12/18/2015

These release notes provide additional guidance for SolarWinds® Log and Event Manager v6.2.0 Service Release 1 (v6.2.1).

Contents

New Features and Improvements

Version Requirements

Fixed Issues

Known Issues

Version History

Legal

New Features and Improvements

The LEM 6.2.1 service release includes new bug fixes, as well as the following features and improvements released with LEM 6.2.0:

Version Requirements

Installations that vary in size may require additional or fewer resources. For information about sizing and resource requirements, see "Requirements" in the Log & Event Manager Deployment Guide.

Before you install this service release, ensure that your hardware and software meet the minimum resource requirements.

Virtual Appliance

Software and Hardware Requirements
Virtualization Platform

VMware® vSphere Hypervisor ESX®/ESXi™ 4.0 or later

Microsoft® Hyper-V Server 2008 R2

Microsoft Hyper-V Server 2012

Microsoft Hyper-V Server 2012 R2

CPU Speed 2.0 GHz or greater
Memory 8 GB
Hard Drive Space

250 GB is recommended for small deployments

2.0 TB is recommended for large deployments

Reports Console and Manager

Software and Hardware Requirements
Operating System

Windows Server® 2008

Windows Server 2008 R2

Windows Server 2012

Windows Server 2012 R2

Processor

Two 2.0 GHz 64-bit processors (for small deployments)

Twelve 2.0 GHz 64-bit processors (for large deployments)

Memory

8 GB (for small deployments)

128 GB (for large deployments)

Hard Drive Space 250 GB
Environment Variables Ability to install all software with administrator rights

Web Console

Software Requirements
Adobe® Flash® Flash Player 15
Supported Web Browsers

Internet Explorer® 9 and later

Mozilla Firefox® 10 and later

Google Chrome™ 17 and later

Note: Using Internet Explorer 10 to access a Reports Console or Manager running Windows Server 2012 is not supported.

Desktop Console

Software Requirements
Operating System

Windows® Vista

Windows 7

Windows 8

Windows 10

Runtime Environment Adobe Air® 18

Fixed Issues

IssueCase Number
Unable to back up the LEM database after installing v6.2.

861546, 865557, 876159,
881491, 884294
Vulnerability in OpenSSL 1.0.2 that mishandles the carry propagation and produces incorrect output. This issue was reported by the National Vulnerability Database (CVE-2015-3193).

N/A
(LEM Database Server) The server requires additional Java Archive (JAR) files to function properly.

N/A
(LEM Manager) The DNS settings are not preconfigured, causing LEM Manager to run out of memory.

N/A
(LEM Manager) Vulnerability to an XML external entity injection through the agent message-processing service. This issue was reported by Digital Defense® Inc. (DDIVRT-2015-55).

N/A
(LEM Syslog Server) The server requires additional JAR files to function properly.

N/A

Known Issues

IssueCase Number
(LEM Agent and LEM Manager) The Rapid7® NeXpose® connector is not functioning properly.

N/A
The File Integrity Monitoring (FIM) registry log is corrupted when log event names include a space character.

N/A
The Agent service stops immediately after installing InstallAnywhere™ and running for 20 minutes. In both cases, the service restarts after 120 seconds, and then runs flawlessly.

N/A
Unmatched security data occurs during MS-SQL auditor installation.

N/A
nDepth behaves inconsistently when you toggle between Text Input mode and Drag and Drop mode.

N/A
Exporting a filter to nDepth with certain data string text values can cause data mismatches.

This issue occurs because nDepth only supports comparing these fields to boolean values. For example, the isThreat field is set to a boolean value but the filter conditions allow comparing the isThreat field against the string text values true or false, as well as boolean values true or false. To avoid data mismatches, make sure the filter is set only to boolean values true or false before you import the filter to nDepth.

N/A
One of the following errors may occur when restarting snort:
- An error occurred. Exiting.
- The following error occurred: ERROR: Cannot start snort on interface eth0.

N/A
Windows 10 appears in the LEM Console as Windows 8.1.

N/A
LEM 6 Adobe Flash vulnerability exists in the crossdomain.xml policy file.

674720

Version History

LEM Release Notes Version 6.2

LEM Release Notes Version 6.1

LEM Release Notes Version 6.0.1

LEM Release Notes Version 6.0

LEM Release Notes Version 5.7

LEM Release Notes Version 5.6

LEM Release Notes Version 5.5

LEM Release Notes Version 5.4

LEM Release Notes Version 5.2

Legal