Addressed Issues in Cortex XDR Agent 7.8 - Release Notes - 7.8 - Cortex XDR - Cortex XDR Agent - Advanced Endpoint Protection - Cortex - Security Operations

Cortex XDR Agent Release Notes

Product
Cortex XDR
Cortex XDR Agent
Version
7.8
Creation date
2022-08-31
Last date published
2023-06-26
End_of_Life
EoL
Category
Release Notes

The following have been addressed in this release:

Issue

Description

CPATR-17305

Fixed an issue where a function for getting the current time resulted in high CPU usage by XDR agent services.

CPATR-17291

Fixed an issue where in rare cases, network connections bookkeeping resulted in a memory leak.

CPATR-17230

Fixed an issue where on rare occasions a race condition causes prevention or termination of an executed process in macOS systems which contain third party extensions in addition to Cortex XDR.

CPATR-17198

Fixed an issue where in some cases upon file deletion, Cortex XDR Agent service (cyserver.exe) crashes.

CPATR-17152

Fixed an issue where zombie processes remain in some workflows after termination of child processes.

CPATR-16769

Fixed an issue where if an endpoint attempts to shut down while a REST API call is in progress, the entire shutdown sequence is delayed.

CPATR-16564

Fixed an issue where force stopping the cyserver during upload of multiple files may lead it to crash.

CPATR-16557

Fixed an issue in Cytool where user authentication with an empty password causes a driver verifier violation.

CPATR-16387

Fixed an issue where on rare occasions, due to a race condition the XDR agent does not work as expected after an upgrade or restart.

CPATR-16377

Fixed an issue where working with an external name resolution service may result in the service crashing.

CPATR-16251

Fixed an issue where execution of registry scripts with paths that start with "Computer\HKEY_..." caused an error.

CPATR-16039

Fixed a crash that occurs when the Cyverak driver is reloaded without a restart of the rest of the drivers.

CPATR-15259

Fixed an issue where in some scenarios, a DLL Security event prevention is generated without a memory dump.

CPATR-14975

Fixed an uninstall issue in configurations where /opt/traps is a mount point where the uninstall is reported as unsuccessful.

CPATR-17466

(Linux/macOS)

Fixed a memory issue caused by spawning of pending forks for events that do not need to be analyzed.

CPATR-17276

Fixed an issue where uploading files from an agent to Wildfire resulted in high network bandwidth consumption.

CPATR-17269

Fixed an issue where agent persistent stores are deadlocked during memory exhaustion scenario