- if you have re-enabled the security features such as Anti-Malware real-time protection.
- if you have updated the Kernel Support Package.
- Deep Security Agent 20.0 GM (188.8.131.527) and newer (released on 2020/07/30)
- Deep Security Agent 12.0 Linux kernel support 184.108.40.2061 and newer (released on 2020/08/18)
To verify if your DSA is using this driver version you may run the command below and compare it with the tmhook version stated above.
$ cat /proc/driver/bmhook/tmhook/version # query the TMHook version
The fix is included in the following DSA versions:
- Deep Security 20 Linux kernel support 220.127.116.113
- Deep Security Agent 18.104.22.1682
- Deep Security 12 Linux kernel support 22.214.171.1242
To avoid the issue as much as possible, please perform the procedure below to upgrade Deep Security Agent safely.
1. Turn off security features: Integrity Monitoring (real-time), Anti-Malware (real-time), Application Control, and Activity Monitoring
2. Upgrade DSA to the version that includes the fix (or import KernelSupport)
3. Send policy to DSA
4. Reboot the machine so third party and the old Deep Security kernel modules will get unloaded
5. Turn on the security features