From 4792a1dd9dd819f23d80b0589800d0bb0c971e28 Mon Sep 17 00:00:00 2001 From: Nastasha Solomon <79124755+nastasha-solomon@users.noreply.github.com> Date: Tue, 26 Nov 2024 04:09:22 -0500 Subject: [PATCH 1/2] 8.15.5 release notes (#6223) * First draft * Minor editorial fixes * Styling fixes (cherry picked from commit 321011ff4cf942cbdacd858943f8668b79712a6a) # Conflicts: # docs/release-notes/8.15.asciidoc --- docs/release-notes.asciidoc | 1 + docs/release-notes/8.15.asciidoc | 22 +++++++++++++++++++++- 2 files changed, 22 insertions(+), 1 deletion(-) diff --git a/docs/release-notes.asciidoc b/docs/release-notes.asciidoc index 72b6d6a4e3..c60a100248 100644 --- a/docs/release-notes.asciidoc +++ b/docs/release-notes.asciidoc @@ -5,6 +5,7 @@ This section summarizes the changes in each release. * <> * <> +* <> * <> * <> * <> diff --git a/docs/release-notes/8.15.asciidoc b/docs/release-notes/8.15.asciidoc index 92f1462f2a..9edd94f4ac 100644 --- a/docs/release-notes/8.15.asciidoc +++ b/docs/release-notes/8.15.asciidoc @@ -1,6 +1,22 @@ [[release-notes-header-8.15.0]] == 8.15 +[discrete] +[[release-notes-8.15.5]] +=== 8.15.5 + +[discrete] +[[bug-fixes-8.15.5]] +==== Bug fixes +* Ensures that only the asset criticality index is refreshed after you bulk upload asset criticality data ({kibana-pull}200897[#200897]). +* Fixes {agent} to {elastic-defend} communication on endpoints using a proxy. With this fix, localhost TCP traffic should skip any proxies. +* Fixes a time skew bug that occurs when Linux virtual machines that are using eBPF event probes are suspended and then resumed. +* Fixes an {elastic-defend} bug where Windows API events might be dropped if they contain Unicode characters that can’t be converted to ANSI. +* Fixes a bug where {elastic-defend} could fail to properly enrich Windows API events for short-lived processes on older operating systems that don’t natively include this telemetry, such as Windows Server 2019. This might result in dropped or unattributed API events. +* Ensures that {elastic-defend} does not emit an empty `memory_region` if it can’t enrich a memory region in an API event. With this fix, {elastic-defend} removes these fields. +* Enhances {elastic-defend} by improving the `call_stack_final_user_module` attribution where potential `proxy_call` modules are encountered during Windows call stack analysis. + + [discrete] [[release-notes-8.15.4]] === 8.15.4 @@ -147,6 +163,7 @@ On October 17, 2024, this issue was resolved. * Fixes an {elastic-defend} regression that was introduced in 8.14.0, where security events did not populate the `user.name` field. This fix is for Windows endpoints only. * Fixes an {elastic-defend} bug where {elastic-endpoint} sometimes missed file and network events on newer kernels that support eBPF. This only occurred if {elastic-endpoint} failed to enable eBPF probes and fell back to Kprobes. This fix is for Linux endpoints only. * Fixes a bug that caused errors if you used Azure OpenAI connector for streaming ({kibana-pull}191552[#191552]). +* Fixes a bug that caused Elastic AI Assistant's responses to sometimes include tags when using Bedrock Sonnet 3.5. * Fixes a bug that prevented duplicated prebuilt rules from inheriting **Required fields** and **Related integrations** field values ({kibana-pull}191065[#191065]). * Turns off the option to assign users to an alert if no assignees exist ({kibana-pull}190937[#190937]). * Fixes a bug that prevented Timeline template settings from being applied to new Timelines that were generated by a rule ({kibana-pull}190511[#190511]). @@ -169,12 +186,15 @@ On October 17, 2024, this issue was resolved. *Details* + On August 1, 2024, it was discovered that Elastic AI Assistant's responses when using Bedrock Sonnet 3.5 may include `` tags, for example `` ({kibana-issue}189676[#189676]). +<<<<<<< HEAD *Workaround* + Upgrade to 8.15.1. *Resolved* + On September 5, 2024, this issue was resolved. +======= +>>>>>>> 321011ff (8.15.5 release notes (#6223)) ==== // end::known-issue-189676[] @@ -221,7 +241,7 @@ On September 5, 2024, this issue was resolved. A bug prevented third-party response actions with CrowdStrike from working. *Workaround* + -Upgrade to 8.15.1 or later. +Upgrade to 8.15.1. ==== // end::known-issue-crowdstrike-response-actions[] From fad2ea9819aa5bc247eda8009d231c7e1165fd3e Mon Sep 17 00:00:00 2001 From: "nastasha.solomon" Date: Tue, 26 Nov 2024 11:41:11 -0500 Subject: [PATCH 2/2] fixes conflict --- docs/release-notes/8.15.asciidoc | 3 --- 1 file changed, 3 deletions(-) diff --git a/docs/release-notes/8.15.asciidoc b/docs/release-notes/8.15.asciidoc index 9edd94f4ac..15d695b8cf 100644 --- a/docs/release-notes/8.15.asciidoc +++ b/docs/release-notes/8.15.asciidoc @@ -186,15 +186,12 @@ On October 17, 2024, this issue was resolved. *Details* + On August 1, 2024, it was discovered that Elastic AI Assistant's responses when using Bedrock Sonnet 3.5 may include `` tags, for example `` ({kibana-issue}189676[#189676]). -<<<<<<< HEAD *Workaround* + Upgrade to 8.15.1. *Resolved* + On September 5, 2024, this issue was resolved. -======= ->>>>>>> 321011ff (8.15.5 release notes (#6223)) ==== // end::known-issue-189676[]