From b532236cd2e3d2f1839f69f4dbed8cbeeff15f0e Mon Sep 17 00:00:00 2001 From: natasha-moore-elastic Date: Tue, 22 Jul 2025 09:35:39 +0100 Subject: [PATCH 1/2] [Security] 9.0.4 release notes --- release-notes/elastic-security/index.md | 16 ++++++++++++++++ 1 file changed, 16 insertions(+) diff --git a/release-notes/elastic-security/index.md b/release-notes/elastic-security/index.md index 834ac23021..67d95a270a 100644 --- a/release-notes/elastic-security/index.md +++ b/release-notes/elastic-security/index.md @@ -27,6 +27,22 @@ To check for security updates, go to [Security announcements for the Elastic sta % * +## 9.0.4 [elastic-security-9.0.4-release-notes] + +### Features and enhancements [elastic-security-9.0.4-features-enhancements] +* Improves logging of fatal exceptions in {{elastic-defend}}. + +### Fixes [elastic-security-9.0.4-fixes] +* Fixes differences between risk scoring preview and persisted risk scores [#226456]({{kib-pull}}226456). +* Updates a placeholder and validation message in the **Related Integrations** section of the rule upgrade flyout [#225775]({{kib-pull}}225775). +* Excludes {{ml}} rules from installation and upgrade checks for users with Basic or Essentials licenses [#224676]({{kib-pull}}224676). +* Allows using days as a time unit in rule schedules, fixing an issue where durations normalized to days were incorrectly displayed as 0 seconds [#224083]({{kib-pull}}224083). +* Strips `originId` from connectors before rule import to ensure correct ID regeneration and prevent errors when migrating connector references on rules [#223454]({{kib-pull}}223454). +* Fixes an issue that prevented the AI Assistant Knowledge Base settings UI from displaying [#225033]({{kib-pull}}225033). +* Fixes a bug in {{elastic-defend}} where Linux network events would fail to load if IPv6 is not supported by the system. +* Fixes an issue in {{elastic-defend}} that may result in bugchecks (BSODs) on Windows systems with a very high volume of network connections. This issue has only been observed on Windows Server. +* Fixes an issue where {{elastic-defend}} may incorrectly set the artifact channel in policy responses, and adds `manifest_type` to policy responses. + ## 9.0.3 [elastic-security-9.0.3-release-notes] ### Features and enhancements [elastic-security-9.0.3-features-enhancements] From 0c3e036cc28414a7ce52616cda36bffa8e821fa3 Mon Sep 17 00:00:00 2001 From: natasha-moore-elastic Date: Tue, 22 Jul 2025 15:14:07 +0100 Subject: [PATCH 2/2] removes incorrect statement --- release-notes/elastic-security/index.md | 2 +- release-notes/elastic-security/known-issues.md | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/release-notes/elastic-security/index.md b/release-notes/elastic-security/index.md index 67d95a270a..c307d142a2 100644 --- a/release-notes/elastic-security/index.md +++ b/release-notes/elastic-security/index.md @@ -40,7 +40,7 @@ To check for security updates, go to [Security announcements for the Elastic sta * Strips `originId` from connectors before rule import to ensure correct ID regeneration and prevent errors when migrating connector references on rules [#223454]({{kib-pull}}223454). * Fixes an issue that prevented the AI Assistant Knowledge Base settings UI from displaying [#225033]({{kib-pull}}225033). * Fixes a bug in {{elastic-defend}} where Linux network events would fail to load if IPv6 is not supported by the system. -* Fixes an issue in {{elastic-defend}} that may result in bugchecks (BSODs) on Windows systems with a very high volume of network connections. This issue has only been observed on Windows Server. +* Fixes an issue in {{elastic-defend}} that may result in bugchecks (BSODs) on Windows systems with a very high volume of network connections. * Fixes an issue where {{elastic-defend}} may incorrectly set the artifact channel in policy responses, and adds `manifest_type` to policy responses. ## 9.0.3 [elastic-security-9.0.3-release-notes] diff --git a/release-notes/elastic-security/known-issues.md b/release-notes/elastic-security/known-issues.md index 3cd7efbde6..dba32e7b4e 100644 --- a/release-notes/elastic-security/known-issues.md +++ b/release-notes/elastic-security/known-issues.md @@ -36,7 +36,7 @@ Instead of trying to pull the image from `docker.elastic.co/beats/elastic-agent: **Applies to: {{agent}} 8.17.8, 8.18.3, and 9.0.3** -On July 8, 2025, a known issue was discovered in Elastic Defend's network driver that may lead to kernel pool corruption, resulting in bug checks (BSODs) on Windows systems with a large number of long-lived network connections that remain inactive for 30+ minutes. This issue has only been observed on Windows Server. +On July 8, 2025, a known issue was discovered in Elastic Defend's network driver that may lead to kernel pool corruption, resulting in bug checks (BSODs) on Windows systems with a large number of long-lived network connections that remain inactive for 30+ minutes. The system may bug check with any of a variety of codes such as `SYSTEM_SERVICE_EXCEPTION` or `PAGE_FAULT_IN_NONPAGED_AREA`.