RN 11.3.2: Fixed Issues

Document created by RSA Information Design and Development on Nov 21, 2019Last modified by RSA Information Design and Development on Dec 9, 2019
Version 4Show Document
  • View in full screen mode
 

Fixed Issues

This section lists issues fixed since the last major release.

Security

                                                                                               
Tracking NumberDescription
ASOC-81624CentOS 7 kernel Security Update - https://access.redhat.com/errata/RHSA-2019:1873
ASOC-79205CentOS 7 bind Secuirty Update - https://access.redhat.com/errata/RHSA-2019:1294
ASOC-81177CentOS 7 java-1.8.0-openjdk Security Update - https://access.redhat.com/errata/RHSA-2019:1815
ASOC-81622CentOS 7 libssh2 Security Update - https://access.redhat.com/errata/RHSA-2019:1884
ASOC-73237CentOS 7 systemd Security Update - https://access.redhat.com/errata/RHSA-2019:0368
ASOC-79835CentOS 7 python Security Update - https://access.redhat.com/errata/RHSA-2019:1587
ASOC-77410CentOS7 python-jinja2 Security Update - https://access.redhat.com/errata/RHSA-2019:1022
ASOC-74485CentOS 7 openssl Security Update - https://access.redhat.com/errata/RHSA-2019:0483
ASOC-69299CentOS 7 jasper Security Update - https://access.redhat.com/errata/RHSA-2018:3253
ASOC-69298CentOS 7 setup Security Update - https://access.redhat.com/errata/RHSA-2018:3249
ASOC-69292CentOS 7 glibc Security Update - https://access.redhat.com/errata/RHSA-2018:3092
ASOC-69290CentOS 7 krb5 Security Update - https://access.redhat.com/errata/RHSA-2018:3071
ASOC-68943CentOS 7 wget Security Update - https://access.redhat.com/errata/RHSA-2018:3052
ASOC-68887CentOS 7 binutils Security Update - https://access.redhat.com/errata/RHSA-2018:3032
ASOC-65195CentOS 7 nss Security Update - https://access.redhat.com/errata/RHSA-2018:2768
ASOC-81623CentOS 7 curl Security Update - https://access.redhat.com/errata/RHSA-2019:1880
ASOC-81621CentOS 7 httpd Security Update - https://access.redhat.com/errata/RHSA-2019:1898
ASOC-80161CentOS 7 vim Security Updated - https://access.redhat.com/errata/RHSA-2019:1619
ASOC-78364CentOS 7 wget Security Update - https://access.redhat.com/errata/RHSA-2019:1228
ASOC-73832CentOS 7 polkit Security Update - https://access.redhat.com/errata/RHSA-2019:0230
ASOC-70077CentOS 7 samba Security Update - https://access.redhat.com/errata/RHSA-2018:3056

Upgrade

               
Tracking NumberDescription
ASOC-79110After you upgrade to 11.3.1, the default CEF and Human readable format, audit templates are not updated.

NetWitness Endpoint

                   
Tracking NumberDescription
ASOC-82880Registry Monitor may cause Blue Screen Error on 32-bit agents.
ASOC-82891In the policy, the Windows Log Setting, Send Test Log is not working.

Core Services (Broker, Concentrator, Decoder, Archiver)

                 
Tracking NumberDescription
SACE-12285 Log Decoder is not receiving data over UDP.

SACE-12068

The Physical Drives and Logical Drives for all core appliances is missing in the Service Stats view.

Investigation

                       
Tracking NumberDescription
SACE-11752 Unable to download file for external account from the Event Analysis view.
SACE-11365 When a Broker is connected to any offline Concentrator, the timeline will not render results in the Investigation.

SACE-12126

“Score” custom meta key is not displaying correct results.

Administration

               
Tracking NumberDescription
SACE-12189After upgrade, unable to export all the existing application rules from the Decoder due to huge size.

Event Stream Analysis

                               
Tracking NumberDescription
SACE-11827 When you export ESA rules from the NetWitness Platform UI, you are unable to import due to the Endpoint bundle file in it.
SACE-11857 If you have an ESA rule in more than one ESA rule deployment and that rule has notifications, if you delete the rule from one deployment, then the notifications in the other deployments break and you have to redeploy the other deployments.
SACE-12089When redeploying ESA rules, aggregation would sometimes resume from data sources at the wrong position in time.
SACE-12182Adjusted the timestamp format in notifications to match previous NetWitness Platform versions for compatibility.

ASOC-82076

If a Concentrator is added to the available data sources for ESA rule deployments and then the host is removed from the NetWitness server, you can still see that host in the available data sources list.

Previous Topic:What's New
Next Topic:Build Numbers
You are here
Table of Contents > Fixed Issues

Attachments

    Outcomes