New
- Microsoft Patch Tuesday coverage. This release includes updated scan coverage for November 2022. Check out our blog post for details.
Improved
- Debian coverage. Our recurring vulnerability coverage for Debian now supports Debian 11 (Bullseye).
Fixed
- Content now generates correctly for FreeBSD and missed content has been added.
- Temporary disk space usage is now cleaned up after a report completes.
- Remote scan engine logs are no longer incorrectly reporting the number of vulnerabilities found. This issue was strictly cosmetic and the accuracy of the vulnerabilities reported to the Security Console was never impacted.
- Custom vulnerability content is now properly deployed to remote engines for certain cases.
- MS SQL vulnerability checks now look for Reporting Service when applicable.
- The check logic for CVE-2019-3856, CVE-2019-3857, CVE-2019-3863, and CVE-2020-10029 affecting F5 BIG-IP has been updated to reduce false positives.
- The check logic for CVE-2019-4473 now triggers on IBM AIX (instead of the previous IBM Linux).
- The check logic for CVE-2020-19131 and CVE-2020-19144 has been updated to remove unaffected versions of Ubuntu.
- The check logic for CVE-2021-42757 affecting FortiOS has been updated to reduce false positives.
- The check logic for CVE-2021-3781 now removes Windows as an affected OS.
- The check logic for CVE-2022-0866 affecting Red Hat JBoss has been updated to reduce false positives.
- The check logic for CVE-2022-31626 and CVE-2022-31625 affecting PHP no longer results in a false positive.
- The check logic for CVE-2022-21449 affecting Oracle JRE has been updated to reduce false positives.
- The check logic for CVE-2022-29143 affecting MS SQL has been updated to reduce false positives.
- The check logic for CVE-2022-26832 affecting .NET Framework has been updated to reduce false positives.
- The check logic for CVE-2022-1388 affecting F5 BIG-IP has been updated to reduce false negatives.