Monthly Release Notes - May 2024

Jump to:

Alert Logic Automate Beyond Security Boldon James
Bytware CCSS Clearswift Cobalt Strike
Core Security Digital Defense Digital Guardian Document Management
FileCatalyst Fortra Globalscape GoAnywhere
Halcyon HelpSystems One IBM Partnership Insite
InterMapper JAMS Outflank Security Tooling Powertech
Robot Safestone Sequel Showcase
Tango/04 TeamQuest Titus Vera

 

Alert Logic

Managed Web Application Firewall (WAF)

Version 5.1.4.1

May 22, 2024

Fixes

  • Allow daemons to start without interference after user-specified upgrades

  • Allow deletion of ACL paths that include HTML entities

  • Properly schedule reload/restart of the daemon that restarts other daemons

Version 5.1.4.0

May 20, 2024

New Features

  • Oracle Linux 8 Security Technical Implementation Guide - MAC II - Sensitive-system hardening

  • Support user-specified egress IP network filtering

  • Support regular ASV scans

  • Support user-specified upgrades of auto-scaling stacks

Enhancements

  • Update SQLite

Fixes

  • Resolve issues syncing regex ACLs and ordered ACLS in HA clusters

  • Resolve issue with bot management by properly matching certain L7 attributes

Back to Top

 

Beyond Security

beSTORM

Version 13.3.0

May 21, 2024

New Features

  • Added the PTPv2 (1588-2008) Client module to support the PTPv2 protocol described in standard IEEE1588-2008.

  • Added the PTPv2 (1588-2008) Server module to support the PTPv2 protocol described in standard IEEE1588-2008.

Enhancements

  • Updated the ARP Low-level protocol to include the GARP (Gratuitous ARP) and IARP (Inverse ARP) request types.

  • Changing the Scale Type parameter for an existing project will now update the Module Browser tree to reflect the new number of combinations.

  • Updated the beSTORM User Guide to include fuzz testing guides, EDSA module documentation, and API documentation. This content was initially only available on Fortra's Beyond Security Portal.

  • Replaced the embedded beSTORM User Guide PDF with the HTML version to provide a better user experience. The PDF version of the guide is still available for download from Fortra's Beyond Security Portal.

Fixes

  • Fixed an issue where trailing blank spaces at the end of a project's name would display the "Failed to load general project settings..." error message.

  • Fixed an issue where the RIPv1 module would stop responding after a fuzz testing session started.

  • Fixed an issue where the Module Browser pane was not accurately portraying the number of combinations a module can perform. The Module Browser tree and any associated completed reports will now correctly display the number of iterations every node makes.

  • Fixed an issue where the estimated time remaining to complete a test, based on the total combinations and average speed, was incorrect.

Back to Top

 

Boldon James

Knowledge Classifier

Version 1.4

May 1, 2024

Fixes

  • Writing to alternate data streams for file paths in long UNC format failed

Notes Classifier

Version 3.9.0

May 31, 2024

New Features

  • Notes Classifier now supports the Content Checking rule that is configured in the Classifier Administration Server.

  • Added support for 64-bit computers.

Enhancements

  • Updated product branding to meet Fortra standards.

Back to Top

 

Digital Guardian

Agent for Linux

Version: 8.0.0

JUNE 30, 2024

New Features

  • Certification for Additional Kernels

    This table lists the additional certified Linux kernels for Red Hat Enterprise Linux (RHEL) and Ubuntu in this release. Refer to Agent for Linux User's Guide for details about the packages required to support the new kernel versions for the Agent. Refer to Agent_for_Linux_v7.4.x_and_later_RHEL_Certified_Environments and Agent_for_Linux_v7.4.x_and_later_Ubuntu_Certified_Environments for complete lists of supported RHEL and Ubuntu kernels.

Distribution

Version

Architecture

Kernel
RHEL 9.2

64-Bit

 kernel-5.14.0-284.62.1.el9_2
RHEL 9.0

64-Bit

 kernel-5.14.0-70.101.1.el9_0
RHEL 8.9

64-Bit

 kernel-4.18.0-513.24.1.el8_9
RHEL 8.6

64-Bit

 kernel-4.18.0-372.100.1.el8_6
Ubuntu

22.04 LTS

64-Bit

 linux-image-6.5.0-27-generic
Ubuntu

22.04 LTS

64-Bit

 linux-image-5.15.0-102-generic

  • Added Support for IPv6 Addresses

    IPv6 support for Agent for Linux, versions 8.0 and later. Adds support for these rule properties and component list types:

    • agentIPAddressV6

    • evtRemoteAddressV6

    • ipMaskV6

    • ipAddressV6

    • ipAddress

    • varipaddressV6

    • componentListIpAddress

    • componentListIpAddressV6

    For additional information, refer to Digital Guardian Rule Implementation Guide.

  • Create Platform-Specific Installation Packages

    To help reduce the size of Agent installation packages, you can specify which Linux platforms to include in the build package. You can specify whether to include RHEL or Ubuntu or both. You can also specify which versions of either RHEL or Ubuntu to include. For more details, refer to “Creating the Installation File” in Digital Guardian Agent for Linux User’s Guide.

Agent for MacOS

Version: 8.7

May, 2024

New Features

  • Apple M3 Chip Support: In this release, DG Agent for macOS 8.7 has been certified to run on Macbooks with Apple M3 chip.

Fixes

  • The customer raised an issue where emails were not sending while using a New Outlook add-in and ARC configured as a Certifying Authority for DG Web Inspection Proxy. This issue occurred due to an incorrect Server Certificate generation, leading to communication failure between the Outlook add-in and DG WIP. This issue is now resolved by generating a correct Server Certificate.

  • Users encountered latency while typing, leading to temporary freezing of the window for 1-2 seconds and resulting in the loss of keystrokes. This issue has been resolved by fixing the removal of outdated entries in ADE menus. The same solution was implemented to resolve AG-55073. For more information, refer to DigitalGuardian_Agent_for_macOS_8.7_Release_Notes

  • Customer reported emails being blocked when using Outlook add-in. This issue is resolved and it also addresses emails getting blocked when sent from shared mailbox.

  • The dropdown menu for font selection in Microsoft PowerPoint was experiencing an issue where it would unexpectedly open and close. This issue is resolved now.

  • Customer reported an issue wherein large file download was being blocked in Safari. File downloads will now not get blocked in Safari on encountering EPS timeout. Additionally, EPS notifications are now suppressed when the download is successful after an EPS timeout.

  • Initially, the Rule Property <agentIPAddress /> failed to trigger on the Mac Agent. This issue has been resolved, and <agentIPAddress> is now being detected correctly.

  • When ARC is set up as the Certifying Authority for Web Inspection Proxy, intermittent failures have been observed in connecting to the ARC from the DG Agent. Despite the occasional failure, subsequent retries tend to succeed, and the overall functionality remains unaffected. This issue has been addressed and resolved. Operational alerts will now be sent only when the second retry to ARC fails, reducing operational alert noise.

nDLP Appliance

Version: 12.0

May, 2024

New Features

  • DG Appliance now uses Rocky Linux version 8.9 as the underlying Operating System, replacing CentOS version 7.9.

Fixes

  • When attempting to access the online help guide version 11.9 via the UI, the window fails to launch and remains blank. This issue has been resolved in this release, and customers can now access the online help guide.

  • Customers reported an issue where DG nDLP appliance setup to send discovery events in XML format were not appearing in DGMC/ARC. However, this issue has now been fixed.

 

Back to Top

 

Fortra

Fortra platform

May 21, 2024
Enhancements

  • When a user has read-only access to a role, there is a new action menu item "View role" that allows the user to see the details of the role.

  • Updated privacy policy.

  • Added ability to opt of out allowing users outside of organization to manage account.

Endpoint Manager

May 21, 2024
New Features

  • Audit events are now sent to Event Fusion Center when configuration is added, modified, or deleted.

Enhancements

  • Added the ability to generate and collect verbose installer logs for individual modules and the Fortra Agent itself.

Fixes

  • Modules now accurately display by capability and reflect changes to module overrides regardless of agent state.

  • Fixed issue with dropdown fields not populating assigned values when editing an existing configured module.

May 7, 2024
Enhancements

  • Assignments for a group are now deleted when the group is deleted.

Fixes

  • When there are not modules associated with an endpoint, the module count of 0 has been removed.

Back to Top

 

Globalscape

EFT

v8.2.0.46

May 1, 2024

Fixes

    High Availability (HA)

    • Fixed an issue where EFT service would fail to start on additional nodes added to a new HA Active-Active cluster configuration

    Help Documentation

    • Updated several Help topics (typos, clarifications, and so on)

Back to Top

 

GoAnywhere

GoAnywhere MFT

Version 7.5.2

May 29, 2024

Updates

  • Updated unlimited-common from 1.4.69+ to 1.7.12.

  • Updated unlimited-transfers from 1.4.129+ to 1.7.15.

  • Updated unlimited.fc.client-api from 1.4.120+ to 1.7.56.

  • Updated Tomcat from version 9.0.83 to 9.0.87.

  • Updated the PostgreSQL JDBC Driver from 42.4.3 to 42.7.3.

Fixes

  • Fixed an issue with Trigger Email actions losing formatting in the email body. This issue was introduced in version 7.4.0.

  • Fixed an issue where files with no extension could not be transferred with the AS4 Push and Pull tasks.

  • Fixed an issue related to Agent Transfers that could corrupt the data structure under heavy load.

  • Fixed an issue with the 7.5.0 upgrade of web user preferences to purge all invalid references (where a web user no longer exists) prior to migrating to the new table.

GoAnywhere Agents

Version 2.2.2

May 29, 2024

Updates

  • Updated unlimited-common from 1.4.69+ to 1.7.12.

  • Updated unlimited-transfers from 1.4.129+ to 1.7.15.

  • Updated unlimited.fc.client-api from 1.4.120+ to 1.7.56.

  • Updated the PostgreSQL JDBC Driver from 42.4.3 to 42.7.3.

GoAnywhere Gateway

Version 3.1.1

May 06, 2024

  • Enhanced the Gateway Docker image to better track the underlying Gateway version.

  • Set the Gateway reverse proxy to be enabled by default in the installer.

  • Updated Software Identification (SWID) tag for Fortra branding.

  • Updated the default installation folder from 'HelpSystems' to 'Fortra'.

  • Updated the Gateway User Guide to include a workaround for Gateway not installing the /etc/init.d/gagatewayd command.

  • Updated Docker paths to use Fortra.

  • Updated Netty from version 4.1.100.Final to 4.1.108.Final.

  • Updated bc-fips from version 1.0.2.3 to 1.0.2.4.

  • Fixed an issue with whitespace in comma-separated values in the gateway.xml configuration file.

Back to Top

 

Outflank Security Tooling (OST)

Outflank

Version: 24 May 2024
Initial Access
  • New tool release: In-Phase Builder (BETA) is a new tool for generating initial access payloads in different formats optimized for OPSEC.
8 May 2024
Command and Control
  • Low level SpawnAs implementation based on novel research, which also serves as a UAC bypass at Stage 1.
Updates

  • Enhanced OPSEC on PE Payload Generator, Stage1, and ShovelNG: evading EDR emulation.

  • Under the hood quality of life improvements and bug fixes.

Back to Top

 

Powertech

Powertech Antivirus for IBM i

Version 8.10

May 14, 2024

New Features

  • On-access and On-demand scan statistics along with Virus detection events are now forwarded to the PTAV Server for use in dashboards.

  • In addition to On-demand scanning, on-access scanning can now be configured in the HelpSystems One PTAV application.

  • Extended support for IBM i endpoints within Powertech Antivirus:

    • Anti-ransomware functionality can now be configured for IBM i endpoints. Requires this version (8.10 (R8M10)) or higher of the Powertech Antivirus for IBM i software to be installed on the IBM i system.

Enhancements

  • The Trellix 6600 scan engine has been incorporated. Compared to the previous version of the scan engine, this offers improvements in detection capabilities, performance, product security and stability, improved support for DMG files, and support for the APK file type.

  • The documentation of the anti-ransomware functionality has been extended massively to highlight the detection mechanisms, mitigation mechanisms, and usage scenarios.

  • The Anti-Ransomware section of the User Guide has been updated to more clearly distinguish between the two detection mechanisms.

  • All references to "McAfee" have been replaced with the new brand name, "Trellix".

  • In the User Guide, the section on Monitoring the product has been extended to include additional messages to monitor for, such as the AVE3001 and AVE3002 anti-ransomware messages.

  • Endpoint registration has been improved as follows:

    • The Endpoint Menu now has two options:

      1. Register as Web Endpoint (prompts a new command AVREGWEB which allows the user to register the system as an endpoint).

      2. Control Web Endpoint Servers (prompts the existing AVINSITE command)

  • In the 'Monitoring' section of the User Guide, updated information is provided about which messages to monitor for in Powertech Antivirus.

  • Support has been added for scanning multiple directories when the scan is configured from the GUI.

  • The fields, “block time” and “block origin” have been added to blocked users within the web server.

  • The Integrity Scan log has been amended to have an ascii ccsid.

  • The information in the User Guide about managing IBM i endpoints with Powertech Antivirus Server has been expanded.

Fixes

  • Under certain conditions, a Qp0lProcessSubtree API failed with error code -1 message would be generated. Processing has been amended to reduce the occasions upon which this occurs.

  • An infected file found on an iASP is now Quarantined correctly.

  • Work with Canary Files (AVWRKCNY) now handles many more definitions. The new limit is based upon storage location.

  • QMSF Scanning now works as expected.

  • Objects related to the legacy Operations Navigator(TM) plugin for Powertech Antivirus for IBM i have been removed from the installed objects.

  • All scan paths configured on an on-demand scan path definition are now scanned if multiple paths are configured. While it was previously possible to specify multiple paths, only the last path specified was actually scanned.

  • The list of Blocked Users is now always updated.

  • The file "SCNRESULTS" is now created with size set at *NOMAX.

  • User Indexes are now created with the correct Owner.

  • An issue where the DAT version, following download, was being shown as only four characters long, has been resolved.

  • After running a DAT update with "Retrieve files only" RTVONLY(*YES), the superfluous character ('?') no longer appears in the text for Message Id AVC0207.

BoKS Manager

Version 8.1 (version update)

May 02, 2024

Client c-8.1.1.6
Fixes

  • The following dependencies were upgraded for security:

    • OS command injection might occur if a user name or host name has shell metacharacters.

    • Destination constraints only apply to the first key in the PKCS#11-hosted private keys.

    • SSH Terrapin-attack.

      • NOTE: For more detail, including CVE references for fixes, see the README file.
Version 8.1 (version update)

May 2, 2024

Server s-8.1.1.4
Fixes
  • BoKS rule ID changes during migration from 7.2

BoKS SSH Client for Windows

Version 8.1.1

May 13, 2024

New Features

  • Upgraded to be based on PuTTY 0.81.

NOTE: For more detail, including CVE references for fixes, see the README file.

Back to Top

 

Robot

Robot Console

Version 7.11

May 22, 2024

New Features

  • Added *SYSBAS and Independent ASP (IASP) monitoring to resource monitoring. This allows the checking of storage usage, and the status of IASPs.

Enhancements

  • Added the ability to use WebSphere MQ resource monitoring when the MQ configuration is in an independent ASP (IASP).

Fixes

  • Fixed issue with the Connection Properties not updating the Certificate Expiration Date when a new certificate was retrieved.

  • During the product conversion, the process will not stop if there is a failure on an IFS object restore, but instead issue a warning.

  • Fixed issue where not all informational messages were being sent to network host when using OPAL

  • Improved error message during a product update when the license code is invalid.

  • Fixed issue where the installer could fail with an 'invalid command line' error.

  • More time is now allowed for processing of IBM FTP server jobs when initially turning on FTP Log Monitoring. This resolved an issue where FTP servers were occasionally ended but not restarted as part of turning on FTP Log Monitoring.

Back to Top

 

TeamQuest

Administration Console

Version 11.4.9

May 21, 2024

Enhancements

  • Upgrade Apache HTTP to version 2.4.59

  • Update OpenSSL to version 3.3.0 (Linux only)

TeamQuest Manager

Version 11.4.15

May 21, 2024

Enhancements

  • Upgrade Apache HTTP to version 2.4.59

Back to Top

 

Titus

Data Classification Suite Metadata SDK

Version 5.1

May 10, 2024

New Features

  • Can write standard, custom, and embedded metadata to the following file types:

    • Open XML Files (for example, Microsoft docx, xlsx, and pptx files)

    • Compound document format files (for example, Microsoft doc, xls, and ppt files)

    • PDF files

  • Can write embedded metadata to file types that support XMP metadata (for example, jpg, mp3, mp4)

Policy Manager

Version 2024.04 HF1

May 15, 2024

Fixes

  • Improved Configuration publishing when a Schema Field is used multiple times in a Schema View and the condition builder in a Rule includes metadata properties for this Schema Field.

Back to Top

 

Vera

Version 3.23.6

May 2024

Fixes and Security Updates

  • Share Page Policy Mapping

    • Fixed an issue where the Policy Mapping under Advanced Settings in the Share page was not saved after modification if more than one type of share was present.

Version 3.23.5

May 2024

Fixes and Security Updates

  • Important Update to the Vera SaaS

    • The Secure Collaboration team will be performing an infrastructure upgrade to enhance its security posture.

Version 3.23.4

May 2024

Fixes and Security Updates

  • Important Update to the Windows Agent

    • Fixed a security issue for the Adobe Acrobat Reader.

Back to Top