Deep Security 11 has reached end of support. Use the version selector (above) to see more recent versions of the Help Center.

What's new in Deep Security Agent?

For release notes from previous years, see Archived Deep Security Agent release notes.

For release notes from the long-term support release, see Deep Security Agent - Linux 11.0 readme.

Deep Security Agent - 11.0 update 31

Release date: March 30, 2023

Build number: 11.0.0-2580

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. VRTS-7647/VRTS-7090/DSSEG-7632/DSSEG-7646

Highest CVSS: 7.5

Highest severity: High

Deep Security Agent - 11.0 update 30

Release date: June 15, 2022

Build number: 11.0.0-2549

Resolved issues

  • With Intrusion Prevention enabled, a packet transmission error caused some system configurations to crash. SEG-136843/DSSEG-7524

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. VRTS-7336/DSSEG-7558/DSSEG-7564

Highest CVSS: 9.8

Highest severity: High

Deep Security Agent - 11.0 update 29

Release date: February 22, 2022

Build number: 11.0.0-2401

Enhancements

  • Updated Deep Security Agent to use case sensitive header fields. (HTTP header names in the agent were previously not case sensitive.) DSSEG-6943

Resolved issues

  • With Anti-Malware real-time scan enabled, Deep Security Agent sometime performed scan on unchanged files. DSSEG-7312
  • The Anti-Malware kernel module was incorrectly triggering debug log system messages. SEG-132285/05101268/DSSEG-7452

Deep Security Agent - 11.0 update 28

Release date: October 26, 2021

Build number: 11.0.0-2256

Enhancements

  • Updated Deep Security Agent to prevent agents upgraded from version 10.0 to 11.0 from losing their "NIC bypass" configuration (used for Bypassing a network interface).

Resolved issues

  • Deep Security Agent sometimes showed package signature errors during an upgrade because of a mismatched Certification Revocation List (CRL). DSSEG-7215
  • A plugin version conflict sometimes prevented Deep Security Agent from retrieving KSP (Kernel Support Package) files from the relay. DSSEG-7243
  • Deep Security Agent sometimes crashed when it could not connect to Deep Security Manager. SEG-115702/DSSEG-7053
  • Deep Security Agent sometimes triggered multiple "Log Inspection Engine Initialized" alerts due to an agent-manager communication issue. SF03968169/SEG-95731/DSSEG-7040
  • Deep Security Agent upgrade (Administration > Updates > Software) sometimes failed if a previous (RPM package) upgrade was triggered using console commands. SF04586071/SEG-113583/DSSEG-7030
  • Deep Security Agent sometimes lost connectivity while trying to establish an SSL connection. SEG-107451/DSSEG-7017
  • With Web Reputation enabled, Deep Security Agent caused connectivity issues for some third party applications. SF04072723/SEG-97952/DSSEG-6977

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. DSSEG-7008/DSSEG-7239/DSSEG-7259

Highest CVSS: 9.8

Highest severity: High

Deep Security Agent - 11.0 update 27

Release date: June 16, 2021

Build number: 11.0.0-2061

Enhancements

  • Updated Deep Security Agent (version 11.0.0-2061+) to add support for Entrust Root Certificate Authority (G2) certificates. Non-G2 security certificates will expire on 2022/07/09. After that time, only agents that have been upgraded to version 11.0.0-2061 or higher will have the latest Anti-Malware Smart Scan protection. DSSEG-6905
  • Updated Deep Security Agent's Anti-Malware default configuration to monitor file access from the local host only, improving compatibility for some file systems. DSSEG-6884
  • Deep Security Agent sometimes showed package signature errors during an upgrade because of a mismatched Certification Revocation List (CRL). DSSEG-6827

Resolved issues

  • Deep Security Agent Anti-Malware Real-Time Scan was preventing some third party applications from running. SEG-104512/SF04245456/DSSEG-6895
  • Deep Security Agent sometimes crashed when Intrusion Prevention was configured for SSL inspection. DSSEG-6912
  • Updated Deep Security Agent to improve real-time Integrity Monitoring performance. SEG-102276/SF04205359/DSSEG-6934

Deep Security Agent - 11.0 update 26

Release date: April 08, 2021

Build number: 11.0.0-1965

Resolved issues

  • Real-time Integrity Monitoring sometimes did not match the exact directory specified by a user, but instead matched all paths that started with the base directory. SEG-97758/SF04046718/DSSEG-6634
  • When Web Reputation was enabled, the system sometimes crashed. SEG-102756/SF04258834/DSSEG-6740
  • During security updates, Application Control sometimes logged Deep Security Agent files as unrecognized software. SEG-100443/SF04154889/DSSEG-6683

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. DSSEG-6439

Highest CVSS: 5.4

Highest severity: Medium

Deep Security Agent - 11.0 update 25

Release date: January 27, 2021

Build number: 11.0.0-1841

Resolved issues

  • Anti-Malware real-time scans sometimes did not work for Docker containers. DSSEG-6477
  • When Anti-Malware real-time scans were enabled, Rancher Kubernetes pods sometimes couldn't be terminated gracefully. SEG-87824/SF03695639/DSSEG-6455
  • Sometimes an SSL connection was not established when SSL inspection was enabled. DSSEG-6406
  • Application Control sometimes caused CPU soft lockup. SEG-95760/SF03998809/DSSEG-6544

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases.

Deep Security Agent - 11.0 update 24

Release date: October 19, 2020

Build number: 11.0.0-1690

Enhancements

  • Upgraded VMware NetX SDK to support VMware NSX 6.4.8. Note: Deep Security Virtual Appliance 9.5 can not be upgraded to this release because it has reached end of support. DSSEG-5937

Resolved issues

  • The dsa_query command didn't display Anti-Malware patterns correctly. DSSEG-6123
  • The Deep Security Agent SAP scanner could not detect the MIME type of TTF files. SEG-84373/SF03499770/DSSEG-6053
  • When Anti-Malware and Application Control were enabled, stopping the ds_agent service could cause high CPU. SEG-85738/SF03595067/DSSEG-6158

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. DSSEG-5252

Highest CVSS: 7.8

Highest severity: High

Deep Security Agent - 11.0 update 23

Release date: September 2, 2020

Build number: 11.0.1617

Enhancements

  • Deep Security verifies your signature on the Deep Security Agent to ensure that the software files have not changed since the time of signing. DSSEG-3787
  • You can choose not to send packet data back to the Deep Security Manager by going to Administration > Agents > Data Privacy and selecting No. SF03237033/DSSEG-6018

Resolved issues

  • Application Control sometimes blocked applications that should have been allowed as they were created by a trusted updater. SEG-77446/03206632/DSSEG-5915
  • After applying rule 1006540, "Enable X-Forwarded-For HTTP Header Logging", Deep Security would extract the X-Forwarded-For header for Intrusion Prevention events correctly. However, a URL intrusion like "Invalid Traversal" would be detected in the HTTP request string before the header was parsed. The Intrusion Prevention engine has been enhanced to search X-Forwarded-For header after the header is parsed. SEG-80178/SF03373044/DSSEG-5942
  • The Deep Security Agent network driver crashed. SEG-82544/SF03478737/DSSEG-5945
  • Deep Security Agent detected false file change events due to the setuid/setgid formatting. The agent also generated false file attribute changes in /usr/bin following an upgrade caused by the file creation time change. SEG-79507/DSSEG-5929
  • Deep Security Manager reported a security update timeout because Deep Security Agent received exceptions at security updates. SEG-82072/03273761/DSSEG-5925
  • Real-time Anti-Malware with filesystem hooking enabled did not work on older kernel versions. SEG-82411/SF03471236/DSSEG-5954
  • Deep Security Agent sometimes crashed when the "Scan for Integrity" scan was running. SEG-82795/03462751/DSSEG-5971
  • Real-time Anti-Malware with filesystem hooking enabled did not work on older kernel versions. DSSEG-5990
  • Application Control included script files with the ".cron" extension as part of the allowed inventory. SEG-76680/SF03240341/DSSEG-5686

Deep Security Agent - 11.0 update 22

Release date: July 15, 2020

Build number: 11.0.0-1514

Enhanced platform support

  • Ubuntu 20.04 (64-bit)
  • Cloud Linux 8 (64-bit)

Enhancements

  • Integrity Monitoring detects changes to the "setuid" and "setgid" attributes for Linux and Unix platforms. SEG-78797/DSSEG-5766
  • Real-time Integrity Monitoring explicitly matches the directory specified in the base directory. Previously, it matched all paths that started with the base directory. SEG-79112/03301290/DSSEG-5820
  • Ceph is now excluded from file system kernel hooking to prevent kernel panic. SEG-75664/SF03131718/DSSEG-5583
  • Continued to improve the Account Domain Authentication experience. SEG-73480/SF02989282/DSSEG-5673

Resolved issues

  • If you enabled real-time Integrity Monitoring, it would sometimes slow down Account Domain Authentication. SEG-73480/SF02989282/DSSEG-5621
  • When a re-transmission packet with new packets was sent, it sometimes produced an "Unsupported SSL Version" Intrusion Prevention event. DSSEG-5878
  • When Anti-Malware real-time scans were enabled in Linux, sometimes the system crashed because buffers from procfs were not validated. SEG-80183/SF03384970/DSSEG-5839
  • In certain circumstances, Application Control caused the agent to go offline and restart. SEG-74143/SF03119820/DSSEG-5654
  • When Application Control was enabled it would sometimes cause the agent to periodically restart. SEG-75985/SF03184883/DSSEG-5845
  • Kernel Panic occurred when Web Reputation, Firewall, or Intrusion Prevention were enabled. SEG-80201/SF03332691/DSSEG-5850
  • When real-time Integrity Monitoring was enabled with the rule "1002875: Unix Add/Remove Software" applied, the RPM database sometimes locked. SEG-67275/SF02663756/DSSEG-5869

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. DSSEG-5750/SEG-78524/SF03321021

  • Updated Nginx to 1.18.0
  • CVSS Score: 5.3
  • Severity: Medium

Deep Security Agent - 11.0 update 21

Release date: May 13, 2020

Build number: 11.0.0-1388

Enhancement

  • Increased the scan engine's URI path length limitation. SEG-61309/DSSEG-5246

Resolved issues

  • Anti-Malware sometimes couldn't be applied successfully when an Anti-Malware engine update was performed. DSSEG-5482
  • Anti-Malware directory exclusions with wildcards didn't match subdirectories correctly. SEG-74892/SF03131855/DSSEG-5576
  • There was an upgrade issue with Deep Security Agent which would sometimes prevent the agent from going online if Integrity Monitoring or Log Inspection were enabled. SEG-75769/SF03196478/DSSEG-5614
  • The Anti-Malware engine on Deep Security Virtual Appliance went offline when the signer field in the Census server reply was empty. SEG-73047/SF03065452/DSSEG-5604

Deep Security Agent - 11.0 update 20

Release date: March 18, 2020

Build number: 11.0.0-1302

Resolved issues

  • Deep Security Virtual Appliance sometimes went offline. (SEG-53294/01950419/DSSEG-5167)
  • Deep Security Agent crashed due to Log Inspection. (SEG-61106/SEG-42752/DSSEG-5226)

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses.

  • Upgraded SQLite to 3.30.1. (DSSEG-5104)

Deep Security Agent - 11.0 update 19

Release date: February 11, 2020

Build number: 11.0.0-1236

Resolved issues

  • Anti-Malware on-demand scans did not work properly when the root directory was set to "/" in the scan directory inclusion lists. (SEG-66679/02756807/DSSEG-5053)
  • Memory leaks occurred in Anti-Malware if file attributes couldn't be retrieved. (SEG-67374/SF02753356/DSSEG-5062)
  • The displayed packet header data contained redundant payload data. (SEG-57660/DSSEG-4751)
  • When Deep Security Agent scanned large files for viruses, it consumed a large amount of memory. (SEG-48704/SF01572110/DSSEG-3832)
  • Deep Security Agent real-time Anti-Malware scans didn't work correctly with Debian 10 kernel 5.4. (DSSEG-5154)

Security Updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses.

  • Updated NGINX to 1.16.1 (DSSEG-4598)

For release notes from the long-term support release, see Deep Security Agent - Windows 11.0 readme.

Deep Security Agent - 11.0 update 31

Release date: March 30, 2023

Build number: 11.0.0-2580

This version of the Deep Security Agent requires the installation of Windows updates to support Azure Code Signing (ACS). For more information, see Trend Micro Server and Endpoint Protection Agent Minimum Windows Version Requirements.

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. VRTS-7647/VRTS-7090/DSSEG-7632/DSSEG-7646

Highest CVSS: 7.5

Highest severity: High

Known Issues

Windows environment now require Azure Code Signing for agent installations. Refer to this KB for MS patch information. DSSEG-7791

Deep Security Agent - 11.0 update 30

Release date: June 15, 2022

Build number: 11.0.0-2549

Resolved issues

  • With Intrusion Prevention enabled, a packet transmission error caused some system configurations to crash. SEG-136843/DSSEG-7524

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. VRTS-7336/DSSEG-7558/DSSEG-7564

Highest CVSS: 9.8

Highest severity: High

Deep Security Agent - 11.0 update 29

Release date: February 22, 2022

Build number: 11.0.0-2401

Enhancements

  • Updated Deep Security Agent to use case sensitive header fields. (HTTP header names in the agent were previously not case sensitive.) DSSEG-6943

Deep Security Agent - 11.0 update 28

Release date: October 26, 2021

Build number: 11.0.0-2256

Resolved issues

  • Deep Security Agent sometimes showed package signature errors during an upgrade because of a mismatched Certification Revocation List (CRL). DSSEG-7215
  • A plugin version conflict sometimes prevented Deep Security Agent from retrieving KSP (Kernel Support Package) files from the relay. DSSEG-7243
  • Deep Security Agent sometimes triggered multiple "Log Inspection Engine Initialized" alerts due to an agent-manager communication issue. SF03968169/SEG-95731/DSSEG-7040
  • Deep Security Agent sometimes lost connectivity while trying to establish an SSL connection. SEG-107451/DSSEG-7017
  • With Web Reputation enabled, Deep Security Agent caused connectivity issues for some third party applications. SF04072723/SEG-97952/DSSEG-6977

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. DSSEG-7256/DSSEG-7008/DSSEG-7239

Highest CVSS: 9.8

Highest severity: High

Deep Security Agent - 11.0 update 27

Release date: June 16, 2021

Build number: 11.0.0-2061

Enhancements

  • Deep Security Agent sometimes showed package signature errors during an upgrade because of a mismatched Certification Revocation List (CRL). DSSEG-6827

Resolved issues

  • Deep Security Agent sometimes displayed duplicate "Invalid Flag" Firewall events. SEG-105450/03760440/DSSEG-6829
  • Deep Security Agent sometimes crashed when Anti-Malware and Behavior Monitoring modules were both running. SEG-101355/SF04210928/DSSEG-6790
  • Deep Security Agent sometimes crashed when Intrusion Prevention was configured for SSL inspection. DSSEG-6912
  • Updated Deep Security Agent to improve real-time Integrity Monitoring performance. SEG-102276/SF04205359/DSSEG-6934

Deep Security Agent - 11.0 update 26

Release date: April 08, 2021

Build number: 11.0.0-1965

Resolved issues

  • Real-time Integrity Monitoring sometimes did not match the exact directory specified by a user, but instead matched all paths that started with the base directory. SEG-97758/SF04046718/DSSEG-6634
  • During security updates, Application Control sometimes logged Deep Security Agent files as unrecognized software. SEG-100443/SF04154889/DSSEG-6683

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. DSSEG-6439

Highest CVSS: 5.4

Highest severity: Medium

Deep Security Agent - 11.0 update 25

Release date: January 27, 2021

Build number: 11.0.0-1841

Enhanced platform support

  • Windows 10 20H2

Resolved issues

  • Installation or uninstallation of the Deep Security network driver on Windows Server 2019 caused an interruption to current connections. SEG-89231/SF03734995/DSSEG-6286
  • Sometimes an SSL connection was not established when SSL inspection was enabled. DSSEG-6406

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases.

Deep Security Agent - 11.0 update 24

Release date: October 19, 2020

Build number: 11.0.0-1690

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. DSSEG-5252

Highest CVSS: 7.8

Highest severity: High

Deep Security Agent - 11.0 update 23

Release date: September 2, 2020

Build number: 11.0.1617

Enhanced platform support

  • Windows 10 20H1 v2004 (64 and 86)
  • Windows Server Core 20H1 v2004

Enhancements

  • Deep Security verifies your signature on the Deep Security Agent to ensure that the software files have not changed since the time of signing. DSSEG-3787
  • You can choose not to send packet data back to the Deep Security Manager by going to Administration > Agents > Data Privacy and selecting No. SF03237033/DSSEG-6018

Resolved issues

  • Application Control sometimes blocked applications that should have been allowed as they were created by a trusted updater. SEG-77446/03206632/DSSEG-5915
  • After applying rule 1006540, "Enable X-Forwarded-For HTTP Header Logging", Deep Security would extract the X-Forwarded-For header for Intrusion Prevention events correctly. However, a URL intrusion like "Invalid Traversal" would be detected in the HTTP request string before the header was parsed. The Intrusion Prevention engine has been enhanced to search X-Forwarded-For header after the header is parsed. SEG-80178/SF03373044/DSSEG-5942
  • The Deep Security Agent network driver crashed. SEG-82544/SF03478737/DSSEG-5945
  • Deep Security Agent detected false file change events due to the setuid/setgid formatting. The agent also generated false file attribute changes in /usr/bin following an upgrade caused by the file creation time change. SEG-79507/DSSEG-5929
  • Deep Security Manager reported a security update timeout because Deep Security Agent received exceptions at security updates. SEG-82072/03273761/DSSEG-5925
  • Deep Security Agent sometimes crashed when the "Scan for Integrity" scan was running. SEG-82795/03462751/DSSEG-5971
  • Application Control included script files with the ".cron" extension as part of the allowed inventory. SEG-76680/SF03240341/DSSEG-5686

Deep Security Agent - 11.0 update 22

Release date: July 15, 2020

Build number: 11.0.0-1514

Enhancements

  • Continued to improve the Account Domain Authentication experience. SEG-73480/SF02989282/DSSEG-5673
  • Real-time Integrity Monitoring explicitly matches the directory specified in the base directory. Previously, it matched all paths that started with the base directory. SEG-79112/03301290/DSSEG-5820

Resolved issues

  • When a re-transmission packet with new packets was sent, it sometimes produced an "Unsupported SSL Version" Intrusion Prevention event. DSSEG-5878
  • In certain circumstances, Application Control caused the agent to go offline and restart. SEG-74143/SF03119820/DSSEG-5654
  • A VM that was protected by Deep Security Virtual Appliance was shown as "Unknown/Unreachable" in Deep Security Notifier. SEG-73367/SF02900880/DSSEG-5724
  • Agent self-protection did not protect Deep Security Notifier. SEG-76015/SF03168155/DSSEG-5761
  • When Integrity Monitoring was enabled, the owner of a file was incorrectly changed to a user that did not exist. DSSEG-5730

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. DSSEG-5750/SEG-78524/SF03321021

  • Updated Nginx to 1.18.0
  • CVSS Score: 5.3
  • Severity: Medium

Deep Security Agent - 11.0 update 21

Release date: May 13, 2020

Build number: 11.0.0-1388

Resolved issues

  • When Anti-Malware was enabled, the blue screen of death sometimes occurred. SEG-75366/SF03181392/DSSEG-5544
  • The Anti-Malware engine on Deep Security Virtual Appliance went offline when the signer field in the Census server reply was empty. SEG-73047/SF03065452/DSSEG-5604
  • The Anti-Malware driver sometimes caused the RDP process to hang. If you're running a modern OS (newer than Windows 7, for example), reboot your system after the Anti-Malware driver has been applied. SEG-72751/SF03060355/DSSEG-5391

Deep Security Agent - 11.0 update 20

Release date: March 18, 2020

Build number: 11.0.0-1302

Resolved issues

  • Deep Security Agent crashed due to Log Inspection. (SEG-61106/SEG-42752/DSSEG-5226)
  • For certain configurations, an agent failed to locate the Azure fabric server and therefore was unable to rehome properly. (DSSEG-5284)
  • Deep Security Agent restarted unexpectedly because of the way Log Inspection was accessing the SQLite database. (SEG-70313/02588698/DSSEG-5296)

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses.

  • Upgraded SQLite to 3.30.1. (DSSEG-5104)

Deep Security Agent - 11.0 update 19

Release date: February 11, 2020

Build number: 11.0.0-1236

Enhancements

  • Added Application Control Support for Windows 2019. (SEG-52334/DSSEG-4389)
  • Added support for Windows 10 19H2 version 1909. (DSSEG-4786)

Resolved issues

  • The displayed packet header data contained redundant payload data. (SEG-57660/DSSEG-4751)
  • When Deep Security Agent scanned large files for viruses, it consumed a large amount of memory. (SEG-48704/SF01572110/DSSEG-3832)
  • The server hanged intermittently and utilized very high memory. (SEG-59668/SF02351375/DSSEG-5055)

Security Updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses.

  • Updated NGINX to 1.16.1 (DSSEG-4598)

Deep Security Agent - 11.0 update 31

Release date: March 30, 2023

Build number: 11.0.0-2580

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. VRTS-7647/VRTS-7090/DSSEG-7632/DSSEG-7646

Highest CVSS: 7.5

Highest severity: High

Deep Security Agent - 11.0 update 30

Release date: June 15, 2022

Build number: 11.0.0-2549

Resolved issues

  • With Intrusion Prevention enabled, a packet transmission error caused some system configurations to crash. SEG-136843/DSSEG-7524

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. VRTS-7336/DSSEG-7558/DSSEG-7564

Highest CVSS: 9.8

Highest severity: High

Deep Security Agent - 11.0 update 29

Release date: February 22, 2022

Build number: 11.0.0-2401

Enhancements

  • Updated Deep Security Agent to use case sensitive header fields. (HTTP header names in the agent were previously not case sensitive.) DSSEG-6943

Deep Security Agent - 11.0 update 28

Release date: October 26, 2021

Build number: 11.0.0-2256

Resolved issues

  • Deep Security Agent sometimes showed package signature errors during an upgrade because of a mismatched Certification Revocation List (CRL). DSSEG-7215
  • Deep Security Agent sometimes triggered multiple "Log Inspection Engine Initialized" alerts due to an agent-manager communication issue. SF03968169/SEG-95731/DSSEG-7040
  • Deep Security Agent sometimes lost connectivity while trying to establish an SSL connection. SEG-107451/DSSEG-7017
  • With Web Reputation enabled, Deep Security Agent caused connectivity issues for some third party applications. SF04072723/SEG-97952/DSSEG-6977

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. DSSEG-7008/DSSEG-7239

Highest CVSS: 9.8

Highest severity: High

Deep Security Agent - 11.0 update 27

Release date: June 16, 2021

Build number: 11.0.0-2061

Enhancements

  • Updated Deep Security Agent (version 11.0.0-2061+) to add support for Entrust Root Certificate Authority (G2) certificates. Non-G2 security certificates will expire on 2022/07/09. After that time, only agents that have been upgraded to version 11.0.0-2061 or higher will have the latest Anti-Malware Smart Scan protection. DSSEG-6905
  • Deep Security Agent sometimes showed package signature errors during an upgrade because of a mismatched Certification Revocation List (CRL). DSSEG-6827

Resolved issues

  • Deep Security Agent sometimes crashed when Intrusion Prevention was configured for SSL inspection. DSSEG-6912
  • Updated Deep Security Agent to improve real-time Integrity Monitoring performance. SEG-102276/SF04205359/DSSEG-6934

Deep Security Agent - 11.0 update 26

Release date: April 08, 2021

Build number: 11.0.0-1965

Resolved issues

  • Real-time Integrity Monitoring sometimes did not match the exact directory specified by a user, but instead matched all paths that started with the base directory. SEG-97758/SF04046718/DSSEG-6634
  • During security updates, Application Control sometimes logged Deep Security Agent files as unrecognized software. SEG-100443/SF04154889/DSSEG-6683

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. DSSEG-6439

Highest CVSS: 5.4

Highest severity: Medium

Deep Security Agent - 11.0 update 25

Release date: January 27, 2021

Build number: 11.0.0-1841

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases.

Deep Security Agent - 11.0 update 24

Release date: October 19, 2020

Build number: 11.0.0-1690

Resolved issues

  • When using Deep Security Agent on Solaris, the port scanning feature of the Integrity Monitoring module did not work because the agent did not have access to information on the User ID under which a given port was opened. This prevented storage of any listening port information. The port scanning feature on Solaris agents has been modified to store the string "n/a" for the User ID. This allows the remaining port information to be stored and used in the port scanning function. However, exclusions and inclusions based on User ID still do not function correctly because this information is not available. DSSEG-6145

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. DSSEG-5252

Highest CVSS: 7.8

Highest severity: High

Deep Security Agent - 11.0 update 23

Release date: September 2, 2020

Build number: 11.0.1617

Enhancements

  • Deep Security verifies your signature on the Deep Security Agent to ensure that the software files have not changed since the time of signing. DSSEG-3787
  • You can choose not to send packet data back to the Deep Security Manager by going to Administration > Agents > Data Privacy and selecting No. SF03237033/DSSEG-6018

Resolved issues

  • Application Control sometimes blocked applications that should have been allowed as they were created by a trusted updater. SEG-77446/03206632/DSSEG-5915
  • After applying rule 1006540, "Enable X-Forwarded-For HTTP Header Logging", Deep Security would extract the X-Forwarded-For header for Intrusion Prevention events correctly. However, a URL intrusion like "Invalid Traversal" would be detected in the HTTP request string before the header was parsed. The Intrusion Prevention engine has been enhanced to search X-Forwarded-For header after the header is parsed. SEG-80178/SF03373044/DSSEG-5942
  • The Deep Security Agent network driver crashed. SEG-82544/SF03478737/DSSEG-5945
  • Deep Security Agent detected false file change events due to the setuid/setgid formatting. The agent also generated false file attribute changes in /usr/bin following an upgrade caused by the file creation time change. SEG-79507/DSSEG-5929
  • Deep Security Manager reported a security update timeout because Deep Security Agent received exceptions at security updates. SEG-82072/03273761/DSSEG-5925
  • Deep Security Agent sometimes crashed when the "Scan for Integrity" scan was running. SEG-82795/03462751/DSSEG-5971
  • Application Control included script files with the ".cron" extension as part of the allowed inventory. SEG-76680/SF03240341/DSSEG-5686

Deep Security Agent - 11.0 update 22

Release date: July 15, 2020

Build number: 11.0.0-1514

Enhancements

  • Continued to improve the Account Domain Authentication experience. SEG-73480/SF02989282/DSSEG-5673
  • Integrity Monitoring detects changes to the "setuid" and "setgid" attributes for Linux and Unix platforms. SEG-78797/DSSEG-5766

Resolved issues

  • In certain circumstances, Application Control caused the agent to go offline and restart. SEG-74143/SF03119820/DSSEG-5654

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses. Please note, in line with responsible disclosure practices, CVE details will only be made available for select security updates once patches have been made available for all impacted releases. DSSEG-5750/SEG-78524/SF03321021

  • Updated Nginx to 1.18.0
  • CVSS Score: 5.3
  • Severity: Medium

Deep Security Agent - 11.0 update 21

Release date: May 13, 2020

Build number: 11.0.0-1388

Resolved issues

  • Anti-Malware directory exclusions with wildcards didn't match subdirectories correctly. SEG-74892/SF03131855/DSSEG-5576
  • The Anti-Malware engine on Deep Security Virtual Appliance went offline when the signer field in the Census server reply was empty. SEG-73047/SF03065452/DSSEG-5604

Deep Security Agent - 11.0 update 20

Release date: March 18, 2020

Build number: 11.0.0-1302

Resolved issues

  • Deep Security Agent crashed due to Log Inspection. (SEG-61106/SEG-42752/DSSEG-5226)

Security updates

Security updates are included in this release. For more information about how we protect against vulnerabilities, visit Vulnerability Responses.

  • Upgraded SQLite to 3.30.1. (DSSEG-5104)

Deep Security Agent - 11.0 update 19

Release date: February 11, 2020

Build number: 11.0.0-1236

Resolved issues

  • Memory leaks occurred in Anti-Malware if file attributes couldn't be retrieved. (SEG-67374/SF02753356/DSSEG-5062)
  • The displayed packet header data contained redundant payload data. (SEG-57660/DSSEG-4751)
  • When Deep Security Agent scanned large files for viruses, it consumed a large amount of memory. (SEG-48704/SF01572110/DSSEG-3832)
Contact Support
Support
Contact eSupport
Trend Micro Success
Learn About Vulnerabilities
Threat Encyclopedia