Kaspersky Security Center 11 (version 11.0.0.1131): patch B
Patch B for Kaspersky Security Center 11 was released on September 26, 2019.
Patch B includes:
- patch_11_0_0_1131_console_b — patch for Administration Console that must be installed on a device that has Administration Console installed without Administration Server.
- patch_11_0_0_1131_nagent_b.zip — patch for Network Agent that must be installed on a managed device that has stand-alone Network Agent installed without Administration Server.
- patch_11_0_0_1131_server_b.zip — patch for Administration Server that must be installed on a device designated as the Administration Server. This component includes patches for Administration Console and Network Agent.
- patch_11_0_0_1131_ios_mdm_b.zip — patch for iOS MDM Server.
How to install patch "B"
- Run the executable file of the patch.
- To initiate the installation in silent mode, run the patch with the "-s" key.
You can also download the installer with the integrated patch B on the downloads page.
How to check if the patch is installed
How to check using the version report
- Open Kaspersky Security Center and go to the Reports tab.
- Select Kaspersky Lab software version report and open its properties.
- Go to Fields for report and open the Details fields tab.
- Select the Updates installed checkbox.
- Click OK.
The information about the installed patch will be shown in the version report.
How to check using file comparison for Administration Console
- Open the destination folder of Administration Console.
- Make sure that the version of these files is identical to the version specified below:
- Version 11.0.0.6083 for klakaut.exe, klakcon.dll, klcskca2.dll, klcssrvp2.dll, klcsstd2.dll, klcstr2.dll, klcurl.dll, klola.dll, klqrcgen.dll, klriwrap.exe, klsrvplg.dll
- Version 10.0.1.8 for kllibeay2017.dll, klssleay2017.dll
- Version 11.0.0.1 for kllibssh2017.dll
- kllibssh2.dll, which is 0 bytes of size
- Make sure that no errors are logged into the Kaspersky Event Log.
If the file versions match, then the patch for Administration Console have been installed successfully.
How to check using file comparison for Network Agent
- Open the destination folder of Network Agent.
- Make sure that the version of these files is identical to the version specified below:
- Version 11.0.0.6083 for klcskca2.dll, klcsnagt.dll, klcssa.dll, klcsstd2.dll, klcstr2.dll, klcurl.dll, up2date.exe
- Version 10.0.1.8 for klssleay2017.dll, kllibeay2017.dll
- Version 11.0.0.1 for kllibssh2017.dll
- kllibssh2.dll, which is 0 bytes of size
- Make sure that no errors are logged into the Kaspersky Event Log.
If the file versions match, then the patch for Network Agent have been installed successfully.
How to check using file comparison for Administration Server
- Open the destination folder of Administration Server.
- Make sure that the version of these files is identical to the version specified below:
- Version 11.0.0.6083 for klakaut.exe, klakcon.dll, klcloud.dll, klcskca2.dll, klcsnagt.dll, klcssa.dll, klcssrv.dll, klcssrvp2.dll, klcsstd2.dll, klcstr2.dll, klcsweb.exe, klcurl.dll, kldb_mssql.dll, kldb_mysql.dll, klfc.exe, klmailer.dll, klola.dll, klpxeut.exe, klqrcgen.dll, klsrvplg.dll, up2date.exe
- Version 10.0.1.8 for klssleay2017.dll, kllibeay2017.dll
- Version 11.0.0.1 for kllibssh2017.dll
- Make sure that no errors are logged into the Kaspersky Event Log.
If the file versions match, then the patch for Administration Server have been installed successfully.
How to check using file comparison for iOS MDM Server
- Open the destination folder of iOS MDM Server.
- Make sure that the version of these files is identical to the version specified below:
- Version 11.0.0.6083 for kliosmdmservicesrv2.exe
- Version 1.0.0.1 for kliosbackup.exe
- kllibssh2.dll, which is 0 bytes of size
- Make sure that no errors are logged into the Kaspersky Event Log.
If the file versions match, then the patch for iOS MDM Server have been installed successfully.
Fixes and improvements
- We have added support for devices running under iOS 13.
- We have fixed the vulnerabilities in the third-party libraries that could potentially decrease the application protection level:
- CVE-2019-1552
- CVE-2019-1543
- CVE-2019-3855
- CVE-2019-3856
- CVE-2019-3857
- CVE-2019-3858
- CVE-2019-3859
- CVE-2019-3860
- CVE-2019-3861
- CVE-2019-3862
- CVE-2019-3863
- CVE-2018-16839
- CVE-2018-16840
- CVE-2018-16842
- CVE-2019-3823
- CVE-2019-3822
- CVE-2018-16890
- CVE-2019-5436
- CVE-2019-5443
- CVE-2019-5481
- CVE-2019-5482
- CVE-2018-20505
- CVE-2018-20506
- CVE-2018-20346
- CVE-2019-9936
- CVE-2019-9937
- CVE-2019-8457
- CVE-2018-16391
- CVE-2018-16392
- CVE-2018-16393
- CVE-2018-16418
- CVE-2018-16419
- CVE-2018-16420
- CVE-2018-16421
- CVE-2018-16422
- CVE-2018-16423
- CVE-2018-16424
- CVE-2018-16425
- CVE-2018-16426
- CVE-2018-16427
- CVE-2019-1559
- CVE-2018-5407
- EOS-OPENSSL102-20191231
- CVE-2019-11358
- CVE-2014-5461
- CVE-2018-1000300
- CVE-2018-1000301
- CVE-2018-1000122
- CVE-2018-1000121
- CVE-2018-1000120
- CVE-2018-1000007
- CVE-2018-1000005
- CVE-2017-8817
- CVE-2017-8816
- CVE-2017-1000257
- CVE-2017-1000254
- CVE-2017-1000101
- CVE-2017-1000100
- CVE-2017-1000099
- CVE-2018-0500
- CVE-2018-14618
- CVE-2018-16839
- CVE-2018-16842
- CVE-2019-3823
- CVE-2019-3822
- CVE-2018-16890
- CVE-2019-5436
- CVE-2019-5481
- CVE-2019-5482
- CVE-2015-9251
- CVE-2019-11358
- CVE-2019-7317
- CVE-2017-12652
- CVE-2018-14550
- CVE-2019-1010266
- CVE-2019-10744
- CVE-2018-10172
- CVE-2019-15903
- CVE-2017-11742
- We have fixed an error that could lead to a Zip Slip attack when the user is creating installation package from the Kaspersky Security Center 11 Web Console file.
- We have fixed an error that prevented Windows Update synchronization task from running in case the user utilizes Administration Server under a 32-bit Windows operating systems as a WSUS systems.
- The "Find vulnerabilities and required updates" task can now run after restoring from backup even if the backup was created with an older version of the application.
- We have fixed an error that caused update conflict between Windows and Kaspersky Security Center.
- We have fixed an error that prevented the "Install required updates and fix vulnerabilities" task from running.
- We have fixed an error that prevented the "Install application remotely for a device selection" task from running on virtual Administration Servers.
- We have fixed an error that caused unavailability and restart of Administration Server under high loads.
- The "Install application remotely" task notifications will now appear normally.
- We have fixed an error that caused the appearance of redundant messages about changes in the assignment status of distribution points.
- We have fixed an error that triggered the "#1687 File transfer module not initialized" message upon starting the Network Agent services.
- The Administration Server will now function uninterrupted while running the "Download updates to the repository" task, even in case the task was created in Kaspersky Security Center of version lower than 11.
- We have fixed an error that caused distribution points to assign incorrectly after using the klmover utility.
- We have fixed an error that made it impossible to change certain parameters when creating a policy for the Light Agent of Kaspersky Security for Virtualization.
- We have fixed an error that allowed users with limited rights to enable or disable the policy for Kaspersky Security for Virtualization.
- We have fixed an error that could prevent application uninstallation from running properly.
- The Administration Servers hierarchy will now work as intended after updating to Kaspersky Security Center 11.
- We have fixed an error that prevented the transmission of statistics from an Amazon Web Services (AWS) instance to the AWS Marketplace Metering Service.
- We have fixed an error that caused temporary unavailability and subsequent restart of Network Agent.
- The "Download updates to the repository" task will now run normally after updating to Kaspersky Security Center 11 by creating a backup copy.
- We have fixed an error that prevented Network Agent from connecting to Administration Server upon exiting the sleep mode.
- We have fixed an error that caused temporary unavailability of Network Agent and memory leakage when entering and exiting the sleep mode.
- We have fixed an error that caused automatic removal of the klnagent service from the device during an update of the operating system.
- We have fixed errors that caused the increased load on the Administration Server database.
- The information about the "Install application remotely" task completion will be displayed as intended now.
- We have fixed errors that caused Administration Console to slow down and freeze when the load on Administration Server increased.
- We have fixed an error that triggered the "Violation of UNIQUE KEY constraint ‘UQ_appctrl_exefile_kl_cat’" message.
- The application update task with the When new updates are downloaded to the repository schedule type will now run normally, even with the Use automatically randomized delay for task starts option enabled.
- We have fixed an error that caused duplication of messages in the report on the encryption status of managed devices.
- We have fixed an error that caused "{22003} Arithmetic overflow error converting expression … dsh_hosts_found_hist" messages to appear in the event log.
- We have fixed an error that prevented creation of a report on the encryption status of mass storage devices in Portuguese (pt-BR) localization of the application.
- We have fixed an error that sometimes prevented updates of the databases in the Kaspersky Endpoint Security installation package.
- The Administration Console will now function as intended when opening the properties of the "Download updates to the repository" task.
- We have fixed an error that caused Administration Server to crash during a check for updates.
- We have fixed an error that prevented the automatic deletion of temporary files.
- We have fixed an error that prevented checking for updates.
- We have fixed an error that caused the hardware registry to be displayed as empty.
- We have fixed an error that prevented the Restart is required device statuses from being saved.
- We have fixed an error that caused Private KSN to fail on virtual Administration Servers.
- We have fixed errors that caused the poor performance of the application integration with ArcSight.