Deep Security Manager - 20.0.913 (20 LTS Update 2024-05-15)
Deep Security Manager - 20.0.913 (20 LTS Update 2024-05-15)
Release date: May 15, 2024
Build number: 20.0.913Enhancements
- Advanced TLS Traffic Inspection configuration now has separate settings for inspecting inbound and outbound traffic. DSM-190
Note: Enabling outbound traffic inspection requires additional configuration steps on the agent side.- Deep Security Manager now supports configuring a Service Gateway proxy from the Trend Cloud One - Endpoint & Workload Security migration wizard. Using a Service Gateway proxy is only supported when all deployed Deep Security Agents are version 20.0.1-3180 or later. PCT-12854/DSM-367
- The "hostName" field now shows the device hostname when retrieving Service Gateway proxy information using the ProxyAPI. A new "ips" field is added to provide the device IP address information. DSM-533
Resolved issues
- When a proxy was configured in policy, creating a new tenant template would cause Internal Server errors. Proxy settings were removed from policies when creating a new tenant template. PCT-4709/DSM-306
- Trend Vision One returned a HTTP 400 error when Deep Security Manager sent a request to update the certificate. DSM-593
What's new in Deep Security Manager? | Deep SecuritySecurity updates
Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. VRTS-12054/PCT-25774/DSM-161/DSM-519
- Highest CVSS: 7.5
- Highest severity: High
Deep Security Linux Agent - 20.0.1-9400 (20 LTS Update 2024-05-16)
Deep Security Agent - 20.0.1-9400 (20 LTS Update 2024-05-16)
Release date: May 16, 2024
Build number: 20.0.1-9400New features
- User mode solution: User mode can now be enabled from the Trend Cloud One - Endpoint & Workload Security or Deep Security Manager UI to provide event generation and protection through basic functions for Activity Monitoring and Anti-Malware on systems that lack kernel support.
Enhancements
- SAP Scanner now supports the SCANLOGPATH parameter. For details, see Integrate with SAP NetWeaver. PCT-21958/DSA-4924
- Updated Deep Security Agent to improve the priority for configurations using a proxy. DSA-4817/PCT-21750
- Deep Security Agent can now retrieve Service Gateway settings from the Trend Micro Endpoint Basecamp (XBC) agent. DSA-4841/V1E-13468
Resolved issues
- Deep Security Agent security updates sometimes failed after reconfiguring proxy settings. PCT-18382/DSA-5390
- Using Deep Security Agent with Web Reputation Service enabled prevented some Application Performance Monitoring (APM) applications from functioning correctly. SF04072723/SEG-97952/PCT-15716/DSA-4750
- Deep Security Agent Anti-Malware and network drivers were unable to load on systems using Security-Enhanced Linux (SELinux) enforcing mode with its default policies. PCT-14630/DSA-4917
- Deep Security Agent was sometimes unable to detect Linux system firewall port settings, which prevented the agent Firewall from allowing ports required for it to function. SF07650853/PCT-16253/DSA-4849
- Anti-Malware on-demand scans sometimes used file descriptors incorrectly, which resulted in "Bad file descriptor" log errors. DSA-4051
What's new in Deep Security Agent? | Deep SecuritySecurity updates
- This release contains updates to third-party libraries. DSA-4187
Deep Security Windows Agent - 20.0.1-9400 (20 LTS Update 2024-05-16)
Deep Security Agent - 20.0.1-9400 (20 LTS Update 2024-05-16)
Release date: May 16, 2024
Build number: 20.0.1-9400Enhancements
- SAP Scanner now supports the SCANLOGPATH parameter. For details, see Integrate with SAP NetWeaver. PCT-21958/DSA-4924
- Updated Deep Security Agent to improve the priority for configurations using a proxy. DSA-4817/PCT-21750
- Deep Security Agent can now retrieve Service Gateway settings from the Trend Micro Endpoint Basecamp (XBC) agent. DSA-4841/V1E-13468
- Web Reputation Service now supports HTTPS protection for Google Chrome browser's Incognito mode and Microsoft Edge browser's InPrivate mode on Windows 10 (64-bit), Windows 11, Windows Server 2016, Windows Server 2019, and Windows Server 2022. DSA-4296
Resolved issues
- Deep Security Agent security updates sometimes failed after reconfiguring proxy settings. PCT-18382/DSA-5390
- Using Deep Security Agent with Web Reputation Service enabled prevented some Application Performance Monitoring (APM) applications from functioning correctly. SF04072723/SEG-97952/PCT-15716/DSA-4750
- Using multiple Smart Protection Servers sometimes generated "Smart Protection Server Disconnected for Smart Scan" warnings, even if Smart Scan was still connected. PCT-13313/DSA-4488
- Deep Security Agent security updates sometimes failed after an agent update was applied. PCT-23614/DSA-5371
What's new in Deep Security Agent? | Deep SecuritySecurity updates
- This release contains updates to third-party libraries. DSA-4187
Deep Security UNIX Agent - 20.0.1-9400 (20 LTS Update 2024-05-16)
Deep Security Agent - 20.0.1-9400 (20 LTS Update 2024-05-16)
Release date: May 16, 2024
Build number: 20.0.1-9400What's new in Deep Security Agent? | Deep SecurityResolved issues
- Using Deep Security Agent with Web Reputation Service enabled prevented some Application Performance Monitoring (APM) applications from functioning correctly. SF04072723/SEG-97952/PCT-15716/DSA-4750
- The Anti-Malware Scheduled Scan on AIX platforms was including Network File System (NFS) contents, which should have been excluded. PCT-13912/DSA-4098