New Features

• System health can now be calculated by excluding BIOS updates and patches based on their release date.

Improvements

• Optimized bandwidth consumption for downloading Linux patch dependency packages.
• Enhanced security in the user administration module through refined log handling.

Bug Fixes

• Fixed local privilege escalation vulnerability during specific file upload operations (CVE-2024-9871).
• Fixed issue with PPM upgrade failures due to incomplete role creation following a PGSQL version update.
• Fixed remote code execution issue limited to authenticated admin-level users.
• Resolved issue with processing uploaded patches in patch deployment.
• Fixed listing of superseded Linux patches as missing in APD.
• Fixed issues in the Linux patch scan workflow.
• Fixed issue with excluding packages using the yum configuration file on Linux endpoints.
• Fixed PPM upgrade failure caused by the absence of rebranded SSP icon.
• Fixed security issue where file junctions could lead to unauthorized file deletion and privilege escalations.
• Enhanced security in Query Reports by improving sort column handling for MSSQL databases to prevent SQL injection.
• Fixed issue affecting PostgreSQL database connectivity causing PPM upgrade failures.

Enhancements:

• Agent Authentication: Introduced the ability to authorize and approve manually installed agents.
• Security Improvements: Updated data restriction policies in query reports and extended SCEP protocol support for 4096-bit key length.
• Reporting Features:
  • Profiles can now be exported as PDFs for audit purposes.
  • Option to mark systems as compliant based on custom compliance values in the system compliance report.
• Patch Cleanup: Added settings to remove older versions of automatically updated software packages.
• Self-Service Portal: Enhanced personalization options for agents.
• Configuration Exports: Improved export functionality for configuration profiles to ensure consistent deployments.

Bug Fixes:

• Package Issues: Fixed an issue where ZIP packages failed to upload under certain conditions.
• User Permissions: Non-admin technicians can now correctly remove devices.
• Asset Details: Resolved issues when posting asset details from integrated setups.
• Synchronization: Fixed issues with Active Directory domain synchronization.
• Performance Optimization: Resolved timeout issues when starting terminals on Linux machines with low bandwidth.
• Patch Summary: Corrected display errors in the patch summary caused by redundant binaries.
• Email Notifications: Fixed delivery issues for notifications, including expiration alerts.
• API Security: Improved API scope parameters for technician roles to secure configuration deployments.