github fleetdm/fleet fleet-v4.45.0
on GitHub

latest releases: orbit-v1.36.0-1-build-test, fleet-v4.59.0, orbit-v1.35.1-rc-build-test...
8 months ago

Critical Bug Report

Fleet Premium users

There is a bug in Fleet v4.45.0 affecting the MacOS MDM automatic setup flow when user authentication is enabled.

If you are using Fleet's MDM for MacOS, please skip this release and upgrade to fleet-v4.45.1.

Changes

  • Endpoint operations:

    • Updated policy names to be unique per team.
    • Updated fleetd-chrome to use the latest wa-sqlite v0.9.11.
    • Updated "Add hosts" modal UI to dynamically include the --enable-scripts flag.
    • Added count of upcoming activities to host vitals UI.
    • Updated UI to include upcoming activity counts in host vitals.
    • Updated 405 response for POST requests on the root path to highlight misconfigured osquery instances.

  • Device management (MDM):

    • Added MDM command payloads to the response of GET /api/_version_/fleet/mdm/commandresults.
    • Changed several MDM-related endpoints to be platform-agnostic.
    • Added script capabilities to UI for Linux hosts.
    • Added UI for locking and unlocking hosts managed by Fleet MDM.
    • Added fleetctl mdm lock and fleetctl mdm unlock commands.
    • Added validation to reject script enqueue requests for hosts without fleetd.
    • Added the host_mdm_actions DB table for MDM lock and wipe functionality.
    • Updated backend MDM migration flow and added logging.
    • Updated UI text for disk encryption to reflect cross-platform functionality.
    • Renamed and updated fields in MDM configuration profiles for clarity.
    • Improved validation of Windows profiles to prevent delivery errors.
    • Improved Windows MDM profile error tooltip messages.
    • Fixed MDM unlock flow and updated lock/unlock functionality for Windows and Linux.
    • Fixed a bug that would cause OS Settings verification to fail with MySQL's only_full_group_by mode enabled.

  • Vulnerability management:

    • Windows OS Vulnerabilities now include a resolved_in_version in the /os_versions API response.
    • Fixed an issue where software from a Parallels VM would incorrectly appear as the host's software.
    • Implemented permission checks for software and software titles.
    • Fixed software title aggregation when triggering vulnerability scans.

Bug fixes and improvements

  • Updated text and style across the app for consistency and clarity.
  • Improved UI for the view disk encryption key, host details activity card, and "Add hosts" modal.
  • Addressed a bug where updating the search field caused unwanted loss of focus.
  • Corrected alignment bugs on empty table states for software details.
  • Updated URL query parameters to reset when switching tabs.
  • Fixed device page showing invalid date for the last restarted.
  • Fixed visual display issues with chevron right icons on Chrome.
  • Fixed Windows vulnerabilities without exploit/severity from crashing the software page.
  • Fixed issues with checkboxes in hidden modals and long enroll secrets overlapping action buttons.
  • Fixed a bug with built-in platform labels.
  • Fixed enroll secret error messaging showing secret in cleartext.
  • Fixed various UI bugs including disk encryption key input icons, alignment issues, and dropdown menus.
  • Fixed dropdown behavior in administrative settings and software title/version tables.
  • Fixed various UI and style bugs, including issues with long OS names causing table render issues.
  • Fixed a bug where checkboxes within a hidden modal were not correctly hidden.
  • Fixed vulnerable software dropdown from switching back to all teams.
  • Fixed wall_time to report in milliseconds for consistency with other query performance stats.
  • Fixed generating duplicate activities when locking or unlocking a host with scripts disabled.
  • Fixed how errors are reported to APM to avoid duplicates and improve stack trace accuracy.

Upgrading

Please visit our update guide for upgrade instructions.

Documentation

Documentation for Fleet is available at fleetdm.com/docs.

Binary Checksum

SHA256 

452ef95ff3475ce13c5533a13d6f3e084ec940091c710a75a335d2cdf47ce846  fleet_v4.45.0_linux.tar.gz
c8d5f96c3f1d9054427004f52d87d081f0bd05e4f104eaee857c10bab7400c2d  fleetctl_v4.45.0_linux.tar.gz
ef67236f50b717490ba2d02669aac749eab81b805285e5780cb691006f26f742  fleetctl_v4.45.0_linux.zip
950ecb779365ffc85a6eba98a8d8dd5dfad765692385a2f59bc93ddbf13a489a  fleetctl_v4.45.0_macos.tar.gz
0cfb5b4de55c4affbc5df2d949015300f554d0eca7bb925a79db14997d5c18e2  fleetctl_v4.45.0_macos.zip
035a602153cd10af0c370d9863749b006a2590a7c274bb1cb698016a98ccab3f  fleetctl_v4.45.0_windows.tar.gz
f0585309751d285f47ef51783422235b20248a430dc6daca9d13e4755fd02721  fleetctl_v4.45.0_windows.zip
Check out latest releases or
releases around fleetdm/fleet fleet-v4.45.0

Don't miss a new fleet release

NewReleases is sending notifications on new releases.

Get notifications