December 21, 2023 Service Pack
The following Service Pack versions were released:
Versions (Sensor and Server) |
|---|
22.1.502 23.1.301 |
The tables below describe the enhancements, fixed issues, and changes included in each version.
The Versions column indicates the versions that include the fix. (For more information, see the note above)
The Required Update column indicates if the fix requires sensor/server update.
IMPORTANT: If you want to upgrade your servers to this version, we recommend that you upgrade all components - Registration server, Detection servers, and WebApp server - to this version.
Version 22.1.502
Issue |
Area |
Description |
Required Update |
Supported OS |
|---|---|---|---|---|
DFND-58417, DFND-57656 |
User management |
In the Users screen, if you selected the Local Analyst or Local Responder role for a user along with another global role (such as Policy Admin, User Admin, and so forth), the option to select the sensor groups for the user remained visible on the page, even though the user had no ability to be assigned to groups since they have a role that was global in nature. We have resolved this issue and when you select a Local Analyst or Local Responder role along with another role, the option to select groups for the user is no longer displayed. |
Server |
N/A |
DFND-58267 |
Sensor performance |
In machines running supported versions of Windows, at times, the sensor consumed excess virtual memory from the machine causing performance problems on the machine. We have introduced a mechanism into the sensor’s services to ensure the virtual memory not be consumed too high. |
Sensor and server |
Windows |
DFND-58061 |
NGAV |
On machines running supported versions of Linux, at times the Anti-Malware > Signatures mode scans would stop due to the process reaching the memory limits allowed for the Anti-Malware scanning services. We have resolved this issue and updated the sensor configuration to allow for greater memory usage to enable scans to continue. |
Sensor and server |
Linux |
DFND-57606 |
Sensor performance |
On machines running CentOS 7.1, if the Anti-Malware > Signatures scans attempted to scan a file larger than 2 GB, the file became locked and other processes also could not open the file, due to issues with dependencies in the operating system. We have resolved this issue so that the sensor does not lock the access these large files, and customers will be able to access these files on CentOS 7.1 machines. |
Sensor and server |
Linux CentOS 7.1 |
Version 23.1.301
Issue |
Area |
Description |
Required Update |
Supported OS |
|---|---|---|---|---|
DFND-58417 |
Notifications |
In environments with sensor grouping enabled, when an email notification for a new MalOp was sent to users with the Local Analyst L1 role assigned, the email notification contained a MalOp ID for the MalOP, but the MalOp ID was not a clickable link. We have resolved this issue and the email notification sent to Local Analyst L1 users will contain the MalOp ID as a clickable link to enable these users to open up the MalOp in their Cybereason environment. |
Server |
N/A |
DFND-58267 |
Sensor performance |
In machines running supported versions of Windows, at times, the sensor consumed excess virtual memory from the machine causing performance problems on the machine. We have introduced a mechanism into the sensor’s services to ensure the virtual memory not be consumed too high. |
Sensor and server |
Windows |
DFND-58061 |
NGAV |
On machines running supported versions of Linux, at times the Anti-Malware > Signatures mode scans would stop due to the process reaching the memory limits allowed for the Anti-Malware scanning services. We have resolved this issue and updated the sensor configuration to allow for greater memory usage to enable scans to continue. |
Sensor and server |
Linux |
DFND-57656 |
User management |
In the Users screen, if you selected the Local Analyst or Local Responder role for a user along with another global role (such as Policy Admin, User Admin, and so forth), the option to select the sensor groups for the user remained visible on the page, even though the user had no ability to be assigned to groups since they have a role that was global in nature. We have resolved this issue and when you select a Local Analyst or Local Responder role along with another role, the option to select groups for the user is no longer displayed. |
Server |
N/A |
DFND-57606 |
Sensor performance |
On machines running CentOS 7.1, if the Anti-Malware > Signatures scans attempted to scan a file larger than 2 GB, the file became locked and other processes also could not open the file, due to issues with dependencies in the operating system. We have resolved this issue so that the sensor does not lock the access these large files, and customers will be able to access these files on CentOS 7.1 machines. |
Sensor and server |
Linux CentOS 7.1 |
DFND-54233 |
Custom detection rules |
In environments using the new Data Platform infrastructure and the Virtual Cache feature, for detections generated based on custom detection rules, the Last triggered value was not reported for the detection. We have resolved this issue and the Last triggered value will display in these environments. |
Server |
N/A |
DFND-52579 |
Device Control |
The Device Control screen is now available by default. |
Server |
N/A |