February 1, 2024 Service Pack
The following Service Pack versions were released:
Versions (Sensor and Server) |
|---|
22.1.521 23.1.321 |
The tables below describe the enhancements, fixed issues, and changes included in each version.
The Versions column indicates the versions that include the fix. (For more information, see the note above)
The Required Update column indicates if the fix requires sensor/server update.
IMPORTANT: If you want to upgrade your servers to this version, we recommend that you upgrade all components - Registration server, Detection servers, and WebApp server - to this version.
Version 22.1.521
Issue |
Area |
Description |
Required Update |
Supported OS |
|---|---|---|---|---|
DFDN-60825 |
Sensor management |
At times, sensors did not send data to their assigned Detection server when it failed to connect to the IP address for the Detection server. As a result, the sensor reported as Online, but certain parts of the sensor data, such as collected data, details on the signatures database version, and scan status would not update in the Sensors screen correctly. We have resolved this issue and all information from the sensor will report to the Detection server as expected. |
Server |
N/A |
DFND-60422 |
NGAV |
In recent Cybereason sensor versions, when the Anti-Malware service was enabled, machines experienced unexpected and intermittent performance problems, such as machine crashes or blue screens on the machine. We have resolved this issue and the machine will perform as expected with Anti-Malware enabled. |
Sensor and server |
Windows |
DFND-59902 |
Syslog |
In the MalOp syslog file, we now report the Product version in a syslog message. For example, a syslog entry for a MalOp created event would report CEF:0|Cybereason|Cybereason|23.2|Malop|Malop Created|10|. Previously, this value was empty. |
Server |
N/A |
DFND-58026 |
Malware alerts |
In Japanese environments, when exporting a CSV file of malware alerts from the Malware Alerts screen, at times the CSV file would unexpectedly change from Japanese to English (such as after a restart of the platform’s servers). We have resolved this issue and the CSV file will export in the correct language, based on the language settings for the user that is performing the export. |
Server |
N/A |
DFND-53320 |
Linux AV |
In the latest version, after installing a sensor on machines running Ubuntu 20.04 and CentOS 8.4, the Anti-Malware service used by the sensor did not start properly. We have resolved this issue and the Anti-Malware service now starts correctly after sensor installation on these operating systems. |
Sensor and server |
Linux (Ubuntu 20.04 and CentOS 8.4) |
Version 23.1.321
Issue |
Area |
Description |
Required Update |
Supported OS |
|---|---|---|---|---|
DFND-60422 |
NGAV |
In recent Cybereason sensor versions, when the Anti-Malware service was enabled, machines experienced unexpected and intermittent performance problems, such as machine crashes or blue screens on the machine. We have resolved this issue and the machine will perform as expected with Anti-Malware enabled. |
Sensor and server |
Windows |
DFND-59902 |
Syslog |
In the MalOp syslog file, we now report the Product version in a syslog message. For example, a syslog entry for a MalOp created event would report CEF:0|Cybereason|Cybereason|23.2|Malop|Malop Created|10|. Previously, this value was empty. |
Server |
N/A |
DFND-59812 |
MalOps management |
In Japanese environments, in the MalOps management screen, when viewing details on filters or sorting above the MalOp grid, the Clear sorting string was not translated into Japanese. We have resolved this issue and Clear sorting is displayed in Japanese as expected. |
Server |
N/A |
DFND-59676 |
Sensor management |
In environments with a large number of sensors, including very large numbers of archived or decommissioned sensors, sensor operations and viewing the Sensors screnen would not work as expected with performance problems in sending commands or viewing the Sensors screen. We have resolved this issue and optimized how the Cybereason platform processes sensor commands to ensure that these commands work as expected. |
Server |
N/A |
DFND-58026 |
Malware alerts |
In Japanese environments, when exporting a CSV file of malware alerts from the Malware Alerts screen, at times the CSV file would unexpectedly change from Japanese to English (such as after a restart of the platform’s servers). We have resolved this issue and the CSV file will export in the correct language, based on the language settings for the user that is performing the export. |
Server |
N/A |
DFND-53320 |
Linux AV |
In the latest version, after installing a sensor on machines running Ubuntu 20.04 and CentOS 8.4, the Anti-Malware service used by the sensor did not start properly. We have resolved this issue and the Anti-Malware service now starts correctly after sensor installation on these operating systems. |
Sensor and server |
Linux (Ubuntu 20.04 and CentOS 8.4) |
DFND-43198 |
NGAV |
When updating a sensor policy or reloading the Anti-Malware service on macOS M1 machines, the Anti-Malware service was repeatedly crashing. We have resolved this issue and the Anti-Malware service will no longer crash on macOS M1 machines during policy updates and the reloading of the Anti-Malware service. |
Sensor and server |
macOS |
DFND-41846 |
Behavioral Document Protection |
When scanning documents on network drives using Behavioral Document Protection, at times the Anti-Malware service performed unexpectedly or crashed. We have resolved this error and the Anti-Malware service will perform as expected even when scanning network drives. |
Sensor and server |
Windows |