<> Trend Micro Incorporated October 25th, 2021 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Trend Micro(TM) Deep Discovery Analyzer 6.8 - GM English - Linux - 64 Bits Critical Patch - Build 1200 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Contents ================================================================ 1. Critical Patch Release Information 1.1 Resolved Known Issues 1.2 Enhancements 1.3 Files Included in This Release 2. Documentation Set 3. System Requirements 4. Installation 4.1 Installing 4.2 Uninstalling 5. Post-installation Configuration 6. Known Issues 7. Release History 8. Contact Information 9. About Trend Micro 10. License Agreement ================================================================ 1. Critical Patch Release Information ======================================================================== 1.1 Resolved Known Issues ==================================================================== This Critical Patch resolves the following issue(s): Issue 1: An issue related to an update package checking mechanism prevents users from applying future hotfixes and firmware successfully. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This Critical Patch updates the Hotfix and Migration module to resolve the issue. 1.2 Enhancements ==================================================================== There are no enhancements for this Critical Patch release. 1.3 Files Included in This Release ==================================================================== There are no files included in this Critical Patch release. 2. Documentation Set ======================================================================== To download or view electronic versions of the documentation set for this product, go to http://docs.trendmicro.com - Online Help: The Online Help contains an overview of features and key concepts, and information on configuring and maintaining the product. To access the Online Help, go to http://docs.trendmicro.com - Installation Guide (IG): The Installation Guide contains information on requirements and procedures for installing and deploying the product. - Administrator's Guide (AG): The Administrator's Guide contains an overview of features and key concepts, and information on configuring and maintaining the product. - Getting Started Guide (GSG): The Getting Started Guide contains product overview, installation planning, installation and configuration instructions, and basic information intended to get the product 'up and running'. - Support Portal: The Support Portal contains information on troubleshooting and resolving known issues. - To access the Support Portal, go to http://success.trendmicro.com 3. System Requirements ======================================================================== 1. Deep Discovery Analyzer 6.8 GM Build 1165 - English - Linux - x64 4. Installation ======================================================================== This section explains key steps for installing the Critical Patch. 4.1 Installing ==================================================================== To install: 1. Copy the "ddan_68_lx_en_criticalpatch_b1200.7z.zip.tar" file to a local folder. 2. Open the Deep Discovery Analyzer web console. 3. Go to the "Administration > Updates > Hot Fixes/Patches" page. 4. Click "Browse" and select the "ddan_68_lx_en_criticalpatch_b1200.7z.zip.tar" file. 5. Click the "Install" button. The computer restarts automatically after the Critical Patch is installed successfully. 4.2 Uninstalling ==================================================================== This hotfix cannot be rolled back. 5. Post-installation Configuration ======================================================================== No post-installation steps are required. NOTE: Trend Micro recommends that you update your scan engine and virus pattern files immediately after installing the product. 6. Known Issues ======================================================================== There are no known issues for this Critical Patch release. 7. Release History ======================================================================== For more information about updates to this product, go to: http://www.trendmicro.com/download Prior Hotfixes ==================================================================== Only this Critical Patch was tested for this release. Prior hotfixes were tested at the time of their release. [Hotfix 1194] Issue 1: It takes a long time for Usandbox to process very large Microsoft(TM) Office(TM) Excel(TM) file samples. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This Hotfix updates Usandbox to version 5.5.1233 with SandCastle client 6.0.4856 to fix this issue. [Critical Patch 1191] Issue 1: The ActiveUpdate (AU) module in Deep Discovery Analyzer is affected by a vulnerability. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This Critical Patch updates the active update module to fix this vulnerability. Issue 2: An investigator user cannot change his own password through the Deep Discovery Analyzer web console. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: This Critical Patch updates certain internal modules to fix this issue. Issue 3: When the wrong password is used in the "docpassword" parameter to submit an encrypted file sample to Deep Discovery Analyzer through the WebService API, the file sample may be rated as "No risk". ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 3: This Critical Patch updates Usandbox to version 5.5.1228 with SandCastle client 6.0.4842 to fix this issue. [Hotfix 1188] Issue 1: The ICAP server in Deep Discovery Analyzer may respond with an incorrect ICAP header when the HTTP headers contain multi-byte characters. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This hotfix updates the ICAP module to resolve this issue. Issue 2: Sandbox images may be removed unexpectedly when users view the "Virtual Analyzer > Sandbox Management > Image" page from the web management console while applying a hotfix. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: This hotfix updates certain internal modules to resolve this issue. [Hotfix 1186] Issue 1: An issue prevents Usandbox from analyzing HTML attachments in certain EML samples. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This hotfix upgrades the Usandbox module to version 5.5.1222 with SandCastle 6.0.4822 to fix this issue. Enhancement 1: This hotfix updates some internal modules in Deep Discovery Analyzer. [Hotfix 1183] Issue 1: When port binding is enabled before connecting the High-Availability (HA) port (eth3), the HA test connection fails. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This hotfix updates some internal modules to fix this issue. Issue 2: Usandbox cannot analyze Microsoft(TM) Office Excel files with a default password that is not in the password list. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: this hotfix upgrades the Usandbox module to version 5.5.1218 with SandCastle 6.0.4630 to fix this issue. [Hotfix 1181] Enhancement 1: This hotfix updates some internal modules to enhance the STIX importing. [Hotfix 1178] Issue 1: In request modification mode, the ICAP server in Deep Discovery Analyzer may respond with a malformed encapsulated HTTP message when the HTTP body is not in UTF-8. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This hotfix updates the ICAP module in Deep Discovery Analyzer to ensure that the ICAP server response normally in request modification mode. Enhancement 1: This hotfix improves the visualization of firmware upgrades on the web management console. [Hotfix 1174] Issue 1: The hardware status information may not display normally in the "Dashboard > System Status" page of the Deep Discovery Analyzer web management console. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This hotfix updates some internal modules to ensure that the hardware status information displays normally on the "System Status" page. Enhancement 1: This hotfix upgrades the Usandbox module to version 5.5.1204 with SandCastle 6.0.4263. 8. Contact Information ======================================================================== A license to Trend Micro software usually includes the right to product updates, pattern file updates, and basic technical support for one (1) year from the date of purchase only. After the first year, you must renew Maintenance on an annual basis at Trend Micro's then-current Maintenance fees. Contact Trend Micro via fax, phone, and email, or visit our website to download evaluation copies of Trend Micro products. https://www.trendmicro.com/en_us/contact.html NOTE: This information is subject to change without notice. 9. About Trend Micro ======================================================================== Smart, simple, security that fits. As a global leader in IT security, Trend Micro develops innovative security solutions that make the world safe for businesses and consumers to exchange digital information. Copyright 2021, Trend Micro Incorporated. All rights reserved. Trend Micro, the t-ball logo, OfficeScan, Trend Micro Security (for Mac), Control Manager, Trend Micro Apex One, and Trend Micro Apex Central are trademarks of Trend Micro Incorporated and are registered in some jurisdictions. All other product or company names may be trademarks or registered trademarks of their owners. 10. License Agreement ======================================================================== View information about your license agreement with Trend Micro at: https://www.trendmicro.com/en_us/about/legal.html Third-party licensing agreements can be viewed: - By selecting the "About" option in the application user interface - By referring to the "Legal" page of the Administrator's Guide