Genian ZTNA 6.0.15 Release Notes (2023-05-17)
Last Updated: 2023-07-20
Security Vulnerability
| Revision | Key | Components | Description | Affects Versions | CVSS Score |
|---|---|---|---|---|---|
| 116655 | GN-26814 | Center | Code improvements to Bufferoverflow | 2 | |
| 115659 | GN-26725 | Linux Agent, macOS Agent, Windows Agent | [Agent] Added validation for events sent from the Center and sensors | 6.3 | |
| 114716 | GN-26368 | WebUI | Vulnerability where an administrator's API key is exposed to other administrators | 5.3 | |
| 114205 | GN-26392 | WebUI | Vulnerability that allows unprivileged administrators to download debug logs | 2.9 | |
| 113812 | GN-26222 | WebUI | A problem where redirection can be performed by modulating the returnURL parameter used when moving pages in the management console | 1.9 |
New Features and Improvements
| Revision | Key | Components | Description | Affects Versions |
|---|---|---|---|---|
| 117753 | GN-26702 | WebUI | A function that outputs a warning when external access is permitted from the policy server | |
| 117445 | GN-26769 | Linux Agent | Linux Agent, development of distribution plug-ins based on Sigstore electronic signatures | |
| 117369 | GN-26755 | Center, Linux Agent, macOS Agent, WebUI, Windows Agent | Development of distribution plug-ins based on Sigstore electronic signatures | |
| 116763 | GN-26826 | geniup | A problem where a disk runs out when performing geniup on a UEFI system | |
| 116385 | GN-26844 | Center, Sensor | Display whether the sensor can be accessed externally in sensor information (public IP) | |
| 116215 | GN-26705 | Center | Electronic signature verification of update server distribution data via SLSA | |
| 115882 | GN-26786 | Center | Electronic signature verification for WSUSSCN2.CAB received from the update server | |
| 115309 | GN-26336 | Center | Improved so that RADIUS secondary authentication can be linked using ExtSVC | |
| 114491 | GN-26631 | Docker | Improved so that DKNS can run on Linux systems using nftables | |
| 114376 | GN-26043 | Sensor | Improved so that authentication and encryption algorithms can be selected when the SNMP Agent is running | |
| 114251 | GN-26328 | WebUI | Improved to include node group names when downloading node groups in Excel | |
| 114195 | GN-26568 | WebUI | Improved so that the node group conditions can be entered directly when setting the software name include/not included | |
| 113890 | GN-26359 | Windows Agent | Added a feature to force the use of Windows's 'Wi-Fi random hardware address option' | |
| 113812 | GN-26515 | Enforcer | DKNS Ubuntu 22.04 support | |
| 113812 | GN-26462 | WebUI | Improved so that customer information is not displayed on the management UI login screen | |
| 113812 | GN-26348 | WebUI | Improved the title of the node blocking rate status widget displayed in the control policy list | |
| 113812 | GN-26329 | Windows Agent | Added a feature that allows you to forcibly disable the Windows logon screen display settings when controlling the screen saver | |
| 113812 | GN-26321 | WebUI | A problem where the OS type combo box on the device group screen is output as an empty value | |
| 113812 | GN-26301 | WebUI | Improved info message style in the IP settings window that allows access | |
| 113812 | GN-26279 | WebUI | Dashboard widget added dialog UI/UX improvements | |
| 113812 | GN-26254 | WebUI | Improved so that ZTNA client information is displayed normally in a redundant environment | |
| 113812 | GN-26207 | Center, DKNS | Apply ztnaclient/urlfilter dynamic service port | |
| 113812 | GN-26192 | WebUI | SAML Service Provider Metadata Creation Function | |
| 113812 | GN-26186 | Center | Improved the part where the audit log type did not match due to event key mismatch | 5.0.33 |
| 113812 | GN-26183 | WebUI | Fixed so that the end date of use of the IP application system is not displayed by default on the same day when applying for an IP | |
| 113812 | GN-26171 | CWP | Improved so that the administrator's ID is not displayed in CWP announcements | |
| 113812 | GN-26148 | Center | Improved so that when the agent logs on, node information can be updated immediately if it is determined that the device is different from the existing node | |
| 113812 | GN-26139 | Sensor | Improved so that ZTNA client session management works when policy servers are redundant | |
| 113812 | GN-26123 | WebUI | Improved the part where millisecond values are output in the DateTime value of emails sent after listening to the user | |
| 113812 | GN-26104 | Center | [General-purpose OS] Improved the flow log collection function to work (Filebeat added) | |
| 113812 | GN-26037 | WebUI | Improved so that a reason input pop-up window appears when approving/rejecting on the user application details page | |
| 113812 | GN-26031 | Center, Database | Adding node group conditions using system information (motherboard) collected by agents | |
| 113812 | GN-25782 | Linux Agent | Linux Agent adds password validation action function | |
| 113812 | GN-25540 | GenianOS | Change the CA certificate validity period to 10 years | |
| 113812 | GN-25196 | Sensor | Implementation of VXLAN connection function between ZTNA gateways (sensors) | |
| 113812 | GN-24116 | WebUI | Added an API function linked to external services | |
| 113812 | GN-22197 | Center | Added a function to enable OAUTH 2.0 ROPC authentication |
Issues Fixed
| Revision | Key | Components | Description | Affects Versions |
|---|---|---|---|---|
| 117409 | GN-26213 | WebUI | An issue where an option value that does not change when assigning a node group after creating a node policy appears to have changed | 5.0.44 |
| 117204 | GN-26852 | Center, Genian Syncer | An issue where Mobilebrowser data cannot be updated when uploading Genie data via Syncer, and an issue where CVE data versions cannot be updated | 4.1.0 |
| 117179 | GN-26770 | Center, Sensor | [General-purpose OS] A problem where the sensor does not work as a distribution server | 5.0.29 |
| 116850 | GN-26839 | Center, Sensor | Policy Server/Sensor Memory Rick (Genie Update and Node Scan (https)) issues | 4.0.14 |
| 116693 | GN-26768 | WebUI | Node addition field - error not reflecting user selector setting options | 5.0.22 |
| 116649 | GN-26767 | WebUI | Missing license and notification message display | 6.0.0 |
| 116622 | GN-26816 | WebUI | An error where the output is broken if the nodegroup's CWP message has a tag | 5.0.37 |
| 116612 | GN-26779 | WebUI | A problem where a warning message is output even when the log server (elasticsearch) is in a normal state | 5.0.23 |
| 116606 | GN-26773 | WebUI | An issue where node group conditions do not work in the node list query API | 5.0.54, 6.0.14 |
| 116577 | GN-26758 | Windows Agent | If the agent runs on a local system, the Store app fails to be deleted through the program removal plug-in | 5.0.42, 6.0.0 |
| 115782 | GN-26749 | ElasticSearch | [General-purpose OS] An issue where ES does not run properly intermittently because communication with Elastic is blocked by the Iptables policy | 5.0.31 |
| 115635 | GN-26727 | Sensor | [General-purpose OS] A problem where a DHCP server that assigns the same DNS as the sensor is detected as an abnormal DHCP server | |
| 115608 | GN-26706 | WebUI | Modify the search popup to work when the 'Add Node Field - User Selector' option does not allow text entry | 5.0.22 |
| 115567 | GN-26748 | WebUI | Audit > An issue where the loading image does not disappear due to a JavaScript error when clicking Application Detail on the Flow list screen | 6.0.8 |
| 115370 | GN-26719 | WebUI | An issue where when creating a time object from the Policy > Object > Time menu causes the date to be stored incorrectly if the System Timezone and Administrator Timezone are different | 5.0.34 |
| 115297 | GN-26601 | WebUI | An issue where unused IPs cannot be selected in the matrix view when the administrator's management scope is set to a sensor group | 4.0.117, 5.0.14 |
| 115246 | GN-26739 | CWP | Your security key has already been generated during the CWP security key issuance process during the initial authentication after user registration in Google OTP 2-step authentication. A phenomenon where the phrase “” is displayed | 6.0.13 |
| 115118 | GN-26428 | Center | A problem that may fail depending on the OS type when upgrading the deb image through the console UI | 5.0.42, 6.0.12 |
| 115105 | GN-26571 | Enforcer | An issue where the blocking node appears to be communicating due to a SYN-ACK response from the sensor even when CWP is disabled | 5.0.0 |
| 115040 | GN-26660 | Docker, Sensor | A problem where the DKNS sensor is registered as a new sensor every time the IP is changed | 6.0.0 |
| 115019 | GN-26607 | GenianOS | The problem of not being able to connect to the Genian Monitor program from the IP that allows access to the management WEBUI | 5.0.42, 5.0.50, 5.0.53, 6.0.13 |
| 114878 | GN-26654 | macOS Agent | macOS screensaver settings are not enforced when users manually change them | 5.0.45, 6.0.2 |
| 114830 | GN-26409 | Linux Agent | Linux Agent, Agent-related UI behavior errors (tray icon, etc.) due to failure to collect login user information | 6.0.15, 5.0.55 (LTS) |
| 114819 | GN-26647 | WebUI | Fixed an issue where Disk column content was not displayed on the system management screen | 5.0.23 |
| 114639 | GN-25626 | WebUI | An issue where regular users are searched even when the visitor's email approval target is an administrator | 4.0.M8 |
| 114611 | GN-26629 | WebUI | A problem where the node management screen is moved through a quick search, and when performing a batch task after selecting all nodes, a message that no nodes have been selected is displayed | 4.0.114, 5.0.11 |
| 114555 | GN-25887 | WebUI | Subcategories are not displayed in the multi-level category structure within the status filter node group | 5.0.42, 5.0.45, 6.0.2 |
| 114516 | GN-26620 | Enforcer |
|
4.0.17 |
| 114498 | GN-26402 | Center, Sensor | An issue where the PROCMON daemon may hang when changing RADIUS settings | 6.0.3 |
| 114309 | GN-26597 | WebUI | A problem where query reports are not generated when the DB/Log server is separated | 5.0.37 |
| 114297 | GN-26532 | WebUI | Fixed an issue where the number of NIC vendor status did not match | |
| 114258 | GN-26609 | WebUI | An error occurs when registering a node using the node addition field (user selector-mapping column name) | 5.0.42, 5.0.50, 6.0.11 |
| 114230 | GN-26430 | WebUI | A problem where the department tree of the device usage application form does not appear in a cloud environment | 5.0.52, 6.0.13 |
| 114195 | GN-26465 | WebUI | An issue where existing settings are not selected as default values when modifying agent actions in node group conditions | 5.0.45 |
| 114195 | GN-26440 | WebUI | There is no change in the tag, but the node details are also updated and processed when the node details are modified | 5.0.22, 6.0.4 |
| 114195 | GN-26425 | WebUI | A problem where the data does not include the parent department when selecting the user department in the node group condition | 5.0.35 |
| 114150 | GN-26280 | Center | A problem where a multi-sensor device is registered in an approved state when re-registered after deleting it | 6.0.8, 5.0.50 |
| 114063 | GN-26566 | WebUI | An issue where the changed information was updated and not displayed when the tab was moved after updating the node information | 5.0.50 |
| 114007 | GN-26531 | WebUI | An issue where the tree list for all users by department does not appear | 6.0.7 |
| 113966 | GN-26587 | WebUI | Fixed an issue where the content in the node management department name column was not displayed properly | 6.0.5, 5.0.50 |
| 113812 | GN-26677 | Center | Unable to perform control actions within permission policies and Windows Firewall uncontrollable errors | 6.0.13 |
| 113812 | GN-26655 | WebUI | An error page occurred when exporting node management to Excel in the Compose version | 5.0.48, 6.0.6 |
| 113812 | GN-26549 | Sensor | Intermittent dnsmasq daemon restart symptoms | 6.0.12, 5.0.53 |
| 113812 | GN-26497 | Windows Agent | If you turn off server certificate verification for the wireless profile (EAP-TTLS) in the wireless connection manager, you cannot connect | 5.0.49, 6.0.7 |
| 113812 | GN-26411 | ulogd | A problem where disk capacity is insufficient due to a problem where logrotate does not work with ULOGD debug logs | 6.0.0 |
| 113812 | GN-26377 | WebUI | Fixed an issue where batch sensor settings and operation modes were not applied | 6.0.8 |
| 113812 | GN-26363 | WebUI | A problem where the session expiration page is output and node information is not displayed properly when connecting to CWP | 6.0.15 |
| 113812 | GN-26350 | Center | A problem where the sensor is not authenticated because RADIUS is not automatically allowed when using the general-purpose OS ZTNA client | 6.0.10 |
| 113812 | GN-26335 | Windows Agent | An issue where the agent tray icon is not displayed when connecting remotely to a PC | 5.0.0, 6.0.0 |
| 113812 | GN-26317 | WebUI | An error occurred when adding the same conditions to the user/new application option in the visitor's purpose settings | 4.0.11 |
| 113812 | GN-26288 | WebUI | An error where the list output becomes strange after modifying a custom field | 4.0.11 |
| 113812 | GN-26272 | Center | SMTP authentication integration - Abnormal user authentication issue when using [account] @ [domain] ID format | 5.0.53 |
| 113812 | GN-26250 | Linux Agent | Linux Agent misses gathering some network interface information | 5.0.51, 6.0.12 |
| 113812 | GN-26236 | WebUI | Node Details Software Information Tab Pagination ui Unification | 6.0.4, 6.0.9 |
| 113812 | GN-26204 | Center | Problems with "File read failed.ERRMSG=Isa directory" debug during policy server installation | 5.0.42, 4.0.152 |
| 113812 | GN-26194 | Sensor | A problem where IPTABLES is created in duplicate when changing http/https port settings | 4.0.17 |
| 113812 | GN-26190 | Sensor | An issue where TCP packets are blocked in a redundant environment | 6.0.15 |
| 113812 | GN-26181 | Linux Agent | Linux Agent, an issue where the tray icon is not displayed when switching to a user who is already logged in | 5.0.41, 6.0.0 |
| 113812 | GN-26097 | WebUI | A problem where node management does not proceed when exporting to Excel | 4.0.2 |
| 113812 | GN-25955 | WebUI | A problem where some information is missing when copying device group policies | 6.0.3, 5.0.46 |
| 113812 | GN-25916 | Center | A problem where the number of IPs that can be assigned decreases after ZTNA authentication replacement fails | 6.0.14 |
| 113812 | GN-25148 | WebUI | Error where WebUI smart help settings are not displayed | 5.0.49, 6.0.7 |
| 113318 | GN-26444 | WebUI | Symptoms of not being able to search for Hangul in the software settings window under node group conditions | 5.0.35 |