Three vulnerabilities in Threat Intelligence Exchange (TIE) Server have been discovered and resolved.

AFFECTED SOFTWARE

• TIE Server 1.2.1 and earlier

REMEDIATED/PATCHED VERSIONS
These vulnerabilities are remediated in these versions:

• 1.3.0  
• 2.0.0  

IMPACT

• CVE-2016-0728 (CVSS: 6.7; Severity: Medium) Privilege Escalation
• CVE-2015-3165 (CVSS: 4.3; Severity: Medium) Denial of Service
• CVE-2015-3166 (CVSS: 3.1; Severity: Low) Information Leak / Disclosure

RECOMMENDATION
Intel Security recommends that all customers verify that they have applied the latest updates. Impacted users should install the relevant patches or hotfixes. For full instructions and information, see Knowledge Base article SB10182, [Intel Security - Security Bulletin: Threat Intelligence Exchange server 1.3.0 update fixes a Linux Kernel Flaw (CVE-2016-0728) and two PostgreSQL vulnerabilities (CVE-2015-3165 and CVE-2015-3166)(https://kc.mcafee.com/corporate/index?page=content&id=SB10182)

MOVE 4.5 and Cloud Workload Discovery 4.5 are now available. This release includes new features, fixes, and enhancements including:

New features for MOVE 4.5

• Adds support for Server 2016
• MOVE Agentless Targeted On-Demand Scan
• SHA 256 support for Threat Intelligence Exchange (TIE) integration

New features for Cloud Workload Discovery 4.5

• Host assessment policy
• Support for VMware vCenter cloud instances
• IP traffic connection reputation for AWS instances
• Volume discovery for AWS instances

To download MOVE 4.5 and/or Cloud Workload Discovery 4.5, go to the Product Downloads site at: http://www.mcafee.com/us/downloads/downloads.aspx.  

For a full list of changes, see the Release Notes:

• PD26804 - Management for Optimized Virtual Environments AntiVirus 4.5.0 Release Notes (https://kc.mcafee.com/corporate/index?page=content&id=PD26804)

PD26792 - Cloud Workload Discovery 4.5.0 Release Notes (https://kc.mcafee.com/corporate/index?page=content&id=PD26792)

McAfee Drive Encryption 7.2.0 is now available. This release includes new features, fixes, and enhancements including:

• Intel Software Guard Extensions (SGX) support - Increases the security of software by providing a (hardware-based) additional level of protection. For details see KB87256: https://kc.mcafee.com/corporate/index?page=content&id=KB87256
• Compatibility with third party credential providers - Third parties can leverage the new Drive Encryption SDK to provide seamless integration, login and synchronization.
• In-place Upgrade support for Windows 10 Anniversary Update. See KB87909: https://kc.mcafee.com/corporate/index?page=content&id=KB87909    
• McAfee SSO shield toggle on/off option - Provides the ability to remove the shield from being displayed.
• Support for Gemalto MD830 smart card and Safenet eToken 5110 tokens.
• New dashboard and reports for activation failures

To download McAfee Drive Encryption 7.2.0, go to the Product Downloads site at: http://www.mcafee.com/us/downloads/downloads.aspx.   

For additional information see the Release Notes in PD26652: https://kc.mcafee.com/corporate/index?page=content&id=PD26652.

For a list of Known Issues, see KB84502: https://kc.mcafee.com/corporate/index?page=content&id=KB84502.

Advanced Threat Defense (ATD) 3.8 and 3.10 are now available. These releases include new features, fixes, and enhancements including:

• Continued “Best in class” efficacy
• Comprehensive Windows OS support
• Usability enhancements
• Increased SOC efficiency

Additionally, ATD 3.10 adds:

• VMware vSphere ESXi Hypervisor software support
• Support for the smallest to the largest deployments with the availability of 4 different sized instances from 8 sandboxes to 64 sandboxes

To download ATD 3.8 and 3.10, go to the Product Downloads site at: http://www.mcafee.com/us/downloads/downloads.aspx   

For a full list of changes, see the 3.8 Release Notes in PD26829: https://kc.mcafee.com/corporate/index?page=content&id=PD26829

For a full list of changes for vATD, see the 3.10 Release Notes in PD26827: https://kc.mcafee.com/corporate/index?page=content&id=PD26827

For a list of 3.8 Known Issues, see KB88246: https://kc.mcafee.com/corporate/index?page=content&id=KB88246

For a list of 3.10 Known Issues, see KB88247: https://kc.mcafee.com/corporate/index?page=content&id=KB88247

Intel Security announces the End of Life (EOL) for the following versions of ePolicy Orchestrator (ePO):

• ePO 5.1 effective December 31, 2017
• ePO 5.3 effective June 30, 2018

Intel Security recommends upgrading to EPO 5.9 to benefit from the latest software developments and to avoid interruption of product support. For more information, see KB88252 (https://kc.mcafee.com/corporate/index?page=content&id=KB88252 ).
The McAfee EOL product list and policy is available at: http://mcafee.com/us/support/support-eol.aspx

Original announcement: December 15, 2016

Intel Security announces the End of Life (EOL) for McAfee VirusScan Enterprise For Linux 1.9.0, 1.9.1, 2.0.0, 2.0.1, and 2.0.2 effective  December 31st
2016.
Intel Security recommends upgrading to 1.9.2 & 2.0.3 benefit from the latest software developments, and to avoid interruption of product support.
[OPTIONAL] See KB86212 for details (https://kc.mcafee.com/corporate/index?page=content&id=KB86212)
The McAfee EOL product list and policy is available at: http://mcafee.com/us/support/support-eol.aspx

A new Database Vulnerability Manager content update v121 has been released.

This update includes:

• New URM check for MSSQL databases to review privileged logins information

The content update is cumulative and available within the product, either via automatic updates, or by manual action.