You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: defender-endpoint/linux-whatsnew.md
+10-10Lines changed: 10 additions & 10 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -2,11 +2,11 @@
2
2
title: What's new in Microsoft Defender for Endpoint on Linux
3
3
description: List of major changes for Microsoft Defender for Endpoint on Linux.
4
4
ms.service: defender-endpoint
5
-
ms.author: deniseb
6
-
author: denisebmsft
5
+
ms.author: ewalsh
6
+
author: emmwashh
7
7
ms.reviewer: kumasumit, gopkr
8
8
ms.localizationpriority: medium
9
-
ms.date: 02/20/2025
9
+
ms.date: 03/11/2025
10
10
manager: deniseb
11
11
audience: ITPro
12
12
ms.collection:
@@ -57,7 +57,7 @@ This article is updated frequently to let you know what's new in the latest rele
57
57
58
58
What's new
59
59
60
-
- The MDATP package rollout into production will be done gradually. This would mean, from the time the release notes are published, it might take upto a week for the package to be pushed to all production machines.
60
+
- The MDATP package rollout into production will be done gradually. From the time the release notes are published, it might take up to a week for the package to be pushed to all production machines.
61
61
62
62
- The vulnerability in curl, CVE-2024-7264, has been addressed.
63
63
@@ -116,10 +116,10 @@ What's new
116
116
- Enabled: When eBPF is enabled as working as expected.
117
117
- Disabled: When eBPF is disabled due to one of the following reasons:
118
118
- When MDE is using auditD as a supplementary sensor
119
-
- When eBPF is not present and we fallback to Netlink as supplementary event provider
120
-
- There is no supplementary sensor present.
119
+
- When eBPF isn't present and we fallback to Netlink as supplementary event provider
120
+
- There's no supplementary sensor present.
121
121
122
-
- Beginning with 2411, the MDATP package release to Production on `packages.microsoft.com` follows a gradual rollout mechanism which spans over a week. The other release rings, insiderFast and insiderSlow, are unaffected by this change.
122
+
- Beginning with 2411, the MDATP package release to Production on `packages.microsoft.com` follows a gradual rollout mechanism which spans over a week. The other release rings, insiderFast, and insiderSlow, are unaffected by this change.
123
123
124
124
- Stability and performance improvements.
125
125
@@ -231,7 +231,7 @@ There are multiple fixes and new changes in this release.
231
231
232
232
There are multiple fixes and new changes in this release.
233
233
234
-
- This release fixes a bug related to high memory usage eventually leading to high CPU due to eBPF memory leak in kernel space resulting in servers going into unusable states. This only impacted the kernel versions 3.10x and <= 4.16x, majorly on RHEL/CentOS distros. Update to the latest MDE version to avoid any impact.
234
+
- This release fixes a bug related to high memory usage eventually leading to high CPU due to eBPF memory leak in kernel space resulting in servers going into unusable states. This only affected the kernel versions 3.10x and <= 4.16x, majorly on RHEL/CentOS distros. Update to the latest MDE version to avoid any impact.
235
235
236
236
- We have now simplified the output of `mdatp health --detail features`
237
237
@@ -1353,7 +1353,7 @@ As an alternative approach, follow the instructions to [uninstall](linux-resourc
1353
1353
1354
1354
##### What's new
1355
1355
1356
-
- Added a capability to detect vulnerable log4j jars in use by Java applications. The machine is periodically inspected for running Java processes with loaded log4j jars. The information is reported to the Microsoft Defender for Endpoint backend and is exposed in the Vulnerability Management area of the portal.
1356
+
- Added a capability to detect vulnerable Log4j jars in use by Java applications. The machine is periodically inspected for running Java processes with loaded Log4j jars. The information is reported to the Microsoft Defender for Endpoint backend and is exposed in the Vulnerability Management area of the portal.
@@ -1363,7 +1363,7 @@ As an alternative approach, follow the instructions to [uninstall](linux-resourc
1363
1363
1364
1364
##### What's new
1365
1365
1366
-
- Added a new switch to the command-line tool to control whether archives are scanned during on-demand scans. This can be configured through mdatp config scan-archives--value [enabled/disabled]. By default, this setting is set to enabled.
1366
+
- Added a new switch to the command-line tool to control whether archives are scanned during on-demand scans. This can be configured through mdatp config scan-archives--value [enabled/disabled]. By default, this setting is set to enabled.
0 commit comments