Release Notes
Abstract
This technical note provides guidance for installing IBM Security Guardium Data Protection sniffer patch 12.0p4003, including any new features or enhancements, resolved or known issues, or notices associated with the patch.
Content
Patch information
- Patch file name: SqlGuard-12.0p4003_Snif_May_19_2024.tgz.enc.sig
- MD5 checksum: 7f39edbd0a1e05046b249c038dbce7043c52bedc
Finding the patch
This document provides a reference to the contents of this patch. If applicable, the detailed description of each fix and instructions for applying this patch are contained within the download package. The package is available for downloading from the IBM Fix Central website.
Make the following selections on Fix Central:
- Product selector: IBM Security Guardium
- Installed Version: 12.0
- Platform: UNIX/Linux/Windows
- Click “Continue”, then select “Browse for fixes” and click “Continue” again.
- Select “Appliance Patch (GPU and ad hoc)”
For information about Guardium patch types and naming conventions, see the Understanding Guardium patch types and patch names support document.
Prerequisite
Guardium version 12.0
Installation
Notes:
- This universal sniffer patch can be installed on all releases of Guardium 12.x
- This patch restarts the sniffer process.
Overview:
- Download the patch and extract the compressed package outside the Guardium system.
- Pick a "quiet" or low-traffic time to install the patch on the Guardium system.
- Install patches in a top-down manner on all Guardium systems: start with the central manager, then aggregators, then the collectors. This sniffer patch must be installed across all the appliances such as the central manager, aggregators, and collectors.
For information about installing Guardium Data protection patches, see How to install patches in the Guardium documentation.
New currency items
This patch contains the following new currency items:
| Issue key | Summary |
|---|---|
| GRD-72816 | Extend monitoring support for CDP 7 Hadoop Atlas service |
| GRD-77771 | Support CouchDB 3.3.2 or latest available |
| GRD-78011 | Support ElasticSearch 8.10.4 or latest available |
| GRD-78026 | Support Vertica 24.1 or latest available |
Enhancements
This patch provides the following enhancements:
| Issue key | Summary |
|---|---|
| GRD-11636 | Implement support for bind variables of Teradata stage 2 |
| GRD-70475 | Design and Implement new Class to save Priority Packets, and remove them when session is over or failover message received |
| GRD-70772 | Add a warning to STAP log and STAP Events when IE size reaches the buffer limit - Unix STAP |
| GRD-73079 | Disallow QRW on insert statement for field replacement by function |
| GRD-76108 | Sniffer side of Internal Load Balancer |
| GRD-76353 | WTAP Servers. Counters STAP_PRIORITY_DROP and STAP_PACKETS_DROP for protocols v7 |
| GRD-77777 | SLP - support criteria and actions from DSP |
| GRD-78572 | Sniffer side changes - missing actions and criteria+SLP selective audit |
| GRD-78766 | Capture DB_USER info for DataSets on GDP for report |
| GRD-79166 | Add ScyllaDB extension grammar in the Cassandra parser |
| GRD-79666 | Sniffer side support for Windows STAP v8 protocol report dropped packets per session |
| GRD-79683 | PCI_TRACK_DATA and criterial LITERAL verification algorithms |
| GRD-80110 | Add new verification algorithms |
| GRD-80111 | Validity check for Canadian SIN |
| GRD-80227 | Improve performance of large group creation |
| GRD-80350 | Improve tuples performance |
| GRD-80546 | Support CUSTOM_TREE requests in SLP tuples |
| GRD-80712 |
Support template variables in SLP generated alerts
|
| GRD-80713 | Read templates from tables. Create structures to store object and verb match results. Forward info to Logger. Assemble alert msg. Changes to REQUEST_RESPONSE. Test logging of Alerts with correct information. Test logging of only matched constructs. |
| GRD-80788 | Session live improvements |
| INS-12619 | mini-snif improvement: reduce the number of duplicate instance messages by caching instance_ids |
Resolved issues
This patch resolves the following issues:
| Patch | Issue key | Summary | APAR |
|---|---|---|---|
| 12.0p4001 | Patch 12.0p4001 on Fix Central | -- | |
| 12.0p4003 | GRD-70038 | After Selective policy installed once, switching to non Selective policy has no effect | GA18263 |
| GRD-79295 | MSSQL: ALTER TABLE XXX ALTER COLUMN XXX DROP MASKED Caused Parser Error | DT260785 | |
| GRD-77365 | Some expected queries not being collected on collector | DT382325 | |
| GRD-72823 | STAP disappearing from STAP control | GA18432 | |
| GRD-72455 | Server IP - Hostname mismatch | DT260795 | |
| GRD-80076 | S-TAP for IBM i - tls failover deprecation | N/A |
[{"Type":"MASTER","Line of Business":{"code":"LOB24","label":"Security Software"},"Business Unit":{"code":"BU048","label":"IBM Software"},"Product":{"code":"SSMPHH","label":"IBM Security Guardium"},"ARM Category":[{"code":"a8m3p000000PCTuAAO","label":"Platform\/Installation\/Deployment"}],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"All Versions"}]
Was this topic helpful?
Document Information
Modified date:
31 May 2024
UID
ibm17156217