Linux Agent LS64 Changelog (Elements, Business Suite, Standalone)
Comments
-
New Linux Security 64 update has been released
New BaseGuard (1.0.568) and FSBG (1.0.548) updates have been released. BaseGuard and FSBG are part of Linux Security 64. This update includes the following changes:
- CSLP-3953: Fixed an issue where scanning service could temporarily consume CPU resources excessively.
- CSLP-3952: Fixed an issue where scanning results were sometimes inconsistent due to a caching related issue.
- CSLP-3926: Fixed an issue where files were not properly cleaned up when offline updates were used.
- CSLP-3951: Fixed an issue where an error about "invalid component in version element" was printed to the journal.
- CSLP-3794: Fixed an issue where the same machine appeared with different names in different web services.
- CSLP-3948: Fixed an issue where information about latest engine update was not correctly shown in Policy Manager.
- CSLP-3950: Updated OpenSSL to 1.1.1k.
- Miscellaneous enhancements and bug fixes.
1 -
New pinnable Linux Security 64 version is available
New pinnable Linux Security 64 version "linuxsecurity-2021_2" has been released. Product version pinning enables Linux Security 64 installation to be locked to a specific version of the product. When the product version has been pinned the installation will still receive new engine and definition updates. Linux Security 64 supports product version pinning when managed by Policy Manager.
Each pinnable product version has an associated expiration date after which the version will no longer be supported. For "linuxsecurity-2021_2" the expiration date is 2022-06-16T09:00:00Z.
"linuxsecurity-2021_2" contains the following components:
- Linux Security 64 version 12.0.242
- FSBG version 1.0.548
- BaseGuard version 1.0.568
To learn more about product version pinning refer to the "Configuring automatic update options with Policy Manager" section of the Linux Security 64 manual
1 -
New Linux Security 64 update has been released
New Linux Security 64 (12.0.266), BaseGuard (1.0.574), and FSBG (1.0.568) updates have been released. BaseGuard and FSBG are part of Linux Security 64. This update includes the following changes:
- CSLP-3865: Triggering "send status update" action via Elements EPP Portal now causes Linux Security 64 to check for updates.
- CSLP-3932: Files can now be excluded from integrity checking based on file name patterns.
- CSLP-3762: Add support for SolarWinds RMM.
- CSLP-3967: Made activation and uninstallation more robust.
- CSLP-3924: Increased Security Cloud timeout to 30 minutes.
- CSLP-3940: Fixed an issue where rename and remove operations did not work correctly when the file being operated on was located directly inside / directory.
- Miscellaneous enhancements and bug fixes.
Known Issues
- Scanning files as a non-root user using fsanalyze command-line utility causes error message to be shown.
- If the product is being used with Policy Manager 15.20 or older, detection alerts from fsanalyze will result in an unknown alert type error being shown in Policy Manager Console. This issue will be resolved in the upcoming version of Policy Manager.
1 -
New Linux Security 64 update has been released
New BaseGuard (1.0.576) update has been released. BaseGuard is a part of Linux Security 64. This update includes the following changes:
- Miscellaneous enhancements and bug fixes.
1 -
New Linux Security 64 update has been released
New BaseGuard (1.0.579) update has been released. BaseGuard is a part of Linux Security 64. This update includes the following changes:
- CSLP-3986: Fixed an issue where, under certain conditions, scanning could stop working following a large number of service restarts.
- Miscellaneous enhancements and bug fixes.
1 -
New Linux Security 64 update has been released
New BaseGuard (1.0.596) and FSBG (1.0.591) updates have been released. BaseGuard and FSBG are part of Linux Security 64. This update includes the following changes:
- CSLP-3971: Fixed a performance regression that increased CPU usage of fsma2 service.
- CSLP-4017: Fixed an issue where limited internet connectivity during boot could cause on-access scanning to slow down the system.
- CSLP-4018: Fixed an issue where updates could cause on-access scanning to freeze the system.
- Miscellaneous enhancements and bug fixes.
1 -
New Linux Security 64 update has been released
New Linux Security 64 update (12.0.286) has been released. This update includes the following changes:
- CSLP-3985: Fixed an issue where using fsanalyze tool as a non-root user would result in an error to be shown.
- CSLP-3989: Added rate limiting to decrease the number of duplicate alerts that can be sent in a short period of time.
- CSLP-3991: Added support for Debian 11.
- CSLP-3975: Fixed an issue where systemd services could be restarted too quickly.
- Miscellaneous enhancements and bug fixes.
1 -
New Linux Security 64 update has been released
New Linux Security 64 (12.0.291), BaseGuard (1.0.604), and FSBG (1.0.600) updates have been released. BaseGuard and FSBG are part of Linux Security 64. This update includes the following changes.
- CSLP-4029: Fixed an issue where an update might fail due to a slow migration processes.
- CSLP-4030: Fixed an issue where the product would not fully uninstall.
- CSLP-4031: Fixed an issue where the scanning service could sometimes cause core files to be generated during service shutdown.
- CSLP-3997: New lsctl update subcommand can be used to manually trigger the product to check for updates.
- CSLP-4032: Fixed an issue where SELinux policies were not being installed on Alma Linux systems.
- CSLP-4021: Updated components to use OpenSSL 1.1.1l.
- CSLP-4034: Added support for Alma Linux.
- Miscellaneous enhancements and bug fixes.
1 -
New Linux Security 64 update has been released
New BaseGuard (1.0.606) update has been released. BaseGuard is part of Linux Security 64. This update includes the following changes.
- CSLP-4036: Old rotated access.log files were not removed but consumed disk space without a limit.
- Miscellaneous enhancements and bug fixes.
1 -
New pinnable Linux Security 64 version is available
New pinnable Linux Security 64 version "linuxsecurity-2021_5" has been released. Product version pinning enables Linux Security 64 installation to be locked to a specific version of the product. When the product version has been pinned the installation will still receive new engine and definition updates. Linux Security 64 supports product version pinning when managed by Policy Manager.
Each pinnable product version has an associated expiration date after which the version will no longer be supported. For "linuxsecurity-2021_5" the expiration date is 2022-12-22T09:00:00Z.
"linuxsecurity-2021_5" contains the following components:
- Linux Security 64 version 12.0.291
- FSBG version 1.0.600
- BaseGuard version 1.0.606
To learn more about product version pinning refer to the "Configuring automatic update options with Policy Manager" section of the Linux Security 64 manual.
1 -
New Linux Security 64 update has been released
New BaseGuard (1.0.614) and FSBG (1.0.611) updates have been released. BaseGuard and FSBG are part of Linux Security 64. This update includes the following changes:
- Miscellaneous enhancements and bug fixes.
1 -
New Linux Security 64 update has been released (2022-04-11)
Note: This release was made on 2022-04-11. We are moving old change log entries to the new WithSecure Community forum.
New BaseGuard (1.0.632) and FSBG (1.0.623) updates have been released. BaseGuard and FSBG are part of Linux Security 64. This update includes the following changes:
- CSLP-4051: Fixed an issue where real-time scanning service would crash.
- CSLP-4070: Fixed an issue where the product could crash on systems with a large number of mount points.
- CSLP-4071: Fixed an issue where the product could crash when shutting down.
- CSLP-4067: Upgrade to OpenSSL 1.1.1n
1 -
New Linux Security 64 update has been released (2022-04-26)
Note: This release was made on 2022-04-26. We are moving old change log entries to the new WithSecure Community forum.
New Linux Security 64 (12.0.314) update has been released. This update includes the following changes:
- CSLP-3781: Integrity checker will now produce alerts for file metadata changes. In addition, alerts will be sent when integrity checker protected files are deleted.
- CSLP-4053: Fixed a problem where disabling integrity checker did not disable tampering action alerts.
- CSLP-4009: Optimize resource usage by avoiding starting real-time scanning and integrity checking related services when they are not needed. This means that these services will no-longer be running after the update if they are not needed.
- CSLP-4014: Relax Python dependency's version constraints on CentOS, RHEL, and Alma Linux systems to allow installing the product when the system has Python 3.9 installed.
1 -
New pinnable Linux Security 64 version is available
New pinnable Linux Security 64 version "linuxsecurity-2022_1" has been released. Product version pinning enables Linux Security 64 installation to be locked to a specific version of the product. When the product version has been pinned the installation will still receive new engine and definition updates. Linux Security 64 supports product version pinning when managed by Policy Manager.
Each pinnable product version is supported for a year from the release of the subsequent pinnable version.
"linuxsecurity-2022_1" contains the following components:
- Linux Security 64 version 12.0.314
- FSBG version 1.0.623
- BaseGuard version 1.0.632
2 -
New Linux Security 64 update has been released (2022-08-31)
New Linux Security 64 (12.0.338), FSBG (1.0.646), and BaseGuard (1.0.655) updates have been released. FSBG and BaseGuard are part of Linux Security 64. Changes in these releases include:
- CSLP-4133: Added support for Ubuntu 22.04.
- CSLP-4132: Added support for Red Hat Enterprise Linux 9 and Alma Linux 9.
- CSLP-3830: Added support for retrieving updates over HTTPS.
- CSLP-4079: Fixed an issue where Linux Security 64 would not correctly report product build number to Policy Manager.
- CSLP-4012: Improved SELinux support.
- CSLP-4058: Upgraded OpenSSL.
- MALT-305: Fixed a crash in integrity checking service.
- MALT-108: Fixed an issue where under certain conditions update validity would be verified incorrectly.
- MALT-335: Fixed an issue where errors related to expired subscription would be displayed even when the subscription was valid.
- MALT-109: Fixed an on-access scanning compatibility issue with kernel versions >=5.13.
- MALT-103: Updated embedded curl dependency.
- Miscellaneous fixes and improvements.
0 -
New Linux Security 64 update has been released (2022-09-20)
New FSBG update (1.0.653) has been released. FSBG is part of Linux Security 64. This update includes the following changes:
- CSLP-4151: Fixed an issue where new Policy Manager managed installations making use of Policy Manager proxies or Policy Manager address overrides would have invalid update configuration.
- Miscellaneous enhancements and bug fixes.
0 -
New Linux Security 64 update has been released (2022-10-05)
New FSBG update (1.0.654) has been released. FSBG is part of Linux Security 64. This update includes the following changes:
- CSLP-4158: Fixed an issue where FSBG updates could fail on systems with certain SELinux configuration.
- Miscellaneous enhancements and bug fixes.
0 -
New pinnable Linux Security 64 version is available (2022-10-20)
New pinnable Linux Security 64 version "linuxsecurity-2022_4" has been released. Product version pinning enables Linux Security 64 installation to be locked to a specific version of the product. When the product version has been pinned the installation will still receive new engine and definition updates. Linux Security 64 supports product version pinning when managed by Policy Manager.
Each pinnable product version is supported for a year from the release of the subsequent pinnable version.
"linuxsecurity-2022_4" contains the following components:
- Linux Security 64 version 12.0.338
- FSBG version 1.0.654
- BaseGuard version 1.0.655
0 -
New Linux Security 64 update has been released (2022-11-28)
New Linux Security 64 (version 12.0.409), FSBG (version 1.0.703), and BaseGuard (version 1.0.723) updates have been released. FSBG and BaseGuard are components of Linux Security 64. These updates include the following changes:
- CSLP-4169: Make it possible to bypass distribution compatibility checks and run the product on systems that are not officially supported. The main use case for this feature is to enable running the product on various "clone" distributions that resemble one of the supported distributions.
- CSLP-3740: Improved integrity checker integration with updates installed via system package manager. Integrity checker baseline can now be automatically updated after a system update has been installed. Currently APT and DNF package managers are supported.
- MALT-529, MALT-536, MALT-563: Fixed crashes in scanning service.
- MALT-441: Fixed an issue where in certain situations subscription was incorrectly deemed to be invalid.
- CSLP-4160: Fixed a possible race condition when taking a new SELinux policy into use.
- CSLP-4150: Fixed an issue where SELinux prevented accessing SSSD NSS module on Red Hat Enterprise Linux 7 and CentOS 7.
- MALT-527: Fixed a memory access related issue in real-time scanning service.
- MALT-388: Added support for wildcards in on-access scanning.
- Miscellaneous enhancements and bug fixes.
0 -
New pinnable Linux Security 64 version is available (2022-12-07)
New pinnable Linux Security 64 version "linuxsecurity-2022_5" has been released. Product version pinning enables Linux Security 64 installation to be locked to a specific version of the product. When the product version has been pinned the installation will still receive new engine and definition updates. Linux Security 64 supports product version pinning when managed by Policy Manager.
This pinnable version will be supported until the end of 2023.
"linuxsecurity-2022_5" contains the following components:
- Linux Security 64 version 12.0.409
- FSBG version 1.0.703
- BaseGuard version 1.0.723
0 -
New Linux Security 64 update has been released (2023-04-25)
New Linux Security 64 (version 12.0.441) and FSBG (version 1.0.738) updates have been released. FSBG is a component of Linux Security 64. These updates include the following changes:
- LNX-278: Fixed an issue where an unreachable proxy could prevent certain product services from starting up.
- CSLP-4211: Fixed an issue where certain product updates would ignore update installation schedule.
- Added support for Rocky Linux 8 and 9.
- Updated OpenSSL.
- LNX-174: Fixed an issue where /etc/apt/apt.conf.d/10fsicd-apt-hook configuration file was not uninstalled properly.
- CSLP-4043: Fixed an issue with offline updates where updater could attempt to install channels in an incorrect order.
- LNX-245: Fixed an issue where offline-update command did not include any help text.
- LNX-23: Merged BaseGuard contents into FSBG. Previously some parts product's functionality was distributed as a separate BaseGuard component.
- CSLP-3646: Improved error messages in offline-update to indicate that channels cannot be downgraded.
- CSLP-4205: Added a new setting to configure (or disable) maximum file size limit for scanned files.
- LNX-238: Fixed an issue where fsanalyze command would print archive member names incorrectly.
- CSLP-4174: Fixed a possible crash configuration management service.
- CSLP-3958: Allowed offline updates to be installed even when automatic updates are enabled.
- LNX-211: Fixed an issue where invalid utf-8 could be included to the access log.
- LNX-304: Fixed an issue where scanning service could fail under a heavy load.
0 -
New Linux Security 64 update has been released (2023-04-27)
New Linux Security 64 (version 1.0.442) update has been released. This update includes the following changes:
- LNX-349: Fixed an issue that prevented fresh installations from completing successfully.
0 -
New Linux Security 64 update has been released (2023-06-06)
New FSBG update (version 1.0.741) has been released. FSBG is a component of Linux Security 64. This update includes the following changes:
- LNX-359: Improved setup robustness.
0 -
New Linux Security 64 update has been released (2023-07-04)
New Linux Security 64 update (version 12.0.445) has been released. This update includes the following changes:
- LNX-358: Fixed an issue where uninstallation would not always work if the installation had not finished completely.
- LNX-396: Fixed an issue where on certain systems the product could fail to start properly when a certain on-access scanning configuration was used.
0 -
New Linux Security 64 update has been released (2023-10-16)
New FSBG update (version 1.0.787) has been released. FSBG is a component of Linux Security 64. This update includes the following changes:
- LNX-387: Solved an issue where integrity checker could cause high CPU usage under certain conditions.
- LNX-360: Solved an issue where an error about failing to clean up previous channel content could be printed after an update.
- LNX-363: Solved an issue where certain updates could fail due to errors about incompatible product-control.
- LNX-414: Upgraded to OpenSSL 3
- LNX-298: Removed f-secure-baseguard-av service from the product.
0 -
New Linux Security 64 update has been released (2023-10-24)
New Linux Security 64 update (version 12.0.459) has been released. This update includes the following changes:
- LNX-377: Added support for Debian 12. Currently Debian 12 support does not cover Linux Protection installations that include RDR functionality.
- LNX-414: Upgraded to OpenSSL 3.
0 -
Extending the Support for linuxsecurity-2022_5 Pinnable Product Version
We have decided to extend the support period for the pinnable product version "linuxsecurity-2022_5". The new expiry date for this version is 2024-06-30. Previously, we had committed to supporting this pinnable version until the end of 2023.
1 -
New Linux Security 64 update has been released (2024-02-20)
New FSBG update (version 1.0.828) has been released. FSBG is a component of Linux Security 64. This update includes the following changes:
- LNX-200: The product will require /sys/class/dmi/id/product_uuid file to be in place only when it is being managed by Policy Manager. Previously this file was always required.
- LNX-526: Fixed an issue where HTTP proxy was not used for downloading updates from fallback update server in Policy Manager managed mode.
- LNX-471: Fixed issues with compatibility with nosetuid file systems.
- Miscellaneous bug fixes and improvements.
0 -
New Linux Security 64 update has been released (2024-03-11)
New FSBG update (version 1.0.834) has been released. FSBG is a component of Linux Security 64. This update includes the following changes:- Miscellaneous bug fixes and improvements.
0 -
New Linux Security 64 update has been released (2024-03-18)
New Linux Security 64 update (version 12.0.482) has been released. This update includes the following changes:
- LNX-280: This update changes the address of the server that is used for downloading updates. This change does not affect installations that download updates from a local Policy Manager except in situations where the local
Policy Manager cannot be reached.This update also changes the address of the service that is used for downloading metadata about pinned product versions.For installations in environments with restrictive firewall policies, this update might require manual intervention to ensure that the installation can still contact all the necessary services. See for more information about the addresses that Linux Security 64 installations may contact. - Miscellaneous bug fixes and improvements.
Note for customers using ZIP files to update their installations
This product update includes changes which will affect the procedure to install future malware definition or product updates from ZIP archives. Please continue reading if you are currently making use of ZIP archives to install updates using the offline-update program.
After updating your product installation to the new version, follow these steps to prepare update ZIP archives in the future:
- Log on to the endpoint on which you intend to install updates from a ZIP archive.
- Run the command
/opt/f-secure/fsbg/bin/withsecure-migrator status - Check the last line of output from the above command.
- If the system reports that the command does not exist, or the command reports “not-performed” or “not-ready”, you can prepare a new f-secure-updates.zip archive for updates by using any version of fspm-definitions-update-tool and channels.json files you might already have available, and install the updates as before from the f-secure-updates.zip file using the offline-update program. Before starting to prepare another ZIP archive later, however, return to step 1 of these instructions.
- If the command at step 2 reports "migrated", the procedure for installing the updates changes as follows:
- First, please verify that you are using a recent enough version of fspm-definitions-update-tool for creating update archives.
- If you are using fspm-definitions-update-tool from a Policy Manager Server 16 installation, you are already at a new enough version.
- If you are not using Policy Manager 16, or are unsure about the version of fspm-definitions-update-tool, download the latest version of fspm-definitions-update-tool from the product download page, and extract the files to a directory.
- Second, download the latest version of the channels.json file to use to configure fspm-definitions-update-tool:
https://download.f-secure.com/corpro/ls64/current/channels.json
As before, replace the channels.json file under fspm-definitions-update-tool's conf/ subdirectory with the downloaded file, remove the data/ directory if it exists. - Run the fspm-definitions-update-tool program. fspm-definitions-update-tool will create a fresh data/ subdirectory with two ZIP archives: f-secure-updates.zip and withsecure-updates.zip. You must now use the withsecure-updates.zip file to install updates on the endpoint using the offline-update program.
(The f-secure-updates.zip file should no longer be used for installing updates on that endpoint. When run, fspm-definitions-update-tool will however continue to create this file to support packaging updates for endpoints which still need this file.) - After installing the product updates for the first time from the withsecure-updates.zip file on an endpoint, it won't be necessary to verify the status of the installation again on that endpoint (step 2); all later product updates can be installed using the withsecure-updates.zip file.
- First, please verify that you are using a recent enough version of fspm-definitions-update-tool for creating update archives.
0 - LNX-280: This update changes the address of the server that is used for downloading updates. This change does not affect installations that download updates from a local Policy Manager except in situations where the local
