Deep Security 11 has reached end of support. Use the version selector (above) to see more recent versions of the Help Center.
What's new in Deep Security Agent?
For release notes from previous years, see Archived Deep Security Agent release notes.
For release notes from the long-term support release, see Deep Security Agent - Linux 11.0 readme.
Deep Security Agent - 11.0 update 31
Release date: March 30, 2023
Build number: 11.0.0-2580
Security updates
Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. VRTS-7647/VRTS-7090/DSSEG-7632/DSSEG-7646
Highest CVSS: 7.5
Highest severity: High
Deep Security Agent - 11.0 update 30
Release date: June 15, 2022
Build number: 11.0.0-2549
Resolved issues
- With Intrusion Prevention enabled, a packet transmission error caused some system configurations to crash. SEG-136843/DSSEG-7524
Security updates
Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. VRTS-7336/DSSEG-7558/DSSEG-7564
Highest CVSS: 9.8
Highest severity: High
Deep Security Agent - 11.0 update 29
Release date: February 22, 2022
Build number: 11.0.0-2401
Enhancements
- Updated Deep Security Agent to use case sensitive header fields. (HTTP header names in the agent were previously not case sensitive.) DSSEG-6943
Resolved issues
- With Anti-Malware real-time scan enabled, Deep Security Agent sometime performed scan on unchanged files. DSSEG-7312
- The Anti-Malware kernel module was incorrectly triggering debug log system messages. SEG-132285/05101268/DSSEG-7452
Deep Security Agent - 11.0 update 28
Release date: October 26, 2021
Build number: 11.0.0-2256
Enhancements
- Updated Deep Security Agent to prevent agents upgraded from version 10.0 to 11.0 from losing their "NIC bypass" configuration (used for Bypassing a network interface).
Resolved issues
- Deep Security Agent sometimes showed package signature errors during an upgrade because of a mismatched Certification Revocation List (CRL). DSSEG-7215
- A plugin version conflict sometimes prevented Deep Security Agent from retrieving KSP (Kernel Support Package) files from the relay. DSSEG-7243
- Deep Security Agent sometimes crashed when it could not connect to Deep Security Manager. SEG-115702/DSSEG-7053
- Deep Security Agent sometimes triggered multiple "Log Inspection Engine Initialized" alerts due to an agent-manager communication issue. SF03968169/SEG-95731/DSSEG-7040
- Deep Security Agent upgrade (Administration > Updates > Software) sometimes failed if a previous (RPM package) upgrade was triggered using console commands. SF04586071/SEG-113583/DSSEG-7030
- Deep Security Agent sometimes lost connectivity while trying to establish an SSL connection. SEG-107451/DSSEG-7017
- With Web Reputation enabled, Deep Security Agent caused connectivity issues for some third party applications. SF04072723/SEG-97952/DSSEG-6977
Security updates
Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. DSSEG-7008/DSSEG-7239/DSSEG-7259
Highest CVSS: 9.8
Highest severity: High
Deep Security Agent - 11.0 update 27
Release date: June 16, 2021
Build number: 11.0.0-2061
Enhancements
- Updated Deep Security Agent (version 11.0.0-2061+) to add support for Entrust Root Certificate Authority (G2) certificates. Non-G2 security certificates will expire on 2022/07/09. After that time, only agents that have been upgraded to version 11.0.0-2061 or higher will have the latest Anti-Malware Smart Scan protection. DSSEG-6905
- Updated Deep Security Agent's Anti-Malware default configuration to monitor file access from the local host only, improving compatibility for some file systems. DSSEG-6884
- Deep Security Agent sometimes showed package signature errors during an upgrade because of a mismatched Certification Revocation List (CRL). DSSEG-6827
Resolved issues
- Deep Security Agent Anti-Malware Real-Time Scan was preventing some third party applications from running. SEG-104512/SF04245456/DSSEG-6895
- Deep Security Agent sometimes crashed when Intrusion Prevention was configured for SSL inspection. DSSEG-6912
- Updated Deep Security Agent to improve real-time Integrity Monitoring performance. SEG-102276/SF04205359/DSSEG-6934
Deep Security Agent - 11.0 update 26
Release date: April 08, 2021
Build number: 11.0.0-1965
Resolved issues
- Real-time Integrity Monitoring sometimes did not match the exact directory specified by a user, but instead matched all paths that started with the base directory. SEG-97758/SF04046718/DSSEG-6634
- When Web Reputation was enabled, the system sometimes crashed. SEG-102756/SF04258834/DSSEG-6740
- During security updates, Application Control sometimes logged Deep Security Agent files as unrecognized software. SEG-100443/SF04154889/DSSEG-6683
Security updates
Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. DSSEG-6439
Highest CVSS: 5.4
Highest severity: Medium
Deep Security Agent - 11.0 update 25
Release date: January 27, 2021
Build number: 11.0.0-1841
Resolved issues
- Anti-Malware real-time scans sometimes did not work for Docker containers. DSSEG-6477
- When Anti-Malware real-time scans were enabled, Rancher Kubernetes pods sometimes couldn't be terminated gracefully. SEG-87824/SF03695639/DSSEG-6455
- Sometimes an SSL connection was not established when SSL inspection was enabled. DSSEG-6406
- Application Control sometimes caused CPU soft lockup. SEG-95760/SF03998809/DSSEG-6544
Security updates
Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases.
Deep Security Agent - 11.0 update 24
Release date: October 19, 2020
Build number: 11.0.0-1690
Enhancements
- Upgraded VMware NetX SDK to support VMware NSX 6.4.8. Note: Deep Security Virtual Appliance 9.5 can not be upgraded to this release because it has reached end of support. DSSEG-5937
Resolved issues
- The dsa_query command didn't display Anti-Malware patterns correctly. DSSEG-6123
- The Deep Security Agent SAP scanner could not detect the MIME type of TTF files. SEG-84373/SF03499770/DSSEG-6053
- When Anti-Malware and Application Control were enabled, stopping the ds_agent service could cause high CPU. SEG-85738/SF03595067/DSSEG-6158
Security updates
Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. DSSEG-5252
Highest CVSS: 7.8
Highest severity: High
Deep Security Agent - 11.0 update 23
Release date: September 2, 2020
Build number: 11.0.1617
Enhancements
- Deep Security verifies your signature on the Deep Security Agent to ensure that the software files have not changed since the time of signing. DSSEG-3787
- You can choose not to send packet data back to the Deep Security Manager by going to Administration > Agents > Data Privacy and selecting No. SF03237033/DSSEG-6018
Resolved issues
- Application Control sometimes blocked applications that should have been allowed as they were created by a trusted updater. SEG-77446/03206632/DSSEG-5915
- After applying rule 1006540, "Enable X-Forwarded-For HTTP Header Logging", Deep Security would extract the X-Forwarded-For header for Intrusion Prevention events correctly. However, a URL intrusion like "Invalid Traversal" would be detected in the HTTP request string before the header was parsed. The Intrusion Prevention engine has been enhanced to search X-Forwarded-For header after the header is parsed. SEG-80178/SF03373044/DSSEG-5942
- The Deep Security Agent network driver crashed. SEG-82544/SF03478737/DSSEG-5945
- Deep Security Agent detected false file change events due to the setuid/setgid formatting. The agent also generated false file attribute changes in /usr/bin following an upgrade caused by the file creation time change. SEG-79507/DSSEG-5929
- Deep Security Manager reported a security update timeout because Deep Security Agent received exceptions at security updates. SEG-82072/03273761/DSSEG-5925
- Real-time Anti-Malware with filesystem hooking enabled did not work on older kernel versions. SEG-82411/SF03471236/DSSEG-5954
- Deep Security Agent sometimes crashed when the "Scan for Integrity" scan was running. SEG-82795/03462751/DSSEG-5971
- Real-time Anti-Malware with filesystem hooking enabled did not work on older kernel versions. DSSEG-5990
- Application Control included script files with the ".cron" extension as part of the allowed inventory. SEG-76680/SF03240341/DSSEG-5686
Deep Security Agent - 11.0 update 22
Release date: July 15, 2020
Build number: 11.0.0-1514
Enhanced platform support
- Ubuntu 20.04 (64-bit)
- Cloud Linux 8 (64-bit)
Enhancements
- Integrity Monitoring detects changes to the "setuid" and "setgid" attributes for Linux and Unix platforms. SEG-78797/DSSEG-5766
- Real-time Integrity Monitoring explicitly matches the directory specified in the base directory. Previously, it matched all paths that started with the base directory. SEG-79112/03301290/DSSEG-5820
- Ceph is now excluded from file system kernel hooking to prevent kernel panic. SEG-75664/SF03131718/DSSEG-5583
- Continued to improve the Account Domain Authentication experience. SEG-73480/SF02989282/DSSEG-5673
Resolved issues
- If you enabled real-time Integrity Monitoring, it would sometimes slow down Account Domain Authentication. SEG-73480/SF02989282/DSSEG-5621
- When a re-transmission packet with new packets was sent, it sometimes produced an "Unsupported SSL Version" Intrusion Prevention event. DSSEG-5878
- When Anti-Malware real-time scans were enabled in Linux, sometimes the system crashed because buffers from procfs were not validated. SEG-80183/SF03384970/DSSEG-5839
- In certain circumstances, Application Control caused the agent to go offline and restart. SEG-74143/SF03119820/DSSEG-5654
- When Application Control was enabled it would sometimes cause the agent to periodically restart. SEG-75985/SF03184883/DSSEG-5845
- Kernel Panic occurred when Web Reputation, Firewall, or Intrusion Prevention were enabled. SEG-80201/SF03332691/DSSEG-5850
- When real-time Integrity Monitoring was enabled with the rule "1002875: Unix Add/Remove Software" applied, the RPM database sometimes locked. SEG-67275/SF02663756/DSSEG-5869
Security updates
Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. DSSEG-5750/SEG-78524/SF03321021
- Updated Nginx to 1.18.0
- CVSS Score: 5.3
- Severity: Medium
Deep Security Agent - 11.0 update 21
Release date: May 13, 2020
Build number: 11.0.0-1388
Enhancement
- Increased the scan engine's URI path length limitation. SEG-61309/DSSEG-5246
Resolved issues
- Anti-Malware sometimes couldn't be applied successfully when an Anti-Malware engine update was performed. DSSEG-5482
- Anti-Malware directory exclusions with wildcards didn't match subdirectories correctly. SEG-74892/SF03131855/DSSEG-5576
- There was an upgrade issue with Deep Security Agent which would sometimes prevent the agent from going online if Integrity Monitoring or Log Inspection were enabled. SEG-75769/SF03196478/DSSEG-5614
- The Anti-Malware engine on Deep Security Virtual Appliance went offline when the signer field in the Census server reply was empty. SEG-73047/SF03065452/DSSEG-5604
Deep Security Agent - 11.0 update 20
Release date: March 18, 2020
Build number: 11.0.0-1302
Resolved issues
- Deep Security Virtual Appliance sometimes went offline. (SEG-53294/01950419/DSSEG-5167)
- Deep Security Agent crashed due to Log Inspection. (SEG-61106/SEG-42752/DSSEG-5226)
Security updates
Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses.
- Upgraded SQLite to 3.30.1. (DSSEG-5104)
Deep Security Agent - 11.0 update 19
Release date: February 11, 2020
Build number: 11.0.0-1236
Resolved issues
- Anti-Malware on-demand scans did not work properly when the root directory was set to "/" in the scan directory inclusion lists. (SEG-66679/02756807/DSSEG-5053)
- Memory leaks occurred in Anti-Malware if file attributes couldn't be retrieved. (SEG-67374/SF02753356/DSSEG-5062)
- The displayed packet header data contained redundant payload data. (SEG-57660/DSSEG-4751)
- When Deep Security Agent scanned large files for viruses, it consumed a large amount of memory. (SEG-48704/SF01572110/DSSEG-3832)
- Deep Security Agent real-time Anti-Malware scans didn't work correctly with Debian 10 kernel 5.4. (DSSEG-5154)
Security Updates
Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses.
- Updated NGINX to 1.16.1 (DSSEG-4598)
For release notes from the long-term support release, see Deep Security Agent - Windows 11.0 readme.
Deep Security Agent - 11.0 update 31
Release date: March 30, 2023
Build number: 11.0.0-2580
This version of the Deep Security Agent requires the installation of Windows updates to support Azure Code Signing (ACS). For more information, see Trend Micro Server and Endpoint Protection Agent Minimum Windows Version Requirements.
Security updates
Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. VRTS-7647/VRTS-7090/DSSEG-7632/DSSEG-7646
Highest CVSS: 7.5
Highest severity: High
Known Issues
Windows environment now require Azure Code Signing for agent installations. Refer to this KB for MS patch information. DSSEG-7791
Deep Security Agent - 11.0 update 30
Release date: June 15, 2022
Build number: 11.0.0-2549
Resolved issues
- With Intrusion Prevention enabled, a packet transmission error caused some system configurations to crash. SEG-136843/DSSEG-7524
Security updates
Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. VRTS-7336/DSSEG-7558/DSSEG-7564
Highest CVSS: 9.8
Highest severity: High
Deep Security Agent - 11.0 update 29
Release date: February 22, 2022
Build number: 11.0.0-2401
Enhancements
- Updated Deep Security Agent to use case sensitive header fields. (HTTP header names in the agent were previously not case sensitive.) DSSEG-6943
Deep Security Agent - 11.0 update 28
Release date: October 26, 2021
Build number: 11.0.0-2256
Resolved issues
- Deep Security Agent sometimes showed package signature errors during an upgrade because of a mismatched Certification Revocation List (CRL). DSSEG-7215
- A plugin version conflict sometimes prevented Deep Security Agent from retrieving KSP (Kernel Support Package) files from the relay. DSSEG-7243
- Deep Security Agent sometimes triggered multiple "Log Inspection Engine Initialized" alerts due to an agent-manager communication issue. SF03968169/SEG-95731/DSSEG-7040
- Deep Security Agent sometimes lost connectivity while trying to establish an SSL connection. SEG-107451/DSSEG-7017
- With Web Reputation enabled, Deep Security Agent caused connectivity issues for some third party applications. SF04072723/SEG-97952/DSSEG-6977
Security updates
Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. DSSEG-7256/DSSEG-7008/DSSEG-7239
Highest CVSS: 9.8
Highest severity: High
Deep Security Agent - 11.0 update 27
Release date: June 16, 2021
Build number: 11.0.0-2061
Enhancements
- Deep Security Agent sometimes showed package signature errors during an upgrade because of a mismatched Certification Revocation List (CRL). DSSEG-6827
Resolved issues
- Deep Security Agent sometimes displayed duplicate "Invalid Flag" Firewall events. SEG-105450/03760440/DSSEG-6829
- Deep Security Agent sometimes crashed when Anti-Malware and Behavior Monitoring modules were both running. SEG-101355/SF04210928/DSSEG-6790
- Deep Security Agent sometimes crashed when Intrusion Prevention was configured for SSL inspection. DSSEG-6912
- Updated Deep Security Agent to improve real-time Integrity Monitoring performance. SEG-102276/SF04205359/DSSEG-6934
Deep Security Agent - 11.0 update 26
Release date: April 08, 2021
Build number: 11.0.0-1965
Resolved issues
- Real-time Integrity Monitoring sometimes did not match the exact directory specified by a user, but instead matched all paths that started with the base directory. SEG-97758/SF04046718/DSSEG-6634
- During security updates, Application Control sometimes logged Deep Security Agent files as unrecognized software. SEG-100443/SF04154889/DSSEG-6683
Security updates
Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. DSSEG-6439
Highest CVSS: 5.4
Highest severity: Medium
Deep Security Agent - 11.0 update 25
Release date: January 27, 2021
Build number: 11.0.0-1841
Enhanced platform support
- Windows 10 20H2
Resolved issues
- Installation or uninstallation of the Deep Security network driver on Windows Server 2019 caused an interruption to current connections. SEG-89231/SF03734995/DSSEG-6286
- Sometimes an SSL connection was not established when SSL inspection was enabled. DSSEG-6406
Security updates
Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases.
Deep Security Agent - 11.0 update 24
Release date: October 19, 2020
Build number: 11.0.0-1690
Security updates
Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. DSSEG-5252
Highest CVSS: 7.8
Highest severity: High
Deep Security Agent - 11.0 update 23
Release date: September 2, 2020
Build number: 11.0.1617
Enhanced platform support
- Windows 10 20H1 v2004 (64 and 86)
- Windows Server Core 20H1 v2004
Enhancements
- Deep Security verifies your signature on the Deep Security Agent to ensure that the software files have not changed since the time of signing. DSSEG-3787
- You can choose not to send packet data back to the Deep Security Manager by going to Administration > Agents > Data Privacy and selecting No. SF03237033/DSSEG-6018
Resolved issues
- Application Control sometimes blocked applications that should have been allowed as they were created by a trusted updater. SEG-77446/03206632/DSSEG-5915
- After applying rule 1006540, "Enable X-Forwarded-For HTTP Header Logging", Deep Security would extract the X-Forwarded-For header for Intrusion Prevention events correctly. However, a URL intrusion like "Invalid Traversal" would be detected in the HTTP request string before the header was parsed. The Intrusion Prevention engine has been enhanced to search X-Forwarded-For header after the header is parsed. SEG-80178/SF03373044/DSSEG-5942
- The Deep Security Agent network driver crashed. SEG-82544/SF03478737/DSSEG-5945
- Deep Security Agent detected false file change events due to the setuid/setgid formatting. The agent also generated false file attribute changes in /usr/bin following an upgrade caused by the file creation time change. SEG-79507/DSSEG-5929
- Deep Security Manager reported a security update timeout because Deep Security Agent received exceptions at security updates. SEG-82072/03273761/DSSEG-5925
- Deep Security Agent sometimes crashed when the "Scan for Integrity" scan was running. SEG-82795/03462751/DSSEG-5971
- Application Control included script files with the ".cron" extension as part of the allowed inventory. SEG-76680/SF03240341/DSSEG-5686
Deep Security Agent - 11.0 update 22
Release date: July 15, 2020
Build number: 11.0.0-1514
Enhancements
- Continued to improve the Account Domain Authentication experience. SEG-73480/SF02989282/DSSEG-5673
- Real-time Integrity Monitoring explicitly matches the directory specified in the base directory. Previously, it matched all paths that started with the base directory. SEG-79112/03301290/DSSEG-5820
Resolved issues
- When a re-transmission packet with new packets was sent, it sometimes produced an "Unsupported SSL Version" Intrusion Prevention event. DSSEG-5878
- In certain circumstances, Application Control caused the agent to go offline and restart. SEG-74143/SF03119820/DSSEG-5654
- A VM that was protected by Deep Security Virtual Appliance was shown as "Unknown/Unreachable" in Deep Security Notifier. SEG-73367/SF02900880/DSSEG-5724
- Agent self-protection did not protect Deep Security Notifier. SEG-76015/SF03168155/DSSEG-5761
- When Integrity Monitoring was enabled, the owner of a file was incorrectly changed to a user that did not exist. DSSEG-5730
Security updates
Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. DSSEG-5750/SEG-78524/SF03321021
- Updated Nginx to 1.18.0
- CVSS Score: 5.3
- Severity: Medium
Deep Security Agent - 11.0 update 21
Release date: May 13, 2020
Build number: 11.0.0-1388
Resolved issues
- When Anti-Malware was enabled, the blue screen of death sometimes occurred. SEG-75366/SF03181392/DSSEG-5544
- The Anti-Malware engine on Deep Security Virtual Appliance went offline when the signer field in the Census server reply was empty. SEG-73047/SF03065452/DSSEG-5604
- The Anti-Malware driver sometimes caused the RDP process to hang. If you're running a modern OS (newer than Windows 7, for example), reboot your system after the Anti-Malware driver has been applied. SEG-72751/SF03060355/DSSEG-5391
Deep Security Agent - 11.0 update 20
Release date: March 18, 2020
Build number: 11.0.0-1302
Resolved issues
- Deep Security Agent crashed due to Log Inspection. (SEG-61106/SEG-42752/DSSEG-5226)
- For certain configurations, an agent failed to locate the Azure fabric server and therefore was unable to rehome properly. (DSSEG-5284)
- Deep Security Agent restarted unexpectedly because of the way Log Inspection was accessing the SQLite database. (SEG-70313/02588698/DSSEG-5296)
Security updates
Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses.
- Upgraded SQLite to 3.30.1. (DSSEG-5104)
Deep Security Agent - 11.0 update 19
Release date: February 11, 2020
Build number: 11.0.0-1236
Enhancements
- Added Application Control Support for Windows 2019. (SEG-52334/DSSEG-4389)
- Added support for Windows 10 19H2 version 1909. (DSSEG-4786)
Resolved issues
- The displayed packet header data contained redundant payload data. (SEG-57660/DSSEG-4751)
- When Deep Security Agent scanned large files for viruses, it consumed a large amount of memory. (SEG-48704/SF01572110/DSSEG-3832)
- The server hanged intermittently and utilized very high memory. (SEG-59668/SF02351375/DSSEG-5055)
Security Updates
Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses.
- Updated NGINX to 1.16.1 (DSSEG-4598)
Deep Security Agent - 11.0 update 31
Release date: March 30, 2023
Build number: 11.0.0-2580
Security updates
Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. VRTS-7647/VRTS-7090/DSSEG-7632/DSSEG-7646
Highest CVSS: 7.5
Highest severity: High
Deep Security Agent - 11.0 update 30
Release date: June 15, 2022
Build number: 11.0.0-2549
Resolved issues
- With Intrusion Prevention enabled, a packet transmission error caused some system configurations to crash. SEG-136843/DSSEG-7524
Security updates
Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. VRTS-7336/DSSEG-7558/DSSEG-7564
Highest CVSS: 9.8
Highest severity: High
Deep Security Agent - 11.0 update 29
Release date: February 22, 2022
Build number: 11.0.0-2401
Enhancements
- Updated Deep Security Agent to use case sensitive header fields. (HTTP header names in the agent were previously not case sensitive.) DSSEG-6943
Deep Security Agent - 11.0 update 28
Release date: October 26, 2021
Build number: 11.0.0-2256
Resolved issues
- Deep Security Agent sometimes showed package signature errors during an upgrade because of a mismatched Certification Revocation List (CRL). DSSEG-7215
- Deep Security Agent sometimes triggered multiple "Log Inspection Engine Initialized" alerts due to an agent-manager communication issue. SF03968169/SEG-95731/DSSEG-7040
- Deep Security Agent sometimes lost connectivity while trying to establish an SSL connection. SEG-107451/DSSEG-7017
- With Web Reputation enabled, Deep Security Agent caused connectivity issues for some third party applications. SF04072723/SEG-97952/DSSEG-6977
Security updates
Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. DSSEG-7008/DSSEG-7239
Highest CVSS: 9.8
Highest severity: High
Deep Security Agent - 11.0 update 27
Release date: June 16, 2021
Build number: 11.0.0-2061
Enhancements
- Updated Deep Security Agent (version 11.0.0-2061+) to add support for Entrust Root Certificate Authority (G2) certificates. Non-G2 security certificates will expire on 2022/07/09. After that time, only agents that have been upgraded to version 11.0.0-2061 or higher will have the latest Anti-Malware Smart Scan protection. DSSEG-6905
- Deep Security Agent sometimes showed package signature errors during an upgrade because of a mismatched Certification Revocation List (CRL). DSSEG-6827
Resolved issues
- Deep Security Agent sometimes crashed when Intrusion Prevention was configured for SSL inspection. DSSEG-6912
- Updated Deep Security Agent to improve real-time Integrity Monitoring performance. SEG-102276/SF04205359/DSSEG-6934
Deep Security Agent - 11.0 update 26
Release date: April 08, 2021
Build number: 11.0.0-1965
Resolved issues
- Real-time Integrity Monitoring sometimes did not match the exact directory specified by a user, but instead matched all paths that started with the base directory. SEG-97758/SF04046718/DSSEG-6634
- During security updates, Application Control sometimes logged Deep Security Agent files as unrecognized software. SEG-100443/SF04154889/DSSEG-6683
Security updates
Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. DSSEG-6439
Highest CVSS: 5.4
Highest severity: Medium
Deep Security Agent - 11.0 update 25
Release date: January 27, 2021
Build number: 11.0.0-1841
Security updates
Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases.
Deep Security Agent - 11.0 update 24
Release date: October 19, 2020
Build number: 11.0.0-1690
Resolved issues
- When using Deep Security Agent on Solaris, the port scanning feature of the Integrity Monitoring module did not work because the agent did not have access to information on the User ID under which a given port was opened. This prevented storage of any listening port information. The port scanning feature on Solaris agents has been modified to store the string "n/a" for the User ID. This allows the remaining port information to be stored and used in the port scanning function. However, exclusions and inclusions based on User ID still do not function correctly because this information is not available. DSSEG-6145
Security updates
Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. DSSEG-5252
Highest CVSS: 7.8
Highest severity: High
Deep Security Agent - 11.0 update 23
Release date: September 2, 2020
Build number: 11.0.1617
Enhancements
- Deep Security verifies your signature on the Deep Security Agent to ensure that the software files have not changed since the time of signing. DSSEG-3787
- You can choose not to send packet data back to the Deep Security Manager by going to Administration > Agents > Data Privacy and selecting No. SF03237033/DSSEG-6018
Resolved issues
- Application Control sometimes blocked applications that should have been allowed as they were created by a trusted updater. SEG-77446/03206632/DSSEG-5915
- After applying rule 1006540, "Enable X-Forwarded-For HTTP Header Logging", Deep Security would extract the X-Forwarded-For header for Intrusion Prevention events correctly. However, a URL intrusion like "Invalid Traversal" would be detected in the HTTP request string before the header was parsed. The Intrusion Prevention engine has been enhanced to search X-Forwarded-For header after the header is parsed. SEG-80178/SF03373044/DSSEG-5942
- The Deep Security Agent network driver crashed. SEG-82544/SF03478737/DSSEG-5945
- Deep Security Agent detected false file change events due to the setuid/setgid formatting. The agent also generated false file attribute changes in /usr/bin following an upgrade caused by the file creation time change. SEG-79507/DSSEG-5929
- Deep Security Manager reported a security update timeout because Deep Security Agent received exceptions at security updates. SEG-82072/03273761/DSSEG-5925
- Deep Security Agent sometimes crashed when the "Scan for Integrity" scan was running. SEG-82795/03462751/DSSEG-5971
- Application Control included script files with the ".cron" extension as part of the allowed inventory. SEG-76680/SF03240341/DSSEG-5686
Deep Security Agent - 11.0 update 22
Release date: July 15, 2020
Build number: 11.0.0-1514
Enhancements
- Continued to improve the Account Domain Authentication experience. SEG-73480/SF02989282/DSSEG-5673
- Integrity Monitoring detects changes to the "setuid" and "setgid" attributes for Linux and Unix platforms. SEG-78797/DSSEG-5766
Resolved issues
- In certain circumstances, Application Control caused the agent to go offline and restart. SEG-74143/SF03119820/DSSEG-5654
Security updates
Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. DSSEG-5750/SEG-78524/SF03321021
- Updated Nginx to 1.18.0
- CVSS Score: 5.3
- Severity: Medium
Deep Security Agent - 11.0 update 21
Release date: May 13, 2020
Build number: 11.0.0-1388
Resolved issues
- Anti-Malware directory exclusions with wildcards didn't match subdirectories correctly. SEG-74892/SF03131855/DSSEG-5576
- The Anti-Malware engine on Deep Security Virtual Appliance went offline when the signer field in the Census server reply was empty. SEG-73047/SF03065452/DSSEG-5604
Deep Security Agent - 11.0 update 20
Release date: March 18, 2020
Build number: 11.0.0-1302
Resolved issues
- Deep Security Agent crashed due to Log Inspection. (SEG-61106/SEG-42752/DSSEG-5226)
Security updates
Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses.
- Upgraded SQLite to 3.30.1. (DSSEG-5104)
Deep Security Agent - 11.0 update 19
Release date: February 11, 2020
Build number: 11.0.0-1236
Resolved issues
- Memory leaks occurred in Anti-Malware if file attributes couldn't be retrieved. (SEG-67374/SF02753356/DSSEG-5062)
- The displayed packet header data contained redundant payload data. (SEG-57660/DSSEG-4751)
- When Deep Security Agent scanned large files for viruses, it consumed a large amount of memory. (SEG-48704/SF01572110/DSSEG-3832)