This section lists issues fixed after the last major release.
Security Fixes
Tracking Number | Description |
---|---|
ASOC-86436 | CentOS 7 kernel security update (Important) - https://access.redhat.com/errata/RHSA-2019:3834 |
ASOC-86435 | CentOS 7 kernel security update (Important) - https://access.redhat.com/errata/RHSA-2019:3872 |
ASOC-85738 | CentOS 7 sudo security update (Important) - https://access.redhat.com/errata/RHSA-2019:3197 |
ASOC-85372 | CentOS 7 java-11-openjdk security update (Important) - https://access.redhat.com/errata/RHSA-2019:3127 |
ASOC-85371 | CentOS 7 java-1.8.0-openjdk security update (Important) - https://access.redhat.com/errata/RHSA-2019:3128 |
ASOC-85296 | CentOS 7 kernel security and bug fix update (Important) - https://access.redhat.com/errata/RHSA-2019:3055 |
ASOC-85267 | CentOS 7 libcgroup security update (Moderate) - https://access.redhat.com/errata/RHSA-2019:2047 |
ASOC-85266 | CentOS 7 libjpeg-turbo security update (Moderate) - https://access.redhat.com/errata/RHSA-2019:2052 |
ASOC-84843 | CentOS 7 kernel security update (Important) - https://access.redhat.com/errata/RHSA-2019:2829 |
ASOC-84228 | CentOS 7 libmspack security update (Moderate) - https://access.redhat.com/errata/RHSA-2019:2049 |
ASOC-83893 | CentOS 7 kernel security, bug fix, and enhancement update (Important) - https://access.redhat.com/errata/RHSA-2019:2029 |
ASOC-83892 | CentOS 7 pango security update (Important) - https://access.redhat.com/errata/RHSA-2019:2571 |
ASOC-83891 | CentOS 7 httpd security and bug fix update (Moderate) - https://access.redhat.com/errata/RHSA-2019:2343 |
ASOC-83890 | CentOS 7 kernel security and bug fix update (Important) - https://access.redhat.com/errata/RHSA-2019:2600 |
ASOC-82840 | CentOS 7 glibc security and bug fix update (Moderate) - https://access.redhat.com/errata/RHSA-2019:2118 |
ASOC-82839 | CentOS 7 elfutils security, bug fix, and enhancement update (Low) - https://access.redhat.com/errata/RHSA-2019:2197 |
ASOC-82838 | CentOS 7 dhcp security and bug fix update (Moderate) - https://access.redhat.com/errata/RHSA-2019:2060 |
ASOC-82837 | CentOS 7 curl security and bug fix update (Low) - https://access.redhat.com/errata/RHSA-2019:2181 |
ASOC-82836 | CentOS 7 binutils security and bug fix update (Moderate) - https://access.redhat.com/errata/RHSA-2019:2075 |
ASOC-82835 | CentOS 7 bind security, bug fix, and enhancement update (Moderate) - https://access.redhat.com/errata/RHSA-2019:2057 |
ASOC-82834 | CentOS 7 libssh2 security, bug fix, and enhancement update (Moderate) - https://access.redhat.com/errata/RHSA-2019:2136 |
ASOC-82833 | CentOS 7 libtiff security update (Moderate) - https://access.redhat.com/errata/RHSA-2019:2053 |
ASOC-82832 | CentOS 7 Xorg security and bug fix update (Moderate) - https://access.redhat.com/errata/RHSA-2019:2079 |
ASOC-82831 | CentOS 7 linux-firmware security, bug fix, and enhancement update (Important) - https://access.redhat.com/errata/RHSA-2019:2169 |
ASOC-82830 | CentOS 7 mariadb security and bug fix update (Moderate) - https://access.redhat.com/errata/RHSA-2019:2327 |
ASOC-82829 | CentOS 7 nss, nss-softokn, nss-util, and nspr security, bug fix, and enhancement update (Moderate) - https://access.redhat.com/errata/RHSA-2019:2237 |
ASOC-82828 | CentOS 7 ntp security, bug fix, and enhancement update (Low) - https://access.redhat.com/errata/RHSA-2019:2077 |
ASOC-82827 | CentOS 7 openssh security, bug fix, and enhancement update (Low) - https://access.redhat.com/errata/RHSA-2019:2143 |
ASOC-82826 | CentOS 7 openssl security and bug fix update (Moderate) - https://access.redhat.com/errata/RHSA-2019:2304 |
ASOC-82825 | CentOS 7 polkit security and bug fix update (Moderate) - https://access.redhat.com/errata/RHSA-2019:2046 |
ASOC-82824 | CentOS 7 procps-ng security and bug fix update (Moderate) - https://access.redhat.com/errata/RHSA-2019:2189 |
ASOC-82823 | CentOS 7 python security and bug fix update (Moderate) - https://access.redhat.com/errata/RHSA-2019:2030 |
ASOC-82822 | CentOS 7 python-requests security update (Low) - https://access.redhat.com/errata/RHSA-2019:2035 |
ASOC-82821 | CentOS 7 python-urllib3 security update (Moderate) - https://access.redhat.com/errata/RHSA-2019:2272 |
ASOC-82820 | CentOS 7 rsyslog security and bug fix update (Moderate) - https://access.redhat.com/errata/RHSA-2019:2110 |
ASOC-82819 | CentOS 7 samba security, bug fix, and enhancement update (Moderate) - https://access.redhat.com/errata/RHSA-2019:2099 |
ASOC-82818 | CentOS 7 systemd security, bug fix, and enhancement update (Moderate) - https://access.redhat.com/errata/RHSA-2019:2091 |
ASOC-82817 | CentOS 7 unixODBC security update (Moderate) - https://access.redhat.com/errata/RHSA-2019:2336 |
ASOC-82816 | CentOS 7 unzip security update (Low) - https://access.redhat.com/errata/RHSA-2019:2159 |
ASOC-72421 | CentOS 7 bind security update (Moderate) https://access.redhat.com/errata/RHSA-2019:0194 |
ASOC-72419 | CentOS 7 systemd security update (Low) - https://access.redhat.com/errata/RHSA-2019:0201 |
ASOC-72418 | CentOS 7 kernel security, bug fix, and enhancement update (Important) - https://access.redhat.com/errata/RHSA-2019:0163 |
ASOC-70086 | CentOS 7 samba security, bug fix, and enhancement update (Moderate) - https://access.redhat.com/errata/RHSA-2018:3056 |
ASOC-70079 | CentOS 7 kernel security, bug fix, and enhancement update (Moderate) - https://access.redhat.com/errata/RHSA-2018:3651 |
ASOC-69381 | CentOS 7 libmspack Security Update (Low) - https://access.redhat.com/errata/RHSA-2018:3327 |
ASOC-69302 | CentOS 7 fuse Security Update (Moderate) - https://access.redhat.com/errata/RHSA-2018:3324 |
ASOC-69297 | CentOS 7 openssl Security Update (Moderate) - https://access.redhat.com/errata/RHSA-2018:3221 |
ASOC-69294 | curl and nss-pem security and bug fix update (Moderate) - https://access.redhat.com/errata/RHSA-2018:3157 |
ASOC-68872 | GNOME security, bug fix, and enhancement update (Moderate) - https://access.redhat.com/errata/RHSA-2018:3140 |
ASOC-68844 | X.org X11 security, bug fix, and enhancement update (Low) - https://access.redhat.com/errata/RHSA-2018:3059 |
ASOC-68833 | CentOS 7 xorg-x11-server Security Update (Important) - https://access.redhat.com/errata/RHSA-2018:3410 |
ASOC-67478 | CentOS 7 xorg-x11-server Security Update (Moderate) - https://lists.centos.org/pipermail/centos-announce/2018-October/023075.html |
ASOC-59640 | CentOS 7 python Security Update (Moderate) - https://access.redhat.com/errata/RHSA-2018:2123 |
Log Collection Fixes
Tracking Number | Description |
---|---|
ASOC-82596 | Title: Plugin transform parameter <includeNullValueParameters> not replacing null tokens to empty string. RSA has added a parameter to the Transform XML File. This file is used for creating and configuring plugins. The new parameter is "includeEmptyValueParameters". If you set this parameter to true, empty parameters, and empty lists, are included in the output of the transform. If set to false, which is the default, excludes empty parameters in the output of the transform. Additionally, the existing parameter "includeNullValueParameters" has been updated to behave as expected. Previously this parameter incorrectly included or excluded empty value parameters and did nothing for "null" valued parameters. Now this parameter, if set to true, includes null tokens items in the output of the transform. If set to false, which is the default, excludes null value parameters in the output of the transform. |
Event Stream Analysis (ESA) Fixes
Tracking Number | Description |
---|---|
ASOC-87267 | Title: Disabled ESA Trial Rules in the Services view get enabled after an upgrade This issue is now resolved. Previously, ESA Trial rules could change status after an upgrade or when they were redeployed. In NetWitness Platform 11.4, ESA trial rules no longer change status after an upgrade or deployment. For example, if you change the status of a trial rule to disabled (Configure > ESA Rules > Services tab) and redeploy the ESA rule deployment (Configure > ESA Rules > Rules tab), the trial rule remains disabled. |
Administration Fixes
Tracking Number | Description |
---|---|
ASOC-86557 | Updating "Effective Date" daily causes scan schedules to restart. |
ASOC-59607 | Syslog server config updates are making duplicate entries in the rsa-audit-server-output.conf log file. |
ASOC-59240 | In Audit Logs, when Common Event Format (CEF) template is applied, backslash characters ( “\”, “\n”, “\r” ) are not escaped properly in the meta values. For example, CORP\user is displayed as CORPuser, CORP\nancy is displayed as CORP ancy and CORP\randy is displayed as CORP andy. |
Investigate Fixes
Tracking Number | Description |
---|---|
ASOC-73826 | In the Event Analysis view, the query console does not replace the information icon with an error icon when a service is offline. |
ASOC-73224 | When retrieval of events for a query is in progress in the Event Analysis view, events that are already displayed disappear if the query takes more than five minutes to finish. |
ASOC-60464 | When a large PCAP is extracted from the Events view, and it times out after five minutes, the query time is displayed as eight hours in the Jobs tray error message. |