3. Patches¶
3.1. Kernel - IPSEC module instability¶
The linux kernel had a module related to ipsec that could cause kernel errors (kernel oops).
This problem was corrected.
3.2. Malcore - Incorrect file association in the case of replicas¶
In malcore type logs, the “filename” field could be inaccurate if several files had the same hash but different names.
This problem was corrected.
3.3. Malcore - Accumulation of files in /tmp¶
In some instances, malcore could miss scans, and pending files would remain indefinitely in a directory reserved for temporary files.
This problem was corrected.
3.4. Malcore - No flow_id¶
The flow_id field was not systematically present in malcore alerts.
This problem was corrected.
3.5. Sigflow - Threshold rule¶
When editing a rule to enable a Threshold rule, the generate rules file did not update this new configuration.
This problem was corrected.