Version 9.2.1
Detection Improvements
- SENT-2773: Fixed a problem in the file extraction rules for POSIX tar files in sniffing sensors. Transfers of such files are now consistently extracted by the appliance.
Bug Fixes and Improvements
- MALS-3247: The Lastline Sensor is now permitted to explicitly bypass the static prefilter when uploading files for analysis in the Analyst API.
- MALS-3249: Fixed a race condition that could cause submissions to the Analyst API remain in a incomplete state for four hours after submission.
- SENT-2785: Fixed an issue where a certain class of email local detections, acting for instance on the text content of an email, would be incorrectly lead to a
benign
classification in theX-Lastline
headers. - PLTF-1566: Fixed an issue that could cause the upgrade to version 9.2 to fail on standby manager appliances.
- LLAM-5854: Fixed an instability in the YARA engine, which in certain cases, caused a crash of the analysis.
Deprecation of API Methods
No additional API methods are being deprecated or discontinued in this release.
The Lastline API documentation includes a deprecation schedule for methods in the legacy API, as well as information on how to replace usage of these deprecated methods with supported methods.
Released Appliance Versions
As part of this release, we are making available the following versions of Lastline appliances for use with Lastline Enterprise On-Premises:
- Lastline Manager version 1092
- Lastline Engine version 1092
- Lastline Sensor version 1152
- Lastline All-in-one (Pinbox) version 1092
Released Sandbox Images Versions
The sandbox images version will remain at 2019-04-18-01.
End of Support For Dell R320 and Dell R420
Lastline is deprecating support for the Dell R320 and Dell R420 starting with the release of On-Premises 9.3. Our software will no longer be certified for use on these platforms. For information on the hardware we will continue to support, visit our hardware support page.