1. Overview of This Critical Patch Release

Issues

This Critical Patch resolves the following issue(s):

Issue 1

Deep Discovery Inspector is affected by the following vulnerabilities:

  • ZDI-CAN-24584
  • ZDI-CAN-24585

Solution

This critical patch fixes the vulnerabilities.

Files Included in This Release

There are no files included in this Critical Patch release.

2. Documentation Set

To download or view electronic versions of the documentation set for this product, go to http://docs.trendmicro.com

  • Online Help: The Online Help contains an overview of features and key concepts, and information on configuring and maintaining the product.


To access the Online Help, go to http://docs.trendmicro.com

  • Installation Guide (IG): The Installation Guide contains information on requirements and procedures for installing and deploying the product.
  • Administrator's Guide (AG): The Administrator's Guide contains an overview of features and key concepts, and information on configuring and maintaining the product.
  • Getting Started Guide (GSG): The Getting Started Guide contains product overview, installation planning, installation and configuration instructions, and basic information intended to get the product 'up and running'.
  • Support Portal: The Support Portal contains information on troubleshooting and resolving known issues.
  • To access the Support Portal, go to http://success.trendmicro.com

3. System Requirements

1. Deep Discovery Inspector 6.7 GM Build 1077 - English - Linux - x64

4. Installation

Installing

To install:

  1. Open the Deep Discovery Inspector management console.
  2. Go to Administration > Updates > Product Updates > Hot Fixes / Patches.
  3. Click "Browse" and select the "" file from the folder where you extracted the hotfix files.
  4. Click "Install".
  5. Click "Continue" after the upload process has finished.
  6. Clear the browser cache.

Uninstalling

To roll back to the previous build:

  1. Open the Deep Discovery Inspector management console.
  2. Go to Administration > Updates > Product Updates > Hot Fixes / Patches.
  3. Click "Roll Back".
  4. Click "OK" when a confirmation message appears.

5. Post-installation Configuration

No post-installation steps are required.

NOTE: Trend Micro recommends that you update your scan engine and virus pattern files immediately after installing the product.

6. Known Issues

There are no known issues for this Critical Patch release.

7. Release History

Prior Hotfixes

Only this Critical Patch was tested for this release. Prior hotfixes were tested at the time of their release.
Issue Hotfix 1106

Sometimes, the Monitored Network Throughput widget on Trend Vision One's Security Dashboard displays an incorrect graph that shows a higher value than the actual throughput.

Solution

This hotfix reduces the possibility of this issue occurring.

Issue Hotfix 1105

Deep Discovery Inspector tries to download a Certificate Revocation List (CRL) from crl.xrampsecurity.com.

This action should only happen when Deep Discovery Inspector is deployed in inline mode.

Solution

This hotfix ensures that Deep Discovery Inspector downloads the Certificate Revocation List only when deployed in inline mode.

Issue Hotfix 1104

The timestamp displayed on the Administration > System Logs screen of the management console might show a 30-minute discrepancy with the Deep Discovery Inspector system time. This discrepancy is due to the system time zone being set to a half-hour time zone.

Solution

This hotfix resolves this issue.

Issue Hotfix 1103

Deep Discovery Inspector is affected by the CVE-2024-6387 and CVE-2024-6409 vulnerabilities.

Solution

This Hotfix resolves these vulnerabilities.

Issue Hotfix 1101

An internal error triggers in Deep Discovery Inspector due to a network connection issue. This error causes a defect that blocks all subsequent attempts to connect to Trend Vision One.

Solution

This hotfix resolves this issue.

Issue Hotfix 1099

Under certain circumstances, Deep Discovery Inspector restarts unexpectedly.

Solution

This hotfix updates Network Content Inspection Engine to resolve this issue.

Issue Hotfix 1097

Deep Discovery Inspector cannot import backup files if the number of elements in the Network Groups and Assets settings included in the backup exceeds the limit.

Solution

This hotfix increases the number of elements allowed in the Network Groups and Assets settings backup to resolve the issue.

Issue Hotfix 1096

Deep Discovery Inspector is affected by CVE-2022-31629.

Solution

This hotfix resolves this issue.

Issue Hotfix 1094

Deep Discovery Inspector cannot use Smart Protection Server as the server for Certified Safe Software Service.

Solution

This hotfix resolves the issue.

Issue Hotfix 1093

Once enabled, Threat Intelligence Sharing (Administration > Integrated Products/Services > Threat Intelligence Sharing) cannot be disabled.

Solution

This hotfix resolves the issue.

Issue Hotfix 1092

The following vulnerabilities affect Deep Discovery Inspector:

  • CVE-2024-24795
  • CVE-2023-38709

Solution

This hotfix upgrades the Apache HTTP server included with Deep Discovery Inspector to fix the vulnerabilities.

Issue Hotfix 1088

When the 'Retry unsuccessful updates' option is enabled (Administration > Updates > Component Updates > Source), Deep Discovery Inspector may run out of memory if it cannot connect to the ActiveUpdate Server.

Solution

This hotfix resolves this issue.

Issue Critical Patch 1086

The process 'marsd' stops, causing Deep Discovery Inspector not to send activity data to Trend Vision One.

The issue happens when Deep Discovery Inspector connects to Trend Vision One through the service proxy, and Network Sensor is enabled.

Solution

This critical patch resolves the issue.

Issue Hotfix 1083

Network traffic dump does not work in the troubleshooting pages.

Solution

This hotix resolves this issue.

Enhancement Hotfix 1083

This hotfix adds support for the “Subject Alternative Name” extension when creating certificate signing requests.

8. Contact Information

A license to Trend Micro software usually includes the right to product updates, pattern file updates, and basic technical support for one (1) year from the date of purchase only. After the first year, you must renew Maintenance on an annual basis at Trend Micro's then-current Maintenance fees.

Contact Trend Micro via fax, phone, and email, or visit our website to download evaluation copies of Trend Micro products.

https://www.trendmicro.com/en_us/contact.html

NOTE: This information is subject to change without notice.

9. About Trend Micro

Smart, simple, security that fits.

As a global leader in IT security, Trend Micro develops innovative security solutions that make the world safe for businesses and consumers to exchange digital information.

Copyright 2024, Trend Micro Incorporated. All rights reserved.

Trend Micro, the t-ball logo, OfficeScan, Trend Micro Security (for Mac), Control Manager, Trend Micro Apex One, and Trend Micro Apex Central are trademarks of Trend Micro Incorporated and are registered in some jurisdictions. All other product or company names may be trademarks or registered trademarks of their owners.

10. License Agreement

View information about your license agreement with Trend Micro at: https://www.trendmicro.com/en_us/about/legal.html

Third-party licensing agreements can be viewed:

  • By selecting the "About" option in the application user interface
  • By referring to the "Legal" page of the Administrator's Guide
Back to Top