Lastline Analyst and Detonator On-Premises Release Notes

Version 9.4.2

New Features

Detection Improvements

  • LLAM-6948: Improved detection of corona family.

Bug Fixes and Improvements

  • FEAT-6795: The license of a 3rd party component used in the Lastline analysis pipeline has been updated, the previous license was scheduled to expire May 15th 2021. Please update your On-Premises environment to version 9.4.2 by May 15th to receive continued signature updates. Failure to upgrade before this day may result in additional False Negative detections for new malware variants.

Deprecation of API Methods

No additional API methods are being deprecated or discontinued in this release.

The Lastline API documentation includes a deprecation schedule for methods in the legacy API, as well as information on how to replace usage of these deprecated methods with supported methods.

Released Appliance Versions

As part of this release, we are making available the following versions of the appliances for use with NSX Analyst On-Premises and NSX Detonator On-Premises:

  • Analyst version 1110.2

and for NSX Detonator On-Premises:

  • Manager version 1110.2
  • Engine version 1110.2

Released Sandbox Images Versions

The sandbox images version will remain at 2020-03-13-01.

Distribution Upgrade

Version 9.4.2 will be the final version that supports Ubuntu Xenial as the operating system distribution. In all future releases, Ubuntu Bionic will be required. To support this distribution upgrade, 9.4.2 will support both Ubuntu Xenial and Ubuntu Bionic. Before upgrading to any future version, appliances on Ubuntu Xenial must be upgraded to Ubuntu Bionic while running version 9.4.2. The upgrade of the distribution will require a reboot and may take up to an hour to complete.

You can check the distribution in use by an appliance in the Appliance Status view of the portal. The "Base Distribution" listed should be "bionic". If it is "xenial", the appliance distribution needs to be upgraded.

For help on the upgrade process, please refer to the following instructions. This update is not done automatically to prevent unexpected downtime.

9.4.1 9.4.3