ePolicy Orchestrator (ePO) 5.9 and Pre-Installation Auditor (PIA) 2.0 are now available. This release includes new features, fixes, and enhancements including:

• Improved installation
• Enhanced Event storage
• Policy history
• Certificate Manager for sha1 to sha2 migration. See KB87017 for important details on certificate manager: https://kc.mcafee.com/corporate/index?page=content&id=KB87017

To download ePO 5.9 or PIA 2.0 go to the Product Downloads site at: http://www.mcafee.com/us/downloads/downloads.aspx.   

Intel Security announces the End of Life (EOL) for McAfee Enterprise Security Manager – Version 9.5.x effective November 30, 2017.

Intel Security recommends upgrading to Enterprise Security Manager – Version 9.6 or Version 10.0 to benefit from the latest software developments, and to avoid interruption of product support.

See KB88803 for details (https://kc.mcafee.com/corporate/index?page=content&id=KB88803)

The EOL product list and policy is available at: http://mcafee.com/us/support/support-eol.aspx
​

ePO 5.3.2 HF1185471 is now available. This release includes new features, fixes, and enhancements including:

• Excessive “Notify Agent” errors in audit log.
• Broken Syslog registered server functionality: Port details are not saved during registered server setup.

To download EPO 5.3.2 HF1185471, go to the Product Downloads site at: http://www.mcafee.com/us/downloads/downloads.aspx   

For a full list of changes, see the Release Notes in PD26932:
https://kc.mcafee.com/corporate/index?page=content&id=PD26932
​

​McAfee Anti-Malware Scan Engine 5900 with important enhancements for ENS 10.x endpoints. Use the instructions provided in this article to evaluate the engine for ePolicy Orchestrator (ePO) managed and standalone ENS endpoints.

The 5900 Engine will be deployed worldwide to ENS endpoints from May 4 – May 24, 2017, in a staggered rollout. This engine update is mandatory. ENS endpoints that are currently running the 5800 Engine will be updated to the 5900 Engine starting May 4, 2017. Customers who are interested in evaluating the new engine are asked to start the evaluation process beginning the first week in March.

The software files listed above are available from the following locations:
•    https://www.mcafee.com/apps/downloads/security-updates/security-updates.aspx?

For additional information , please refer to the following McAfee Knowledgebase Articles:

KB66741-Important information about the 5.x.00 Anti-Malware Scan Engine
( https://kc.mcafee.com/corporate/index?page=content&id=KB66741)
KB88809 - Important information about the 5900 Anti-Malware Scan Engine update for Endpoint Security (https://kc.mcafee.com/corporate/index?page=content&id=KB88809)

Virtual Advanced Threat Defense 3.10.2 is now available. This release includes new features, fixes, and enhancements including:

• Enhanced virtual machine monitoring using VMWare Tools
• Bug fixes (see the Release Notes in PD26922)

To download vATD 3.10.2 (system-3.10.2.10.59529.msu), go to the Product Downloads site at: http://www.mcafee.com/us/downloads/downloads.aspx  

For a full list of changes, see the Release Notes in PD26922: https://kc.mcafee.com/corporate/index?page=content&id=PD26922

For a list of Known Issues, see KB88247: https://kc.mcafee.com/corporate/index?page=content&id=KB88247

McAfee SiteAdvisor 3.5 patch 5 repost 2 is now available. This release includes all fixes in patch 5 and patch 5 repost.

It also adds support for current versions of Firefox (51 and 52).

Firefox 51 made changes that broke the SiteAdvisor extension in Firefox.

To download McAfee SiteAdvisor 3.5 patch 5 repost 2, go to the Product Downloads site at: http://www.mcafee.com/us/downloads/downloads.aspx

For a list of supported SAE environments, see KB51244: https://kc.mcafee.com/corporate/index?page=content&id=KB51244
​

McAfee Host IPS 8.0 for Linux Patch 10 is now available. This release includes new features, fixes, and enhancements including:

• Fixed kernel panic on the RHEL servers when deploying Host IPS 8.0 Patch 9 and HF1164232.
• Adds support for SELinux.
• Updated kernel support for RHEL, Amazon, CentOS, OEL, and SLES Linux.

To download Host IPS 8.0 for Linux Patch 10, go to the Product Downloads site at:
http://www.mcafee.com/us/downloads/downloads.aspx

For a full list of changes, see the Release Notes in PD26911: https://kc.mcafee.com/corporate/index?page=content&id=PD26911

A vulnerability in Advanced Threat Defense (ATD) has been discovered and resolved.
AFFECTED SOFTWARE

• ATD 3.6.x and earlier

REMEDIATED/PATCHED VERSIONS
The vulnerability is remediated in these versions:

• ATD 3.8.0 and later  

IMPACT

• CVE-2017-3899
  SQL Injection in ATD Linux 3.6.0 (and earlier) allows remote authenticated users to obtain product information via a crafted HTTP request parameter. The ATD 3.8.0 release resolves this vulnerability. Intel Security highly recommends that all customers upgrade to the latest version of ATD.

RECOMMENDATION
Intel Security recommends that all customers verify that they have applied the latest updates. Impacted users should install the relevant patches or hotfixes. For full instructions and information, see Knowledge Base article SB10189, Intel Security - Security Bulletin: Advanced Threat Defense update fixes SQL Injection vulnerability (CVE-2017-3899) (https://kc.mcafee.com/corporate/index?page=content&id=SB10189