been released

New BaseGuard (1.0.596) and FSBG (1.0.591) updates have been released. BaseGuard and FSBG are part of Linux Security 64. This update includes the following changes:

• CSLP-3971: Fixed a performance regression that increased CPU usage of fsma2 service.
• CSLP-4017: Fixed an issue where limited internet connectivity during boot could cause on-access scanning to slow down the system.
• CSLP-4018: Fixed an issue where updates could cause on-access scanning to freeze the system.
• Miscellaneous enhancements and bug fixes.

Samuel_L

New Linux Security 64 update has been released

New Linux Security 64 update (12.0.286) has been released. This update includes the following changes:

• CSLP-3985: Fixed an issue where using fsanalyze tool as a non-root user would result in an error to be shown.
• CSLP-3989: Added rate limiting to decrease the number of duplicate alerts that can be sent in a short period of time.
• CSLP-3991: Added support for Debian 11.
• CSLP-3975: Fixed an issue where systemd services could be restarted too quickly.
• Miscellaneous enhancements and bug fixes.

Samuel_L

New Linux Security 64 update has been released

New Linux Security 64 (12.0.291), BaseGuard (1.0.604), and FSBG (1.0.600) updates have been released. BaseGuard and FSBG are part of Linux Security 64. This update includes the following changes.

• CSLP-4029: Fixed an issue where an update might fail due to a slow migration processes.
• CSLP-4030: Fixed an issue where the product would not fully uninstall.
• CSLP-4031: Fixed an issue where the scanning service could sometimes cause core files to be generated during service shutdown.
• CSLP-3997: New lsctl update subcommand can be used to manually trigger the product to check for updates.
• CSLP-4032: Fixed an issue where SELinux policies were not being installed on Alma Linux systems.
• CSLP-4021: Updated components to use OpenSSL 1.1.1l.
• CSLP-4034: Added support for Alma Linux.
• Miscellaneous enhancements and bug fixes.

Sami_J

New Linux Security 64 update has been released

New BaseGuard (1.0.606) update has been released. BaseGuard is part of Linux Security 64. This update includes the following changes.

• CSLP-4036: Old rotated access.log files were not removed but consumed disk space without a limit.
• Miscellaneous enhancements and bug fixes.

Sami_J

New pinnable Linux Security 64 version is available

New pinnable Linux Security 64 version "linuxsecurity-2021_5" has been released. Product version pinning enables Linux Security 64 installation to be locked to a specific version of the product. When the product version has been pinned the installation will still receive new engine and definition updates. Linux Security 64 supports product version pinning when managed by Policy Manager.

Each pinnable product version has an associated expiration date after which the version will no longer be supported. For "linuxsecurity-2021_5" the expiration date is 2022-12-22T09:00:00Z.

"linuxsecurity-2021_5" contains the following components:

• Linux Security 64 version 12.0.291
• FSBG version 1.0.600
• BaseGuard version 1.0.606

To learn more about product version pinning refer to the "Configuring automatic update options with Policy Manager" section of the Linux Security 64 manual.

Samuel_L

New Linux Security 64 update has been released

New BaseGuard (1.0.614) and FSBG (1.0.611) updates have been released. BaseGuard and FSBG are part of Linux Security 64. This update includes the following changes:

• Miscellaneous enhancements and bug fixes.

Samuel_L

New Linux Security 64 update has been released

New BaseGuard (1.0.632) and FSBG (1.0.623) updates have been released. BaseGuard and FSBG are part of Linux Security 64. This update includes the following changes:

• CSLP-4051: Fixed an issue where real-time scanning service would crash.
• CSLP-4070: Fixed an issue where the product could crash on systems with a large number of mount points.
• CSLP-4071: Fixed an issue where the product could crash when shutting down.
• CSLP-4067: Upgrade to OpenSSL 1.1.1n

Samuel_L

New Linux Security 64 update has been released

New Linux Security 64 (12.0.314) update has been released. This update includes the following changes:

• CSLP-3781: Integrity checker will now produce alerts for file metadata changes. In addition, alerts will be sent when integrity checker protected files are deleted.
• CSLP-4053: Fixed a problem where disabling integrity checker did not disable tampering action alerts.
• CSLP-4009: Optimize resource usage by avoiding starting real-time scanning and integrity checking related services when they are not needed. This means that these services will no-longer be running after the update if they are not needed.
• CSLP-4014: Relax Python dependency's version constraints on CentOS, RHEL, and Alma Linux systems to allow installing the product when the system has Python 3.9 installed.

Samuel_L

New pinnable Linux Security 64 version is available

New pinnable Linux Security 64 version "linuxsecurity-2022_1" has been released. Product version pinning enables Linux Security 64 installation to be locked to a specific version of the product. When the product version has been pinned the installation will still receive new engine and definition updates. Linux Security 64 supports product version pinning when managed by Policy Manager.

Each pinnable product version is supported for a year from the release of the subsequent pinnable version.

"linuxsecurity-2022_1" contains the following components:

• Linux Security 64 version 12.0.314
• FSBG version 1.0.623
• BaseGuard version 1.0.632

Jaims

This post has been moved to the WithSecure Community. Kindly proceed to the new Community page to comment or follow the thread.

https://community.withsecure.com/discussion/117646/linux-security-64-change-log#latest