Incident Description: Under some conditions if a malformed policy is delivered to an endpoint, it will fail to load the policy and cease communication with the SEPM Incident Description: Exported scan logs sometimes show a scan duration of 0 Incident Description: Cloud-managed agents may encounter a LiveUpdate error when proxy settings are defined Incident Description: IPS Audit Signatures changed from Allow to Block may result in an error message in the client logs “Failed to set a custom action for IPS signature (errcode=0x80004005).” Incident Description: 14.3 RU4 SEPM does not distribute SONAR content to 14.3 RU3 and older endpoints when the content is delivered via JDB
Incident Description: Endpoint Status Home Page is missing some Windows 10 clients Incident Description: Creating a Deception report results in being returned to the Login screen Incident Description: “Query Failed” observed and OS Information field is missing for some clients in a Computer Status Report Incident Description: Audit Logs show an incorrect timestamp value when Audit Details are viewed for a specific event Incident Description: Content Distribution Monitor shows incorrect latest version for IPS signatures Incident Description: PolicyandClientGroupTool unable to resolve a broken link in TdadPolicy Incident Description: PolicyandClientGroupTool unable to resolve a broken link in SemGroupPolicy
Incident Description: Policy serial number intermittently updates after replication completion Incident Description: Unable to add Recorder Group Exceptions for client groups that have subgroups Incident Description: 64-bit client installation package disappears from list of available packages after upgrading Incident Description: Immediately after upgrading, SONAR definitions are reported as “Out of date” in generated reports Incident Description: Synchronizing with the Integrated Cyber Defense Manager intermittently fails with a connection or certificate error message Incident Description: “Unexpected Error – Internal Server Error” observed when attempting to download a file from quarantine Incident Description: Upgrading to the latest version with the embedded database option results in a rollback if a $ character is in the user name Incident Description: Windows 10 Enterprise for Virtual Desktops displays as Windows Server 2016 Incident Description: Intermittent LiveUpdate failure observed under constrained network conditions Incident Description: “Security Alert: Suspicious Activity” intermittently triggered due to request authorization failure Incident Description: Centralized Exceptions policy for Linux “Also exclude subfolders” checkbox disappears after being checked Incident Description: Weekly Status or Executive Weekly Summary Report never displays content under “Less than 24Hrs” Incident Description: Content Distribution Monitor shows incorrect latest versions during phased releases of new content engines.
Incident Description: License expired displayed on cloud-managed agents in some scenarios after upgrading to 14.3 RU5. Incident Description: ccSvcHst.exe instances launch for each user session when configured otherwise after upgrading to 14.3 RU5.
Incident Description: EAPOL traffic is blocked after upgrading to 14.3 RU5.
Additional fixes for 14.3 RU5 Refresh (.5000) Symantec Endpoint Protection (Windows)