[Outdated] Cortex XDR Agent

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

[Outdated] Cortex XDR Agent

L1 Bithead

Hello,

 

Can somebody explain what [Outdated] means in Cortex XDR Agent Installation console?

Annotation 2022-09-08 181824.png

 

Our team is aware of agent lifecycle/EOL dates, and we're wondering what outdated means and how its related to its actual lifecycle.

 

Thank you

Jes Yang
2 REPLIES 2

L2 Linker

Hi @JonathanYang_RX ,

When there is any newer release by product team, the earlier release agent version shown as outdated.

The new Agent Installer (7.8.0.64267) for Windows as an example, replaces the previous installer version (7.8.0.64264). The build number has been updated.
This is a completely new agent installer that you will be using moving forward to upgrade your agents.

The old installer (7.8.0.64264) is now marked as outdated if you already have the installer file created in XDR Web Console. You also cannot download the outdated installer file anymore from the Web Console. However if you have already downloaded the old version and still using it to install on your computers, the Cortex XDR Agent will continue to be installed and will continue to register successfully with the XDR Server.

The new version (7.8.0.64267) replaces the old version. Any new agent installation, please make use of the new installer file.
For the computers that are still running the old 7.8 build, you will still need to perform an agent upgrade to get them to the newest version (7.8.0.64267) in this example.


I hope this helps answer your questions.
Please mark this post as solution if you found it helpful.

L4 Transporter

Hi @JonathanYang_RX ,

 

The agent versions of 7.7.3 and 7.8.0 receieved hotfixes and the old versions were pulled out because of some issues observed on the agent service. Whenever there is a newer version(accurate to build numbers of the agent),  Cortex XDR shows the previous versions as outdated. You will also observe that the package create earlier in the screenshot has grayed out and removed by Palo Alto Networks for the same reason. You should have an email as well from our product team which was sent yesterday::

 

 

Dear customer,

 

Following our email sent a few days ago we would like to share the full list of the hotfix versions. This hotfix is addressing a specific use case with the current 7.8 and 7.7.3 versions, that may lead to a leak in storage usage by the Cortex XDR agent. This issue seems to occur on machines generating many executables but does not affect your security posture and is only related to performance.

 

Fixed versions

7.8

Windows - 7.8.0.64267

Mac - 7.8.0.2407

Linux - 7.8.0.74226

 

7.7.3

Windows - 7.7.3.9739

Mac - 7.7.3.2366

Linux - 7.7.3.74512

 

 

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!