You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: docs/release-notes/8.18.asciidoc
+27-1Lines changed: 27 additions & 1 deletion
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -1,13 +1,36 @@
1
1
[[release-notes-header-8.18.0]]
2
2
== 8.18
3
3
4
+
[discrete]
5
+
[[release-notes-8.18.5]]
6
+
=== 8.18.5
7
+
8
+
[discrete]
9
+
[[enhancements-8.18.5]]
10
+
==== Enhancements
11
+
* Adds the `detection_rule_upgrade_status` object to snapshot telemetry schema ({kibana-pull}223086[#223086]).
12
+
* Reduces {elastic-defend} CPU usage when processing events from the System process on Windows.
13
+
* Reduces {elastic-defend} CPU usage for ETW events, API events, and Behavioral Protections. In some cases, this may be a significant reduction.
14
+
* Allows {elastic-defend} to automatically recover in some situations when it loses connectivity with {agent}.
15
+
* Shortens the time it takes {elastic-defend} to recover from a `DEGRADED` status caused by communication issues with {agent}.
16
+
* Improves {elastic-defend} malware scan queue efficiency on Windows by not blocking scan requests when an oplock for the file being scanned cannot be acquired.
17
+
* Due to an issue in macOS, {elastic-defend} would sometimes send network events without `user.name` populated. {elastic-defend} will now identify these events and populate `user.name` if necessary.
18
+
19
+
[discrete]
20
+
[[bug-fixes-8.18.5]]
21
+
==== Fixes
22
+
* Improves UI copy for the "bulk update with conflicts" modal ({kibana-pull}227803[#227803]).
23
+
* Fixes an issue where {elastic-defend} would fail to enable network events on Linux if IPv6 is not supported by the system.
24
+
* Fixes an issue in {elastic-defend} that could result in a crash if a {ls} output configuration contains a certificate that cannot be parsed.
25
+
4
26
[discrete]
5
27
[[release-notes-8.18.4]]
6
28
=== 8.18.4
7
29
8
30
[discrete]
9
31
[[enhancements-8.18.4]]
10
32
==== Enhancements
33
+
* Adds the `elastic_customized_total`, `elastic_noncustomized_total`, and `is_customized` fields to snapshot telemetry schema ({kibana-pull}222370[#222370]).
11
34
* Improves logging of fatal exceptions in {elastic-defend}.
12
35
* Allows {elastic-defend} users to control the maximum file size for malware protection using the `advanced.malware.max_file_size_bytes` advanced policy setting.
13
36
@@ -23,7 +46,6 @@
23
46
* Refactors Timeline styling for improved consistency with design updates ({kibana-pull}222438[#222438]).
24
47
* Fixes a bug where the **Rules**, **Alerts**, and **Fleet** pages would stall in air-gapped environments ({kibana-pull}220510[#220510]).
25
48
* Fixes a bug where unmodified prebuilt rules installed before v8.18 didn't appear in the **Upgrade** table when the **Unmodified** filter was selected ({kibana-pull}227859[#227859]).
26
-
* Improves UI copy for the "bulk update with conflicts" modal ({kibana-pull}227803[#227803]).
27
49
* Fixes an issue in {elastic-defend} that may result in bugchecks (BSODs) on Windows systems with a very high volume of network connections.
28
50
29
51
[discrete]
@@ -50,6 +72,10 @@ For more information, check https://github.com/elastic/endpoint/issues/90[#90]
50
72
Upgrade to the fixed version: https://www.elastic.co/downloads/past-releases/elastic-agent-8-18-3+build202507101319[8.18.3+build202507101319].
51
73
52
74
If you're unable to upgrade or downgrade, set the `advanced.kernel.network` advanced setting to `false` in your {elastic-defend} integration policy.
![mergify[bot]](https://avatars.githubusercontent.com/in/10562?v=4&size=40){kind=avatar}
0 commit comments