November 23, 2023 Service Pack
The following Service Pack versions were released:
Versions (Sensor and Server) |
|---|
22.1.484 23.1.283 |
The tables below describe the enhancements, fixed issues, and changes included in each version.
The Versions column indicates the versions that include the fix. (For more information, see the note above)
The Required Update column indicates if the fix requires sensor/server update.
IMPORTANT: If you want to upgrade your servers to this version, we recommend that you upgrade all components - Registration server, Detection servers, and WebApp server - to this version.
Version 22.1.484
Issue |
Area |
Description |
Required Update |
Supported OS |
|---|---|---|---|---|
DFND-56610 |
NGAV Anti-Malware |
On machines running Linux and macOS operating systems, when adding an exclusion that ended with a forward slash (/), the sub-folders under the entered path were also unexpectedly excluded from Anti-Malware scans. We have resolved this issue and the sub-folders for the entered path will not be excluded from Anti-Malware scans. |
Sensor and server |
macOS, Linux |
DFND-56211 |
Remote shell |
At times, if a sensor was unable to start a Remote Shell utility session, the sensor would crash unexpectedly. We have resolved this issue and the sensors will not crash when there is a failure to start the Remote Shell utility. |
Sensor and server |
Windows |
DFND-53646 |
Investigation |
In the Investigation screen, when viewing investigation query results, if you selected the option to limit the total number of results, the results displayed per page were not always correct. We have resolved this issue and investigation query results will report totals (all total results and per page) correctly. |
Server |
N/A |
DFND-53600 |
MalOp details, Investigation, Malware Alerts |
At times, in the Malware Alerts, Investigation, and Response History screens, the full machine name for the malware alert did not display if the malware was detected in a scan. This was due to a limitation of the Windows OS API used to collect information about a machine. We have resolved this issue and the machine name displays correctly. |
Sensor and server |
Windows |
Version 23.1.283
Issue |
Area |
Description |
Required Update |
Supported OS |
|---|---|---|---|---|
DFND-56766 |
Predictive Ransomware |
At times, if a folder path or file contained non-English characters, Predictive Ransomware Protection did not respond as expected to ransomware execution in these paths. We have resolved this issue and Predictive Ransomware Protection works as expected when a folder or file path contains non-English characters. |
Sensor and server |
Windows |
DFND-56610 |
NGAV Anti-Malware |
On machines running Linux and macOS operating systems, when adding an exclusion that ended with a forward slash (/), the sub-folders under the entered path were also unexpectedly excluded from Anti-Malware scans. We have resolved this issue and the sub-folders for the entered path will not be excluded from Anti-Malware scans. |
Sensor and server |
macOS, Linux |
DFND-56211 |
Remote shell |
At times, if a sensor was unable to start a Remote Shell utility session, the sensor would crash unexpectedly. We have resolved this issue and the sensors will not crash when there is a failure to start the Remote Shell utility. |
Sensor and server |
Windows |
DFND-54233 |
Custom detection rules |
In environments using the new Data Platform infrastructure and the Virtual Cache feature, for detections generated based on custom detection rules, the Last triggered value was not reported for the detection. We have resolved this issue and the Last triggered value will display in these environments. |
Server |
N/A |
DFND-53775 |
Investigation |
In recent Cybereason versions, when after upgrading to the newer version and enabling sensor grouping in the environment, in the Investigation screen, you were unable to group the results by some of the available Features if the value for the Group was empty. We have resolved this error and you can now sort investigation query results by all Features when you enable sensor grouping in the environment. |
Server |
N/A |
DFND-53646 |
Investigation |
In the Investigation screen, when viewing investigation query results, if you selected the option to limit the total number of results, the results displayed per page were not always correct. We have resolved this issue and investigation query results will report totals (all total results and per page) correctly. |
Server |
N/A |
DFND-53600 |
MalOp details, Investigation, Malware Alerts |
At times, in the Malware Alerts, Investigation, and Response History screens, the full machine name for the malware alert did not display if the malware was detected in a scan. This was due to a limitation of the Windows OS API used to collect information about a machine. We have resolved this issue and the machine name displays correctly. |
Sensor and server |
Windows |