McAfee DVM Security Update 4.2.6

• New and revised tests for Oracle and MySQL following Oracle's January 2012 CPU
• Introduced PostgreSQL weak password checking tests
• Improved and updated several tests and descriptions
• Added ORASCN000 and ORASCN001 addressing SCN exhaustion CVE-2012-0082

Note: PostgreSQL and MSSQL Azure tests - supported from v4.2.0

McAfee vPatch Security Update 4.2.107

• 1502,1504,1506 and 1508 Oracle rules were added to address OS layer suspicious activity.

McAfee DVM Security Update 4.2.5

• Added 4 new MySQL tests that address security issues listed in CIS Benchmark version 1.0.2
• Numerous descriptions were revised and corrected
• Added new DB2 and MSSQL vulnerability tests
• Updated several Oracle, PostgreSQL and MySQL tests

Note: PostgreSQL and MSSQL Azure tests - supported from v4.2.0

McAfee vPatch Security Update 4.2.106

• New rules were added addressing CVE-2011-3512
• Rules 6308, 6310, 6312 were updated to better address CVE-2011-3512
• Rule 6314 was fine-tuned to address CVE-2011-2301
• Rules 1828, 5550, 5560 were hardened to reduce false-positives
• Updated description for 1154, 6282

McAfee DVM Security Update 4.2.4

• New and revised tests following Oracle's October 2011 CPU
• Numerous descriptions were revised and corrected
• Numerous tests were revised and corrected
• New tests were added

Note: PostgreSQL and MSSQL Azure tests - supported from v4.2.0

McAfee vPatch Security Update 4.2.105

• Rules 6308, 6310, 6312, 6314, 6316 were added to address newly disclosed vulnerabilities in Oracle's October 2011 CPU
• Updated rule name for rule 6306

McAfee DVM Security Update 4.2.3

• New DB2 and MSSQL tests
• Description fields were revised and improved for several test categories
• Azure tests refactoring
• Bug fixes

Note: PostgreSQL and MSSQL Azure tests - supported from v4.2.0

McAfee vPatch Security Update 4.2.102

• Rules 6296, 6298, 6300, 6302, 6304, 6306 were added to address previously disclosed vulnerabilities in Oracle database
• Rules 6256 were updated to reduce false alerts

McAfee DVM Security Update 4.2.2

• Compliance for Oracle CPU released on July 2011
• Bug fixes and improvements

Note: PostgreSQL and MSSQL Azure tests - supported from v4.2.0

McAfee vPatch Security Update 4.2.101

• Rules 1378, 1380, 1382 were added to address newly disclosed vulnerabilities in Oracle database
• Rules 1384, 1386, 1388 were added to address previously disclosed vulnerabilities
• Rules 1366, 1202 were updated to reduce false alerts

McAfee DVM Security Update 4.2.1

• DISA STIG Compliance for:
  • MSSQL versions 8 and 9
  • Oracle versions 9, 10 and 11
• Bug fixes and improvements

Note: PostgreSQL and MSSQL Azure tests - supported from v4.2.0

McAfee vPatch Security Update 4.1.11

• Contains improvements and bug fixes in presentation layer

McAfee vPatch Security Update 4.1.10

• Rule 6288 was added to protect against CVE-2009-1972 vulnerability.
• Rule 6294 was added to protect against CVE-2009-1991 vulnerability.
• Rules 1374, 1376, 6290 and 6292 were added to alert and monitor suspicious behavior activities.
• Several rules that caused False-Positives were improved.

Sentrigo vPatch Security Update 4.1.9

• Rule 6284 was added to protect against CVE-2011-0787 vulnerability.
• Rule 6286 was added to protect against privatly reported zero-day vulnerability.

Sentrigo VA Security Update 4.1.8

• Bug fixes
  

Sentrigo Security Update 4.1.7

• Rule 6282 was added to protect against CVE-2010-3590 vulnerability.
• Rules 5760, 5510, 5584, 5586 and 1938 were improved to reduce false alerts.

Sentrigo VA Security Update 4.1.4

• Added and improved Patches tests to verify the latest patching levels
  
• Added and improved MySQL Vulnerabilities tests to alert on newly disclosed vulnerabilities

Sentrigo VA Security Update 4.1.3

• Added and improved Patches tests to verify the latest patching levels
  
• Added and improved Vulnerabilities tests to alert on new database vulnerabilities
  
• Improved Data Discovery tests to better discover sensitive data

Sentrigo vPatch Security Update 4.1.2

Sentrigo vPatch Security Update 4.1.0

• Rules 6272 and 6274 were added to address newly disclosed vulnerabilities in Oracle databases.
• Rules 1015 and 1017 were updated to improve their coverage and reduce false alerts.

Sentrigo vPatch Security Update 4.0.2

• Rules 1836 and 1837 were improved to reduce false alerts.
• Rules 1830 and 6225 were improved to extend their coverage.

Sentrigo vPatch Security Update 4.0.1

• Rule 6270 was added to protect against a 0-day vulnerability not yet fixed by Oracle.
• Rule 1017 was split from 1015 to better detect attacks and reduce false alerts.
• Rules 1836, 1837 and 6264 were improved to reduce false alerts.
• The coverage of these rules was improved: 5510, 5520, 5530, 5540, 5550, 5560, 5570, 5700, 5710, 5720.

Sentrigo vPatch Security Update 4.0.0

• 11 rules were added to protect against some patched and some 0-day vulnerabilities:
• 1015
• 6266
• 6268
• 7834
• 7836
• 7838
• 7840
• 7842
• 7844
• 7846
• 7848
• Rule 6030 was updated for maintenance.

Sentrigo vPatch Security Update 3.5.7

• Rule 6264 was added to address a newly disclosed vulnerability in Oracle databases.
• Rule 6256 was already in place to protect Hedgehog users from vulnerabilities patched in this CPU.
• Rule 1880 was updated for maintenance.

Sentrigo vPatch Security Update 3.5.6

• Rule 6262 was added to protect against a 0-day vulnerability not yet fixed by Oracle.
• Rules 5584 and 5586 were improved to reduce false alerts.

Sentrigo vPatch Security Update 3.5.5

• Rule 6258 was added to protect against an issue patched in the April 2010 CPU.
• Rule 6260 was added to protect against a 0-day vulnerability reported to Oracle by Sentrigo.
• Rules 1830, 5586, 5590 and 6254 were improved to reduce false alerts and increase coverage.
• Alert level has been tuned in rules 5590, 5700 and 5730.
• Rule 6224 has been renumbered 6225 in Server versions 3.5.2 and above.

Sentrigo vPatch Security Update 3.5.4

• Rules 6248, 6250 and 6252 were already in place to protect Hedgehog users from vulnerabilities patched in this CPU.
• Rule 6256 was added to address a newly disclosed vulnerability in Oracle databases.

Sentrigo vPatch Security Update 3.5.3

• The following rules were added to protect against known vulnerabilities: 1046, 1090, 1110, 1224, 1349, 1351, 1372, 5060, 6101, 6103, 6105, 6111, 6113 and 6115.
• Numerous rules have been modified to improve their coverage and reduce false alerts.
• Numerous rules have been modified to clarify their description.

Sentrigo vPatch Security Update 3.5.2

• Rules 1092, 1118, 1120 and 6224 were already in place to protect Hedgehog users from vulnerabilities patched in this CPU.
• Rule 6254 was added to address a newly disclosed vulnerability in Oracle databases.
• Rules 210, 1106, 1206, 1208 and 5560 were updated for maintenance.

Sentrigo vPatch Security Update 3.5.1

• The following rules were added to protect against known and 0-day vulnerabilities: 1113, 1157, 1366, 1368, 1370, 1837, 1842, 2142, 6242, 6244, 6246, 6248, 6250 and 6252.
• Numerous rules have been modified to improve their coverage.
• Numerous rules have been modified to clarify their description.
• On Hedgehog Server versions 3.5.1 and later, rule 1837 was added. This rule is very useful in detecting general (even 0-day) SQL Injection attacks, but may adversely affect system performance. For this reason, rule 1837 is disabled by default, and may be enabled by users who wish to activate it.

Sentrigo vPatch Security Update 3.5.0

Sentrigo vPatch Security Update 3.0.2

Sentrigo vPatch Security Update 3.0.1

• 27 new rules were introduced to detect attacks and suspicious activity.
• The existing rules were optimized for performance and effectiveness.
• A few rules underwent minor maintenance updates.

Sentrigo vPatch Security Update 3.0.0

• The rules were streamlined and optimized for accuracy and performance.
• The names of the rules were clarified to better reflect their meaning.
• The tags attached to the rules were standardized and made easier to use. More on predefined tags...
• The following rules have been consolidated:
• Rule 1124 was merged into rule 1096.
• Rule 1134 was merged into rule 1060.
• Rule 2100 was merged into rule 2090.
• Rule 7000 was merged into rule 5010.
• Rule 7010 was merged into rule 5040.

Sentrigo vPatch Security Update 2.5.3