Does anyone know where I find more information about this bug: CPATR-10685? We reported an issue where if the malware scan is running a dll cannot be loaded twice because Cortex XDR will block it and were given this bug number, but I cannot find it anywhere in the known or addressed issues.
The fact that a dll is only allowed to be accessed ONCE during a malware scan means that if a developer or automated build process build an application twice while the malware scan is running, the builds will fail because Cortex is locking the files. This is really disrupting our production.
The referenced case, CPATR-10685, does not appear to be a known issue typically published here for the server and here for the agent. The lack of inclusion indicates that the issue you're encountering is likely particular to your environment. Additionally, it appears that you have a severe issue of which is impacting your production environment. As such, the recommendation here would be to open a case with Support to inquire about the case's progress and its resolution as soon as possible. In fact, I would highly recommend giving them a call to speak with an engineer as soon as possible at one of the following numbers to discuss:
Hello @gjenkins and thank you for your response!
I don't think that the issue is particular to our environment. We have tried it in all sorts of machines including fresh OS installs and it can happen to anyone. The preconditions are
So, it is not particular to our environment.
We communicated with support beginning February and their response was that this is a bug and they don't have a workaround for it and that there will be a fix in next release. Next release (7.3) came out and we didn't find anything regarding it. We contacted support again, and their response this time was "[fix] is planned to be released in version 7.4 ... [but] support team does not have knowledge regarding roadmap plans".
I'm glad to hear that you've opened up a communication line to get more information regarding CPATR-10685. Please be sure to request updates regarding your break/fix issue via Support cases which they will hopefully resolve soon. If you find that you need general product guidance, do reach out.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!