Sentrigo Security Updates

VA Security Update 205

Fri, 07 Oct 22 16:52:00 +0000

McAfee DVM Security Update v205

This update includes:

Updated DB2 patch check to include recent update from vendor
Updated Sybase patch check to include recent update from vendor
Updated PostgreSQL patch check to include recent update from vendor
New checks for PostgreSQL 9.6 / 10 databases to detect reported vulnerabilities
New checks for DB2 9.7 / 10.1 / 10.5 / 11.1 databases to detect reported vulnerabilities
Updated MSSQL configuration check MSSTIG044 to be a parameterized check

The following CVE’s are covered for PostgreSQL 9.6 / 10: CVE-2021-43767,CVE-2021-43766

The following CVE's are covered for DB2 9.7 / 10.1 / 10.5 / 11.1: CVE-2022-22483,CVE-2022-35637,CVE-2021-38926,CVE-2021-39002,CVE-2021-20373,CVE-2021-29678

Previous release notes can be found here.

VA Security Update 204

Wed, 31 Aug 22 18:07:00 +0000

McAfee DVM Security Update v204

This update includes:

Updated MSSQL 2019 patch check to include recent update from vendor
New checks for Oracle 12.1.0.2 / Oracle 19c databases to detect reported vulnerabilities
New checks for MySQL 5.7 database to detect reported vulnerabilities

The following CVE’s are covered for Oracle 12.1.0.2 / Oracle 19c: CVE-2020-35169,CVE-2022-21565,CVE-2022-0839,CVE-2021-45943,CVE-2022-21432

The following CVE's are covered for MySQL 5.7: CVE-2022-1292,CVE-2022-27778,CVE-2018-25032,CVE-2022-21515

Previous release notes can be found here.

VA Security Update 203

Wed, 27 Jul 22 11:16:00 +0000

McAfee DVM Security Update v203

This update includes:

Updated MSSQL 2017 patch check to include recent updates from vendor
Updated DB2 11.1 patch check to include recent updates from vendor
New checks for DB2 9.7 / DB2 10.1 / DB2 10.5 / DB2 11.1 databases to detect reported vulnerabilities
New checks for PostgreSQL 9.6 / PostgreSQL 10 databases to detect reported vulnerabilities

The following CVE’s are covered for DB2 9.7 / DB2 10.1 / DB2 10.5 / DB2 11.1: CVE-2022-23990,CVE-2022-23852,CVE-2022-25235,CVE-2022-25315,CVE-2022-25314,CVE-2022-25236,CVE-2022-25313,CVE-2022-22390,CVE-2022-22389

The following CVE's are covered for PostgreSQL 9.6 / PostgreSQL 10: CVE-2021-23214,CVE-2021-23222

Previous release notes can be found here.

VA Security Update 202

Fri, 08 Jul 22 19:38:00 +0000

McAfee DVM Security Update v202

This update includes:

Updated Oracle 12.1.0.2 / Oracle 19c patch checks to include recent updates from vendor
Updated Oracle 12.2.0.1 to address end of life support from vendor
Updated MySQL 5.7 patch check to include recent update from vendor
Updated Sybase ASE 16.0 SP03 patch check to include recent update from vendor
Updated MSSQL check MSSTIG044 to address false positives being reported
New checks for Oracle 12.1.0.2 / Oracle 19c databases to detect reported vulnerabilities
New checks for MySQL 5.7 database to detect reported vulnerabilities
New checks for Sybase 15.7 / Sybase 16.0 databases to detect reported vulnerabilities

The following CVE’s are covered for Oracle 12.1.0.2 / Oracle 19c: CVE-2022-21411, CVE-2021-22569, CVE-2022-21498, CVE-2022-21410

The following CVE's are covered for MySQL 5.7: CVE-2022-21451, CVE-2022-21460, CVE-2022-21444, CVE-2022-21454, CVE-2022-0778, CVE-2022-21417, CVE-2022-21427

The following CVE's are covered for Sybase 15.7 / Sybase 16.0: CVE-2020-6317, CVE-2022-22528, CVE-2020-6295

Previous release notes can be found here.

VA Security Update 201

Mon, 30 May 22 18:30:00 +0000

McAfee DVM Security Update v201

This update includes:

Updated MSSQL 2017 and MSSQL 2019 patch checks to include recent updates from vendor
Updated MySQL check MYCONFIG025 to address false positives being reported

Previous release notes can be found here.

VA Security Update 200

Fri, 29 Apr 22 14:00:00 +0000

McAfee DVM Security Update v200

This update includes:

Updated Oracle check ORACONF344 to address incomplete details being reported

Previous release notes can be found here.

VA Security Update 199

Tue, 29 Mar 22 18:11:00 +0000

McAfee DVM Security Update v199

This update includes:

Updated checks for Sybase 16.0 database to include recently released Sybase patches
Updated pre-existing Sybase checks to address false positives
Updated Oracle check ORACONF344 to address inaccurate details being reported

Previous release notes can be found here.

VA Security Update 198

Fri, 25 Feb 22 17:53:00 +0000

McAfee DVM Security Update v198

This update includes:

New Checks for Oracle 12.1.0.2, Oracle 12.2.0.1 and Oracle 19c databases
New Checks for MySQL 5.7 database
New Checks for Sybase 15.7 and Sybase 16.0 databases
Updated checks for Oracle 12.1.0.2, Oracle 12.2.0.1 and Oracle 19c to include recently released Oracle patches
Updated check for MySQL 5.7 to include recently released MySQL patch
Updated check for MSSQL 2019 to include recently released MSSQL patch
Updated check SYVULN067 to address false positive being reported

The following CVE's are added for Oracle 12.1.0.2 / Oracle 12.2.0.1 / Oracle 19c databases:

The following CVE's are added for MySQL 5.7 database:

The following CVE's are added for Sybase 15.7 / Sybase 16.0 databases:

Previous release notes can be found here.

VA Security Update 197

Thu, 27 Jan 22 16:54:00 +0000

McAfee DVM Security Update v197

This update includes:

Updated Check for MSSQL 2017 databases to include recently released MSSQL patch
Updated Check for MariaDB 10.2 databases to include recently released MariaDB patch
Updated Checks for PostgreSQL 9.6 / PostgreSQL 10 databases to include recently released PostgreSQL patches

Previous release notes can be found here.

VA Security Update 196

Fri, 17 Dec 21 19:20:00 +0000

McAfee DVM Security Update v196

This update includes:

New Checks for MSSQL 2019 / MSSQL 2017 / MSSQL 2016 / MSSQL 2014 databases
Updated Checks for MSSQL 2019 / MSSQL 2017 / MSSQL 2016 / MSSQL 2014 databases to include recently released MSSQL patches
Updated all existing checks to include MSSQL 2019 databases

The following CVE is added for MSSQL 2019 / MSSQL 2017 / MSSQL 2016 / MSSQL 2014 databases:

Previous release notes can be found here.

VA Security Update 195

Wed, 24 Nov 21 12:23:00 +0000

McAfee DVM Security Update v195

This update includes:

New Checks for Oracle 12.1.0.2, Oracle 12.2.0.1 and Oracle 19c databases
New Checks for MySQL 5.7 databases
Updated checks for Oracle 12.1.0.2, Oracle 12.2.0.1 and Oracle 19c to include recently released Oracle patches
Updated checks for MySQL 5.7 databases to include recently released MySQL patches

The following CVE's are added for Oracle 12.1.0.2 / Oracle 12.2.0.1 / Oracle 19c databases:

The following CVE's are added for MySQL 5.7 databases:

Previous release notes can be found here.

VA Security Update 194

Wed, 27 Oct 21 15:41:00 +0000

McAfee DVM Security Update v194

This update includes:

Updated patches for MSSQL databases
Updated patches for Sybase databases
New Check for PostgreSQL vulnerabilties

Previous release notes can be found here.

VA Security Update 193

Wed, 29 Sep 21 15:15:00 +0000

McAfee DVM Security Update v193

This update includes:

Updated patches for MSSQL databases
Updated patches for DB2 databases
Updated patches for Sybase databases

Previous release notes can be found here.