Lastline Defender and Analyst Hosted Release Notes

Version 2023.1.2

Bug Fixes and Improvements

  • SENT-3700: Fix to an issue where the sensor would incorrectly estimate the number of flows that are being inspected in parallel on an appliance, causing the estimate to continue to grow monotonically. The information is reported in the metrics section of the appliances tab in the UI.
  • SENT-3723: Fix to an issue in the sensor IDS engine where attempting to extract emails from SMTP flows containing multiple separate message deliveries could lead to crashes.
  • SENT-3715: Fix to an IDS issue that could cause an IP reputation match to cause the engine to crash.
  • SENT-3718: Fix to an IDS issue that could cause the IDPS engine to crash in presence of idle flows.
  • FEAT-8080: OS updates now include Ubuntu Expanded Security Maintenance (ESM) updates for the Bionic 18.04.6 OS. To continue receiving support and patches for Bionic, please update appliances to this version. For information on ESM updates, review the following VMware KB article: https://kb.vmware.com/s/article/91429

Deprecation of API Methods

The Lastline API documentation includes a deprecation schedule for deprecated Lastline API methods, as well as information on how to replace usage of these deprecated methods with supported methods.

Released Appliance Versions

As part of this release, we are making available the following versions of Lastline appliances for use with Lastline Enterprise Hosted:

Lastline Sensor version 1360

Distribution Upgrade

Sensor version 1220 was the final version to support Ubuntu Xenial as our operating system distribution. In order to upgrade to 1350, you must be running Bionic as the operating system distribution. You can check the distribution in use by an appliance in the Appliance Status view of the portal. The "Base Distribution" listed should be "bionic". If it is "xenial", the appliance distribution needs to be upgraded. For help on the upgrade process, please refer to the following instructions. This update is not done automatically to prevent unexpected downtime.

2023.1.1 2023.2