<> Trend Micro Incorporated August 24th, 2020 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Trend Micro Safe Lock(TM) 2.0 - Service Pack 1 - Patch 4 English - Windows - 32-bit / 64-bit Critical Patch - Build 6156 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Contents ================================================================ 1. Critical Patch Release Information 1.1 Resolved Known Issues 1.2 Enhancements 1.3 Files Included in This Release 2. Documentation Set 3. System Requirements 4. Installation 4.1 Installing 4.2 Uninstalling 5. Post-installation Configuration 6. Known Issues 7. Release History 8. Contact Information 9. About Trend Micro 10. License Agreement ================================================================ 1. Critical Patch Release Information ======================================================================== 1.1 Resolved Known Issues ==================================================================== This Critical Patch resolves the following issue(s): Issue 1: In certain environments and on very rare occasions, Trend Micro Safe Lock does not block a program that is not in an approved list. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This critical patch ensures that Trend Micro Safe Lock blocks programs that are not in the approved list. Issue 2: An attacker with administrator privileges may be able to run commands in kernel mode. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: This critical patch resolves this vulnerability. Issue 3: An attacker may be able to remove files from the Trend Micro Safe Lock installation folder. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 3: This critical patch resolves this vulnerability. Issue 4: Under certain conditions, Trend Micro Safe Lock blocks a script file creation command unexpectedly. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 4: This critical patch ensures that Trend Micro Safe Lock does not block script file creation commands. Issue 5: Under certain conditions, Trend Micro Safe Lock records a warning event when a process attempts to access a non-existent script file. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 5: This critical patch ensures that Trend Micro Safe Lock does not record a warning event under the scenario described above. 1.2 Enhancements ==================================================================== There are no enhancements for this Critical Patch release. 1.3 Files Included in This Release ==================================================================== A. Files for Current Issues --------------------------------------------------------------------- Filename Build No. ------------------------------------------------------------------ WKSrv.exe 2.0.6156 tmactmon.cat N/A tmactmon.inf N/A tmactmon.sys 2.956.0.1103 tmcomm.cat N/A tmcomm.inf N/A tmcomm.sys 6.60.0.1084 tmevtmgr.inf N/A tmevtmgr.cat N/A tmevtmgr.sys 2.956.0.1103 TMBMCLI.dll 2.956.0.1103 TMBMSRV.exe 2.956.0.1103 Tmcomeng.dll 2.956.0.1103 TmEngDrv.dll 2.956.0.1103 TMPEM.dll 2.956.0.1103 B. Files for Previous Issues --------------------------------------------------------------------- SLCmd.exe 2.0.6156 WKUi.exe 2.0.6156 2. Documentation Set ======================================================================== To download or view electronic versions of the documentation set for this product, go to http://docs.trendmicro.com - Online Help: The Online Help contains an overview of features and key concepts, and information on configuring and maintaining the product. To access the Online Help, go to http://docs.trendmicro.com - Installation Guide (IG): The Installation Guide contains information on requirements and procedures for installing and deploying the product. - Administrator's Guide (AG): The Administrator's Guide contains an overview of features and key concepts, and information on configuring and maintaining the product. - Getting Started Guide (GSG): The Getting Started Guide contains product overview, installation planning, installation and configuration instructions, and basic information intended to get the product 'up and running'. - Support Portal: The Support Portal contains information on troubleshooting and resolving known issues. - To access the Support Portal, go to http://success.trendmicro.com 3. System Requirements ======================================================================== 1. Trend Micro Trend Micro Safe Lock 2.0 SP1 - Patch 4 Build 6143 - English - Windows - x32-x64 4. Installation ======================================================================== This section explains key steps for installing the Critical Patch. 4.1 Installing ==================================================================== To install: 1. Copy the critical patch file to a local folder on the computer where you have installed Trend Micro Safe Lock 2.0. 2. Run the critical patch file. 3. In the setup screen, click "Install" and follow the on-screen instructions to complete the installation. The "Installation successful" message appears after the system completes the installation. 4.2 Uninstalling ==================================================================== No special uninstallation instructions are provided. 5. Post-installation Configuration ======================================================================== No post-installation steps required. 6. Known Issues ======================================================================== Known issues in this release: #1 Known issue: [Reported at: TMSL 2.0.1 SP1 - Patch 4 B6155] Trend Micro Safe Lock cannot start successfully after users: 1. Stop Trend Micro Safe Lock. 2. Start a malware scan using Trend Micro Portable Security 2.0 Build 8035 or any higher version. To work around this issue, you need to stop Trend Micro Portable Security before attempting to start Trend Micro Safe Lock again. #2 Known issue: [Reported at: TMSL 2.0.1 SP1 - Patch 4 B6156] Driver Verifier cannot target "tmcomm.sys" and "tmevtmgr.sys" on Windows kernel 6.2 or any newer version on an x86 environments. 7. Release History ======================================================================== For more information about updates to this product, go to: http://www.trendmicro.com/download Prior Hotfixes ==================================================================== Only this Critical Patch was tested for this release. Prior hotfixes were tested at the time of their release. [Hotfix 6145] Issue 1: In certain environments and on very rare occasions, devices protected by Trend Micro Safe Lock may stop responding after restarting. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This hotfix prevents this issue by improving the way Safe Lock takes exclusive control of a multi-thread program. [Hotfix 6146] Issue 1: Users can overwrite files that are in the approved list using the "move" command at the command prompt, even when Safe Lock is configured to write-protect the files in the approved list. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This hotfix ensures that write-protected files cannot be overwritten using the "move" command at the command prompt. [Hotfix 6147] Issue 1: In certain environments, Microsoft(TM) Windows (TM) Explorer stops responding after a storage device or a storage media is removed or disconnected from a protected endpoint. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This engine release updates the Behavior Monitoring Core Driver component to prevent Windows Explorer from stopping unexpectedly in the scenario described above. [Hotfix 6148] Issue 1: Trend Micro Safe Lock cannot start when all of the following conditions are met: * Trend Micro Safe Lock 2.0 Service Pack 1 Patch 1 or any older version was originally installed. * Safe Lock's Restricted User account has been enabled. * The build is upgraded to Service Pack 1 Patch 2 or any higher version. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This hotfix ensures that Trend Micro Safe Lock can start and run normally under the conditions listed above. Issue 2: The Trusted Updater feature cannot support batch files that run on WOW64. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: This hotfix enables the Trusted Updater feature to support batch files that run on WOW64. [Hotfix 6149] Issue 1: In certain environments, users cannot start a remote desktop connection from one computer to an endpoint protected by Trend Micro Safe Lock. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This hotfix ensures that users can start a remote desktop connection normally to endpoints protected by Trend Micro Safe Lock. [Hotfix 6150] Issue 1: Microsoft(TM) Windows(TM) may take longer than usual to shut down on endpoints protected by Trend Micro Safe Lock. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This hotfix improves the termination process of Trend Micro Safe Lock to ensure that Windows shuts down normally. [Hotfix 6155] Issue 1: Under certain network conditions, users may not be able to add a file on a network drive into the Approved List. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This hotfix ensures that users can add files on a network drive into the Approved List. Issue 2: Under certain conditions, approved list initialization may be interrupted by an unexpected Win32 API error. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: This hotfix ensures that approved lists can be initialized successfully. Issue 3: A Page Pool leak may occur when the "Memory Randomization" feature in Trend Micro Safe Lock is enabled for computers running Microsoft(TM) Windows(TM) 2000. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 3: This hotfix resolves the Page Pool leak. Issue 4: Trend Micro Safe Lock (TMSL) fails to update the hash values of non-application files contained in the Approved List. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 4: This hotfix resolves this issue by modifying TMSL to skip updating hash values of non-application files contained in the Approved List. 8. Contact Information ======================================================================== A license to Trend Micro software usually includes the right to product updates, pattern file updates, and basic technical support for one (1) year from the date of purchase only. After the first year, you must renew Maintenance on an annual basis at Trend Micro's then-current Maintenance fees. Contact Trend Micro via fax, phone, and email, or visit our website to download evaluation copies of Trend Micro products. https://www.trendmicro.com/en_us/contact.html NOTE: This information is subject to change without notice. 9. About Trend Micro ======================================================================== Smart, simple, security that fits. As a global leader in IT security, Trend Micro develops innovative security solutions that make the world safe for businesses and consumers to exchange digital information. Copyright 2020, Trend Micro Incorporated. All rights reserved. Trend Micro, the t-ball logo, OfficeScan, Trend Micro Security (for Mac), Control Manager, Trend Micro Apex One, and Trend Micro Apex Central are trademarks of Trend Micro Incorporated and are registered in some jurisdictions. All other product or company names may be trademarks or registered trademarks of their owners. 10. License Agreement ======================================================================== View information about your license agreement with Trend Micro at: https://www.trendmicro.com/en_us/about/legal.html Third-party licensing agreements can be viewed: - By selecting the "About" option in the application user interface - By referring to the "Legal" page of the Administrator's Guide