LDMS 9.6 Service Pack 3 Readme

EXCEPT AS RESTRICTED BY LAW, THE SOFTWARE PROGRAMS CONTAINED IN THE PATCH ARE PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESSED OR IMPLIED, INCLUDING BUT NOT LIMITED TO, ANY IMPLIED WARRANTIES OF MERCHANTABILITY, TITLE OR FITNESS FOR A PARTICULAR purposE.

Service Pack 3

There are a several patches required when applying Service Pack 3. This table outlines the various patches and where they should be run.

Component	Core/Console	Client

The following outlines instructions for installing this update.

This patch requires that LDMS 9.6 be installed. For more information about current service packs please see LANDESK Community Doc 1001

Installing on the Core and Rollup Core

Because ADS may block files on Windows systems, it is recommended that you extract the patch on the machine you are going to install it on.

Prior to installing a patch on the Core Server it is recommended to make a backup of the LANDESK database.

Steps

Disable any services on other machines that interact with the Core Server
Double-click on the self-extracting executable and extract it
Extract the files for the Core patch
From the extracted files, run Setup.exe
When Setup completes, reboot the machine if a reboot is required
After applying the patch, you may need to re-activate your Core Server using the Core Server Activation Utility
Restart any services stopped in Step 1

Note: The installer included with this release writes a detailed log that can be used to help troubleshoot installation problems. After running setup.exe from the patch, the log is located in the \ManagementSuite\log folder.

Installing on Remote Consoles

A Remote Console is any machine that is not the Core Server and has the LANDESK Management Suite Console installed. Console Machines need to be updated to be able to connect to the updated Core Server and Database.

Because ADS may block files on Windows systems, it is recommended that you extract the patch on the machine you are going to install it on.

Steps

Close the Console
Double-click on the self-extracting executable and extract it
Extract the files for the appropriate patch
From the extracted files, run Setup.exe
When Setup completes, reboot the machine if a reboot is required

Note: The installer included with this release writes a detailed log that can be used to help troubleshoot installation problems. After running setup.exe from the patch, the log is located in the \ManagementSuite\log folder.

Updating the Agent

The patch should be installed on the Core Server before updating Agents

Use one of the following methods to re-deploy the agent once the patch has been applied to the Core or to apply the patch manually.

Methods of agent deployment

Manual: Map a drive to \\Coreserver\ldlogon and run 'wscfg32.exe -f'
This is used for single client installs and testing
Push: Schedule a push of the full agent
Self-Contained EXE: Create an EXE that can be installed
Advance Agent: This is a two stage process. The Advance Agent consists of a small MSI and a self-contained EXE. The MSI is deploy to the client and then the MSI downloads and installs the EXE. This allows for bandwidth friendly downloads.

For more information on agent configuration and deployment see LANDESK Community Doc 23482

Manual installation of the client patch

Because ADS may block files on Windows systems, it is recommended that you extract the patch on the machine you are going to install it on.

Double-click on the self-extracting executable and extract it
Extract the files for the appropriate patch
From the extracted files, run Setup.exe
When Setup completes, reboot the machine if a reboot is required.

Updating the Agent With Patch Manager

LANDESK Patch Manager can also be used to update agent machines with the patch. Content and definitions can be found in Patch Manager as LANDESK Updates and can be used to detect and repair agents that have not been updated. The Core Server must be updated with the Core patch before updating agents.

Not all Component Patches will have Patch Manager Content created. Once it is generally available, this method can be used to update agents. For more information about updating agents using LANDESK Patch Manager see LANDESK Community Doc 24384

Please review the following important information about this release BEFORE installing this update.

More Information

For more information on changes introduced by this patch please see LANDESK Community Doc 33725

Please note that some ID values for fixes may have changed.

Feature Changes and Updates

Windows 10

This update provides support for Windows 10 clients
- -

Antivirus

Upgrade to KES10 SP1 MR2 (10.2.4.674) to support Windows 10 - Requires the latest agent CP2015-1223 to install KES10 SP1 MR2
- Upgrading KES requires a reboot. UI may not always refresh automatically, so you may need to press Shift-F5 to refresh UI to see rebranded UI.
  KES10 SP1 or newer clients get the pattern files from \ldlogon\antivirus8\Win\basesEP10 and pre-KES10 SP1 will continue to get the pattern files from \ldlogon\antivirus8\Win\basesEP.
  The scheduled task to download the pattern files ‘LANDESK Antivirus Updates’ should be upgraded to include all 5:
  - - LANDESK Antivirus Updates -> Mac AV
  - - LANDESK Antivirus Updates -> Windows AV vulnerability definitions (AV-###)
  - - Antivirus current -> KES10 SP1 MR2
  - - Antivirus 9.5 or legacy -> pre-KES10 SP1
  - - Antivirus 8.8 or 9.0 -> SDK version
  If the clients are not updating AV definitions, it’s good to check if AV definitions on the core are updated.
  MacAV (KES8 with patchM) has a known issue. If report dialog is resized, AV will crash.

Software Distribution

Add the Task Status Scrubber to LDMS 9.6
- Checks the client device for active policies made available from the core, verifies their state and compares it to what the core is reporting. If the core reports “active” and no active policy for the task is running on the client, the task scrubber will force a failure on the core for the associated task.

Endpoint Security

Added new ransomware and encrypting malware protection
- Added new features to better protect endpoints against ransomware and/or encrypting malware. More information can be found in Community Doc 41486

Defects Fixed

Agent Configuration

239287 Mirror driver installed even when box not checked in agent config
- Fixed issue in client config in which the RC mirror driver would get installed where the option was selected in the RC install settings or not.
- panelmanager.dll
279334 Taskhistory.xml is removed when a reinstall of the agent occurs
- Taskhistory.xml is preserved when upgrading the agent on a Windows client.
- wscfg32.exe
283253 LDISCN32 crashes if a path before the equals sign is longer than 512 bytes in the invdelta.dat file
- Fixed crash in ldiscn32.exe if a file path if longer than than 512 bytes in invdelta.dat.
- ldiscn32.exe
285383 Reboot Settings | Reboot Deadline | Option Checkbox does not stay unchecked.
- when auto reboot is disabled, the existing auto reboot name/value pairs will be removed so that the settings is saved correctly.
- patchmanagement.dll
289823 Under certain conditions, on some computers, Local Scheduler may not properly trigger logon based events
- Corrected a version problem with LDSystemEventCapture.dll so that it correctly registers the right version with COM same as the file version. If the wrong version is registered, it causes logon events to not be received by the local scheduler service. This fixes that problem.
- LDSystemEventCapture.dll
305052 In some cases the agent installation may fail to register Management Agent Service (i.e. CBA8)
- Added time_t value to cba8 install log to make it unique and won't get overwritten by subsequent installs. Like this: cba8inst_msi_<timet value here>.log
- rainstall.exe
308492 Fail to enable and start 'LANDesk AdaptiveSettings Service' after Security Scan
- Removed BridgeIT Health from LDMS 9.6 SP2 and LDMS 9.6 SP3.
- .
339776 Installing XDD on Server 2012 R2 may bluescreen the Device
- Updated winpcap to version 4.1.3.
- wpcap.dll packet.dll npf.sys wpcap64.dll packet64.dll npf64.sys arpapi.dll (Used by XDDClient.exe)

Agent Health

316741 Some Agent Health functions may fail due to a reboot key
- Ensure that the vulscan reboot key gets deleted from the registry on a reboot.
- vulscan.exe vulscan.sig (10.x only) vulscan.dll
329219 Agent Health Content not available for LDMS 9.6 SP2
- the version string that we set in the tasks and patchSources.Xml to 962 from 961. Renamed the methods to be generic. Defined constants to be replaced in a single location so we don't miss anything when upgrading next time.
- patchbiz.dll, vaminer.exe
331174 LDMS96SP1.BASEAGENTINSTALL.1 definition that repairs CBA cannot run if CBA service is not properly installed and running
- Changed the SharedTech vuldef to only try to stop the CBA8 service if it is present. If it isn't present, it shouldn't fail the vuldef when it tries to shut it down before the file copy. CR: LM
- Patch content hosted on our content servers. LDMS96SP2.BASEAGENTINSTALL.1.ldms

Agent-Core

215858 Scanning for LDMS96SP2.BASEAGENTINSTALL.1 fails to detect LANDESK Windows Agent Health Base Agent as an Affected Product. Creates false positive
- Enhanced the way that vulscan gets the version of the core by calling GetfileVersionCore with a special macro that indicates it should get the core version instead of a file version. CoreVersion= GetFileVersionCore("#LDMSCoreVersion")
- PatchBiz.dll - Paul H WSVulnerabilityCore.dll - Paul H vuldef content - Lester
278602 Agent Settings may fail to CalculateHash, causing agents to not download updated settings
- Call the new GetMD5Hash function in LDHashUtil_x64.dll. Use crypto for SHA1 at this time.
- patchbiz.dll ldhashutil_x64.dll
282894 Package still runs old file if the preferred server is not updated with the changed files.
- Fixed an issue where a software distribution job doesn't download the latest file from source if it changed. Previously, it could still download an old copy from a preferred server.
- lddwnld.dll

Agent-Mac

215720 Shipping NBI builder in post 9.6 SP2 patches
- -

AMT-vPro

212105 vPro KVM functionality fails on core upgraded from 9.5 to 9.6 SP1
- The project was including an incorrect header file that caused the data structures between two dll's to be misaligned.
- oobcredwrap_x86.dll
255070 Selecting multiple devices at once to setup and configure vpro causes an attempt to vpro-provision all vpro devices instead
- Add new method to realize the "selected vpro devices" action
289633 vPro 10 & 11 devices cannot be provisioned by LDMS 9.6 & 10
- Updates to remote secure erase

Antivirus

154395 LDAV Update stops if unable to connect to google.com
- Added an option in AV settings to specify an alternate URL to check for internet connection. When the client downloads pattern files from internet, it checks for internet connection first by trying to connect to google, landesk and kaspersky sites. if it
- AVBiz.dll AVUI.dll ldav.exe
264904 Cannot install AV on osx 10.11
- Removed check to not allow installation of KES8 on OS X 10.11. Also fixed path problem in code to use /usr/local/bin/kav to apply license and update pattern files. Upgraded to wksmac8_0_9_1017mlng_de_en_es_fr_it_ja_pt_ru.patch_l to support OSX 10.11. Append full path to kav in the code of ldav so ldav can launch kav with command line correct
- ldinstallav ldav
282768 'Database out of date' and 'Obsolete' configuration cannot pulled to client side
- updated property values for database out of date and obsolete.
- ldav.exe
282820 AV settings tab is showing an extra option (should not be there) "Integrity check" shows in ENU but missing on all foreign languages
- These files been added for localization. fde.loc fdert_loc.dll flags.loc fle.loc pmv_loc.dll sfx_loc.dll integrity_check.loc toasts.loc
- integrity_check.loc toasts.loc Added as is (English and partially translated). fde.loc fdert_loc.dll flags.loc fle.loc pmv_loc.dll sfx_loc.dll
282823 UNLOC AV settings showing "System Watcher" in ENU
- -
- custom_dlgs.loc hips.loc tools.loc
283122 Test file was quarantined on the client, but was not listed in "Quarantined infections by virus (or by computer)" on the core
- updated ldav to retrieve quarantined items/back up items for KES10 SP1 or newer. make sure not to include port number in submitAVInfo xml name.
- ldav.exe
283128 "LANDESK Antivirus action center" displayed error
- Removed a reference to LDAV 10.0.
- AVUI.dll
283136 AV can't be installed in an Outlook machine
- This is a known windows start menu refresh problem. LANDESK AV shortcut is really created, but not showing until start menu refreshes. LANDESK AV shortcut created under here: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LANDESK Management I’ve found that you can restart Windows Explorer to manually refresh start menu. Loc team has reported that LANDESK AV shortcut doesn’t show up sometimes, but after 2 hours it shows up, so maybe after 2 hours, start menu refreshes automatically… Rebooting a machine will also refreshes too.
283151 JPN/FRA/CHS-Truncation in LANDESK AV setting->Scheduled Tasks->Update
- AVUI.dll
- AVUI.dll
283238 Some features of Kaspersky Antivirus are not disabled like EPS, KSN and Vulscan
- This is a known windows start menu refresh problem. LANDESK AV shortcut is really created, but not showing until start menu refreshes.
285434 Prevent LANDESK AV upgrade on 9.6 agents
- For 9.6 environment LANDESK AV requires min version of 9.6 SP2 CP2015-1223 agent to be able to install. For 10.0 environment LANDESK AV requires min version of 10.0 agent to be able to install. This will prevent LANDESK AV from automatically upgrading on 9.6 clients if 9.6 SP2 vulnerability definition is set to autofix.
- vulscan.dll
295201 Some AV installs may download many files after installation
- Extracts bases files from install\setup\bases.cab to antivirus\temp_bases8\landesk so that ldav update task does not need to download all bases files.
- ldav.exe (kavsetuphelper.cpp) vulscan.dll (vulscan.cpp, kavsetup.cpp and kavsetup.h)
302591 Real-time scanning activity may not appear in the Security Activity view
- Make sure the parameter is not NULL before getting its value
- LDAV.exe
311917 Getbases.exe fails to download bases via proxy server with authorization
- Kaspersky support engineer provides us a newer Updater SDK to fix this defect. Details: We found out that due to a bug in Updater SDK, getbases.exeutility fails to authorize on a proxy server and fails with error “Not enoughpermissions. (2) (2)”. Getbases.exe is a LANDesk utility based on Kaspersky UpdaterSDK which downloads AV bases to the core server. It is located in “C:\ProgramFiles\LANDesk\ManagementSuite\ldlogon\antivirus8” folder. This issue is fixed in the Updater SDK 8.5.1.14and later versions, so consider upgrading.
- GetBases.exe Antivirus.cab
318375 AV-100 failed to get the Mcafee Antivirus info on Win10 client
- Updated ldavhlpr.dll
- ldavhlpr.dll

Audit

210825 Can't import archived auditing data from the shipping 9.6 SP1 console
- Fixed Auditing to archive data
- LANDesk.Auditing.Archive.dll

Console

214882 LANDesk Security Certificate (LANDesk_##.crt) may not be created properly in the Core server where the OS Organization uses the double-byte character set
- genkey.exe dummy certkeyname ... /orgreg will read the organization from the registry (64-bit hive) and will ignore the 'dummy' argument (which was left in place for compatibility reasons). Get usage info with: genkey.exe | more
- genkey.exe (Sharedtech)
295199 Remote console only: "Copy to other core(s)" menu needs to be disabled on Roles' right-click menu.
- Updated scopes
- LANDesk.ManagementSuite.WinConsole.dll

Content Replication

154195 Content replication fails to replicate folders defined as source if they contain special characters such as '&' in their names
- modify xcmdline.cpp to support specifying a delimiter so I can tell it to use & for query strings (passed in as part of the URI). It's a decent parser that already ignores the delimiter if found within quotes. I was previously doing a generic replace of a
- vulscan.dll
215763 Content replication failing to download files when using a specific configuration
- Fixed create directories function to handle \\ / and c:\ paths.
- lddwnld.dll
257094 Replication may occur outside of intended window
- When vulscan schedules any replication job that has an interval of 1 or more days, it sets a 2 hour TOD window around the start time of the job. Also, if the original start time is in the past, then vulscan moves it to the first possible day in the future that matches the requested start time (which could still be today). So rather than running immediately (as is typical for local scheduled tasks because their start time is in the past), they will run at the time specified in the local scheduler UI.
- vulscan.dll (fileReplication.cpp)
280874 Vulscan.exe is blocking the content replication if there is network connection loss
- Made a function that would release locks in the curl helper that were left open when a thread in curl crashed.
- lddwnld.dll
302723 Replicator removes files on the target preferred server if the file list is incomplete and mirroring is enabled
- Recover from a missing or incomplete file manifest. Have the downloader rebuild the manifest in case of one of the aforementioned errors.
- vulscan.dll
336179 Content Replication will not accept spaces in the Source file path
- The replicator was not quoting the requested path that it was placing on the commandline when communicating with the source representative. Now it quotes the path in the "manifest=" section of the commandline. I added an automated test to verify that quoted path is properly resolved. The source representative instance of vulscan writes the "query string" out to the log for easier diagnosing of issues now as well.
- vulscan.dll

Core Synchronization

154189 Copy-to-core large files may cause it to crash
- When exporting a group while "copying to core", break off the members and serialize them after the group (as separate .ldms files). Make sure that the coreSyncService processes the incoming files in creation date order instead of filename sorted order. Ot
- CoreSyncService.exe landesk.managementsuite.data.dll patchbiz.dll usermanagement.business.dll - only in 9.6 and later (not 9.5) winconsole.dll
237446 Auto sync'd Agent Configuration was deleted failed on target core.
- Checked into 10.0. Checked into 9.6 on 8/24/2015 When serializing the client configuration as an xml stream for export to the target core, no longer do a BuildUpdatedSettingsXml() if PanelManager is null (we haven't filled out enough info for the object to know what OS type it is since we're just deleting it). By skipping the attempt to build the settings xml blob, the client config is successfully serialized and the delete request gets to the target core and is handled properly now. Also, EClientConfig was not identifying its "GroupMemberType" so when the console tried to determine if it was sync-inherited, it would always say no. 8/25/2015 if an item inherits a newly-added sync state but the UI is not refreshed, and then the item is deleted, the cached UI node won't know to request a coresync delete. So in DeleteFromDB, reload the "SyncEnabled" property which will have been updated by core sync if the item has been synced yet. This was a 3rd possible reason why a delete request wouldn't get processed for client configurations (but technically applies to any group-able exportable object).
- panelmanager.dll (eclientconfig.cs) landesk.managementsuite.data.dll (Exportable.cs, CustomGroup.cs)
322747 Sync'd role was not deleted on target core.
- TFS322749, TFS322747: after renaming a role, we needed to update both the _role and the _eRole with the new name. Make sure to sync the revisions between the duplicate objects as well. After toggling autosync, make sure that we sync the revisions as well. Rename and sync worked properly as long as you didn't toggle autosync right after renaming (which was forgetting the new name on the source side because _eRole.Name hadn't been updated with the new name).
- usermanagement.business.dll winconsole.dll
322749 The renamed role not synced to target core auto.
- TFS322749, TFS322747: after renaming a role, we needed to update both the _role and the _eRole with the new name. Make sure to sync the revisions between the duplicate objects as well. After toggling autosync, make sure that we sync the revisions as well. Rename and sync worked properly as long as you didn't toggle autosync right after renaming (which was forgetting the new name on the source side because _eRole.Name hadn't been updated with the new name). 6/1/2015 - when we toggle autosync, update the _role.Syncenabled duplicate variable to match the ERole's value. otherwise, a rename right after a auto-sync enable, will cause autosync to be turned back off, but right-click won't necessarily show it. Looking at the "Info" dialog will show the "truth" that it has been turned back off.
- usermanagement.business.dll winconsole.dll

CSA

239107 Postcgi.exe may not compile the .csr correctly when requesting the Broker Certificate.
- Fixed an issue in postcgi.exe that was a race condition that could cause CSR files coming from client system via BrokerConfig.exe to get corrupted.
269910 Remote Control Through CSA w/ 3rd Party Cert Fails
- Reason: Error 14 is SSL name mismatch. Fix: We should probably not validate the host name.
- issproxy.exe
285506 BrokerConfig on client may not reflect failover CSA information correctly
- Fixed issue in writing broker.conf.xml in which it wouldn't write the value if the document was empty.
- clientconnectivitybehavior_apply.dll

Custom Data Forms

279636 Custom data form contains garbled character when custom data form field is added
- Fixed issue with custom data forms editing in the LDMS console that for Asian languages would cause some entries to get back characters inserted.
- customdataforms.dll

Data Analytics

133477 DTS - Software License Import rule issues on a remote console device
- -
133485 Software Manager service fails to properly use the Stop Running rule if matches query option on Licensed software rules
- -
134314 DTS - Vendor Import Failing when Encountering Double-Quotes
- -
135247 DTS - Insight/Default Import Rule Has three deprecated rule. Remove
- -
135248 DTS - Insight Universal B2B Rule Template - Missing Rule Group Reference
- -
136216 Force VMWare b2b to use English Local Instead of Euro local
- -
137149 If Solarwinds db not valid, never see error, just fails
- -
138335 Insight B2B not importing software quantity
- -
139153 DA: Keep after save not working as expected for lists and barcode web form
- -
250030 Content Correction: Licensed Software - Microsoft Office Professional Plus 2010 and 2013 are shown when 2013 should only be present.
- -
252703 DTS: Insight Import B2B appears to do nothing when run
- It turns out to be caused by the layout changes of Insight. So I change the columns in our rule align to theirs in the website.
- Insight B2B Web Import.xml Inisght Universal B2B Import.xml
252703 DTS: Insight Import B2B appears to do nothing when ran
- It turns out to be caused by the layout changes of Insight. So I changed the columns in our rule align to theirs in the website.
- Insight B2B Web Import.xml Inisght Universal B2B Import.xml
257955 Archive Asset Scheduled Task Fails To Run
- -
261279 VMWare vCenter Import does not allow you to finish the rule wizard when using ODBC
- -
261467 Softchoice B2B connector Invalid column name errors
- -
263865 Save button not always working in Barcode Web Forms
- -
264545 VMWare B2B License Download.xml contains customer email address and password information
- -
264546 Softmart B2B Web Import.xml contains customer email address and password information
- -
264547 PDS B2B Web Import.xml contains customer email address and password information
- -
265383 DTS: CDW B2B Import not working
- -
267605 Server Error in '/Remote' Application error when saving model and serial barcode information
- -
268599 Error when clicking on machines in Asset Control: Error running SNMP Discovery. This is not a valid 8.0 database.
- -
268888 LDDA content correction request: Microsoft Office Visio Premium 2010
- -
269965 DTS: RunningDTS rules show <target list missing> even if the targeted query or group exists
- -
270739 Discovery Services: SQL Server Additional Detection breaks when scanning with Targeted Queries or Machine Groups
- -
270806 When customer imported CSV data, then they found garbled characters in Console.
- -
- ManagedPlanet.DTS.dll ManagedPlanet.DTS.Functions.dll DPIDatabase.dll
271879 DA ERP - Microsoft Per Processor and Core Licensed Products report missing details.
- -
273607 Content Correction: Microsoft SQL server 2012 R2 is not a valid version
- -
273860 Asset Control Defect: Dragging multiple devices (4+) to a folder causes SQL error to appear in console and crashes the console.
- -
276128 Archiving to Asset Control doesn't delete the device (Reference constraint error in log)
- Instead of having two processes remove machines from the database (WinConsole and DA), DA now calls the same base code that the winconsole calls to remove machines.
277959 Assigning Product lookup values does not display all required Adobe versions
- -
279677 VMWare B2B Connector not working
- Unable to download VMWare purchase information. Cannot find HTML element of type "BUTTON:SUBMIT" with attribute(s) "ID:exportAllToCsvButton".. Line 14: TAG POS=1 TYPE=BUTTON:SUBMIT ATTR=ID:exportAllToCsvButton
- VMware B2B License Download.xml
280605 DTS Licensed Software rules do not always update LAST STARTED date for licensed products correctly
- -
283096 Lenovo warranty rule is not modifying inventory when scheduled
- -
286087 DTS: Barcode CSV Import Does Not Import CSV Data Automatically
- Barcode processing method somehow got commented out of no obvious reason. So the fix is to uncomment the relevant code segment.
- managedplanet.core.barcode.exe
286087 Barcode CSV Import Does Not Import CSV Data Automatically
- -
- managedplanet.core.barcode.exe
290712 Asset Control: Users unable to see any devices in the "All Devices" view if they have any device scope applied to the user
- Fix the assets not shown in both all and specific type.
290712 Asset Control: Users unable to see any devices in the "All Devices" view if they have any device scope applied to the user
- Fix the assets not shown in both all and specific type.
291220 DTS: Unable to remove targets fromDTS rule
- -
292485 Unable to Archive to Asset Control in LDMS 2016
- -
293355 Content Correction: APC Warranty Info
- converted rule from WebPull to WebMacro and extended the WebMacro with "Returns" just like WebPull does
- APC Warranty Info.xml
296895 Application defect DA: Asset Control Dragging query/device on Rule Group causesDTS to ignore target
- When droped created query or device on DTS rule group, there were two Perform Operation windows, one was right, and one's target ignored.
- ManagedPlanet.DTS.dll
299731 Barcode Web Forms Refresh Issues When Using Drop Down Menus
- -
305287 Data Analytics doesn't correctly recognize licenses for v10 (2016)
- -
305884 Content: Microsoft VL B2B does not log in to site
- update the content and relevant code for 9.6/10 so that the rule will work rule changed from webpull to iMacro
- ManagedPlanet.DTS.Functions.dll
308051 Adobe Acrobat DC 15 and Adobe Acrobat DC Pro 15 are wrong
- -
308470 Scheduled Executive reports are not emailing through SMTP
- After configure the settings and put OK, the value of SMTP Server saved to Database. But didn't retrieve from the database.
- Common-Shared.Net.88-DPIDatabase-MPEmail.cs
310074 Database Doctor Rule - Archive Computer doesn't work
- The table reference key constrain cause the defect, so need to delete the constrain key table first.
- ManagedPlanet.DBDR.Fuctions.dll
311804 SKUWebService fails with This is not a valid 8.0 database [Universal B2B]
- Bring back Clawback web service and make several dlls up to date.
311804 SKUWebService fails with This is not a valid 8.0 database [Universal B2B]
- Bring back Clawback web service and make several dlls up to date.
314851 Dell Warranty rule does not work
- -
323011 Error message when applying the B2B connector "Adobe Software License Import"
- -
323813 The ERP Report Software - Software Summary by Computer report is unable to load in a lot of cases
- -
326651 Asset Control can't be opened on windows 2008 r2 core
- Updated system to use correct files to function correctly

Endpoint Security

147430 EPS default agent settings not visible after a clean core install
- Generate the default settings if no exist when user clicks on the Endpoint Security node.
- PatchManagement.dll
213610 EncUnlock.exe does not work as expected
- -
214032 Performance issue with the EPS driver when multiple minifilters (file filter) are installed
- -
215401 EPSUI not Responding after request exception in windows xp 32bit
- Cause: This is caused by some blocking code (startup checks) called from main thread. Fix: Moved blocking code to separate thread
- EPSUI.EXE
236507 LANDESK Firewall "Exception requested by users" is blank on Console
- It was not a bug, but a design issue. Re-designed according PM specifications
- LdSecSvc.exe LdSecSvc64.exe Patchbiz.dll PatchManagement.dl
236863 Blue screen due to file filter initialization error
- -
- LdSecSvc.exe LdSecSvc64.exe
237551 EPS not staring on Lenovo Tablet
- Cause: if the locations.xml file doesn't exist in the HIPS folder, the xml parsing code can crash. Fix: verify for locations.xml file, and if it doesn't exist skip the xml parsing.
- LdSecSvc.exe LdSecSvc64.exe
249826 Disable Device Control' does not prompt for an administrator password and disables device control
- The code to disable Device Control by clicking on the start menu link was not compatible with the new EPS UI.
- EPSUI.exe LdSecSvc.exe LdSecSvc64.exe
251332 McAfee VirusScan Enterprise 8.8 - McAfee agent may be blocked by the EPS client
- Root cause: The EPS client protects some AV folders, and give specific permissions to processes launched from there. On McAfee 8.8, one of these folders was not seen by the EPS client, leading to block some McAfee processes.
- LdSecSvc.exe LdSecSvc64.exe
251332 McAfee VirusScan Enterprise 8.8 - McAfee agent may be blocked by the EPS client
- Root cause: The EPS client protects some AV folders, and give specific permissions to processes launched from there. On McAfee 8.8, one of these folders was not seen by the EPS client, leading to block some McAfee processes.
- LdSecSvc.exe LdSecSvc64.exe
252540 EPSUI.exe not responding in window8.1 32bit client
- Cause: Form control was accessed from non-UI thread
- EPSUI.exe
256234 Running application control in logging mode can lead to learning some programs into the Trusted File List
- Design issue; in log mode files added to registry after by an unauthorized process are always learned. Fixed
- LdSecSvc.exe LdSecSvc64.exe
256242 The EPS client is learning some files that doesn't need to be learned (i.e. LANDESK files)
- Cause: We are adding to the TFL the executables created by an authorized installer, even if the destination is a directory to avoid (here PROGRAM FILES% (X86)\LANDESK\LDCLIENT\). In such case, there should be no need to add anything to the TFL.
- LdSecSvc.exe LdSecSvc64.exe
260780 Display issues with new user interface for Endpoint Security
- Fixed a typo. Fixed some display issues on hi-res screens (3k & 4k screens)
- EPSUI.exe
262321 EPS client (UI): Unable to uncheck the 'do not protect process memory' permission
- Root cause: Coding error with the bitwise logic applied when the checkbox in unchecked
- EPSUI.EXE
262988 Unable to apply exception by hardware id on floppy drive
- Floppy drive doesn't work as standard volumes and need a specific code to get the hardware ids.
- LdSecSvc.exe LdSecSvc64.exe
265068 The EPS trusted file lists generated on the core contain some unnecessary or empty entries
- -
265109 Potential memory leak when importing files to a new trusted file list
- The Dispose method was not called after showing the import dialog. It must be explicitly called - see msdn: "Unlike modeless forms, the Close method is not called by the .NET Framework when the user clicks the close form button of a dialog box or sets the value of the DialogResult property. Instead the form is hidden and can be shown again without creating a new instance of the dialog box. Because a form displayed as a dialog box is not closed, you must call the Dispose method of the form when the form is no longer needed by your application." Fix: added an using { } block
- PatchManagement.dll
269425 EPS: Blue screen with some USB device drivers
- It was caused by USB devices created both virtual dvd and storage drive
- LdSecDrv.32 LdSecDrv.64
275141 Running LDEncrypt.exe on a device without LDMS agent does not open Encryption GUI
- Cause: EncArchive was called from the root of the usb device, but it resides in the EncArchive folder.
- LDEncrypt.exe
275852 File reputation test failed in CSA mode.
- Added proxyhost support in the EPS client
- LdSecSvc64.exe LdSecSvc.exe
283195 The EPS UI may crash on system with more than one user sessions opened
- Root causes: #1. permissions issue on a shared mutex (access denied from other user account) #2. file access violation when writing on the EPS debug log from multiple processes Fixes: #1. fixed permissions #2. separate debug logs per processes
- EPSUI.exe
283523 Device Control: Wild card (*) doesn't work well on the exception setting
- Was not implemented. Added missing code by customer request.
- LdSecSvc.exe LdSecSvc64.exe
290268 HipsClientConfig.exe hangs if missing files for EPS install
- Cause: if some setup files are missing (LDSecSetup*.exe) the HipsClientconfig.exe process may display an error box. When installing through vulscan in non interactive mode, the user doesn't see the message, and the process hangs forever. Fix: Correctly stop the installation process if some the required files are missing
- HipsClientconfig.exe
296985 Endpoint Security can lead to .TMP files to the FILEINFO TABLE in some cases
- Cause: Some temporary programs (created by installers) are unnecessarily stored in the LDMS database when using the EPS client with the file reputation feature enabled. Fix: Avoid storing temporary programs in the LDMS database, just return to the endpoint the requested reputation value
- patchbiz.dll
298422 Preventions by Application Displays incorrect data if MD5HASH is blank
- Cause: the console is not able to filter items that don't have md5 hash Fix: implemented filter using sha1 if md5 is missing
- patchmanagement.dll patchbiz.dll
300121 The EPS client does not ask for a password when going to the process list and double clicking on processes there
- Cause: coding error: missing code. Fix: added missing code
- EPSUI.exe
300498 Endpoint Security UI not responding - large number of preview icons stacked up from program in Windows taskbar
- Cause: race condition causing EPSUI to hang when too much popups are displayed simultaneously Fix: use only one thread to display popups
- EPSUI.exe
302348 The EPS client setup hangs and fails if the EPS files are flagged by Windows as coming from the Internet
- Cause: When the EPS setup file (HipsClientConfig.exe) launch LDSecSetup32.exe (on Windows 32bit) or LDSecSetup64.exe (on Windows 64bit), if these files are flagged by Windows as coming from Internet, an UAC prompt may appear. Since the setup is initiated by a Windows service, the prompt won't be shown to the user, and the setup will hang. Fix: The EPS setup will automatically remove the 'coming from Internet' flag on the EPS files, if any.
- HipsClientConfig.exe
302724 TOSHIBA VIDEO PLAYER cannot play a video file
- Cause: The device filtering set-up by the EPS client (Device Control) is seen as a security breach by the audio protection. Fix: Avoid attaching to the HD Audio bus
- LdSecDrv.32 LdSecDrv.64
304213 CdDvd exception doesn't work as expected if the exception is set to 'Allow'
- Cause: exception that allow a device over a denied bus doesn't work. Fixed.
- LdSecSvc.exe LdSecSvc64.exe
304971 The EPS UI sometime cannot access the EPS service information
- Cause: if the user session is opened very quickly after the computer started, the EPS UI may start before the EPS service is fully initialized, causing the EPS UI to malfunction.
- EPSUI.exe
305767 Unsigned LDMS console binaries don't have the expected permission on Windows x64
- Root cause: The EPS client expect that the LANDESK binaries are located into C:\PROGRAM FILES (X86)\LANDESK on Windows x64 That's the case for the binaries related to the LANDESK agent But the binaries related to the LDMS remote console are located into C:\PROGRAM FILES\LANDESK Fix: Added both folders as trusted folders on Windows x64
- LdSecSvc.exe LdSecSvc64.exe
308276 EPSUI.exe can interfer with restarts on Window 7 and 2012R2 client
- Cause: race condition while accessing the tray icon handle, causing the UI to hang at startup
- EPSUI.exe
308538 EPS blocking cmd files although all blocking is disabled
- Cause: The folder C:\Program Files (x86)\LANDesk\PXE was not listed as a LANDESK folder on the EPS client. Fixed.
- LdSecSvc.exe LdSecSvc64.exe
310005 Implement physical disk access protection
- -
310006 Implement Auto detect and blacklist crypto-ransomware
- -
311791 Device Control Display Message is not functioning in some circumstances
- Cause: Disabling the dcm bypass hotkey may prevent a windows handle to be created, leading the EPS UI to not respond. fixed
- EPSUI.exe
315298 Bluescreen when HP LaserJet printer is connected via Bluetooth (when EPS is enabled)
- Cause: When verifying if a CD/DVD device is allowed, the EPS driver was using a Windows Kernel API at an incorrect IRQL level (DPC).Fixed.
- LdSecDrv.32 LdSecDrv.64
320395 HIPS rule can be bypassed by copy / pasting a file from the specified folder to another one, executing it, and then copy it back to the folder then re execute it
- Cause: By design, the EPS client doesn't alert about an executable that has just been created (i.e. unzip program deflating an exe or ftp program downloading an exe). Fix: Always alert/block, even it the executable has been just created, if its access is restricted by an user rule.
- LDSecSvc.exe LdSecSvc64.exe LdSecDrv.32 LdSecDrv.64
320492 EPS Client / DeviceControl: files may be logged/copied by ShadowCopy even if they are not copied on a removable volume
- Coding error, resulting in some case as seeing a file as copied on a removable volume, when the target is the system disk.
- LdSecDrv.32 LdSecDrv.64
322638 Device Control does not work as expected with the Microsoft Live File System format
- Cause: Side effect of previous update Only affects 9.6SP2 , not 2016. Fixed.
- LdSecSvc.exe LdSecSvc64.exe
322643 Wake up from suspend, wireless and wired both enabled unless device control has set disabled wireless
- Cause: A wired network card was erroneously seen as disconnected after resuming from suspend, causing any wireless card to be allowed.
- LdSecSvc.exe LdSecSvc64.exe
333229 Rebooting clients can be held up by EPS when the EPS client is running
- The UI erroneously prevent its closing during the system shutdown.
- EPSUI.EXE
337856 The EPS UI may sometimes stop responding
- Cause: If the EPS service (named pipe server) send incomplete data to the UI (named pipe client), the UI main thread will block for ever,Fix: Fixed the named pipe server/client code.
- EPSUI.exe LDSecSvc.exe LDSecSvc64.exe
339035 The EPS UI doesn't display all the process informations
- Cause: This is caused by a race condition where the EPS UI start updating the process list before the EPS service is ready to provide information about these processes. Fixed.
- EPSUI.EXE LdSecSvc.exe LdSecSvc64.exe
339340 EPSUI.exe can't be stopped using "Disable protection" button in Windows XP and 2012 R2 client
- Root cause: a background thread (added to fix defect 339035) t is not terminated when the UI close Fix: explicitly terminate the background thread when UI close
- EPSUI.EXE
339742 EPSUI.exe auto stop working after install reboot
- Caused by the fix for TFS339035, due to an exception not handled while reading the registry.
- EPSUI.EXE
341083 EPS: whitelist "Learn" function failure to update from client to core.
- Cause of the issue: clicking on the "learn" link on the popup adds the file into the local trusted file list, but doesn't send the information to the core, so the entry is removed next time the core trusted file list is downloaded.
- LdSecSvc.exe LdSecSvc64.exe EPSUI.exe

HP

259401 Unable to push the embedded agent to WES 7 machines
- Fixed a defect for a Windows Embedded Standard 7 operating system with an EWF write filter of type RAM (REG). The transition from EWF write filter enabled to write filter disabled now works correctly.
- LDWFMgr.exe
310738 Embedded Agent won't install on Wyse thin client
- LANDESK binary files have been hardened when Microsoft embedded OS's write filter files are not included in an OEM's Windows Embedded OS distribution.
- LDWFMgr.exe WFMaintenanceWindow.exe vulscan.dll sdclientlib.dll

Install

282935 Cannot use "Core only" download pattern files from client side
- Removed "bin" from hidden segments IIS settings on ldlogon\antivirus8.
- none

Inventory

150914 Inventory settings update and change store software usage password
- Fix for multiple encryption on the softmon remote storage password.
- PanelManager.dll ClientConfig.dll
150927 Can't return URL domain as part of Inventory
- Root cause: the registry key HKLM\SOFTWARE\Wow6432Node\landesk\managementsuite\WinClient\SoftwareMonitoring\MonitorLog is created with an empty security descriptor. Creating sub-keys with null security descriptor cause the permissions to only allow system/admin access. Fix: use the same security descriptor for all sub keys.
- softmon.exe
254481 Windows 10 wrong version in the inventory
- na
- ldiscn32.exe
259660 Inventory scanner not picking up the NIC's driver information on Windows 8.1/10
- Fixed registry scanning for NIC info on W8.1 and above.
- ldiscn32.exe
265495 Collect SQL data using Gatherproducts
- Update scanner to get newer SQL version information.
- ldiscn.exe
276832 The serial number of hard drive is different from the sticker on hard drive
- Convert hex-encoded serial numbers to display format
- ldiscn32.exe
283302 LDINV32.exe (Inventory Service) is leaking memory to the point of restarting the service
- -
284060 Corrupt custom data duplicate branch can be created under certain conditions when adding a new custom registry data on a French core server
- Added fix for corrupt meta-data when adding Custom registry items on a French core.
- ManageLdappl.dll
284286 Inventory scanner does not accurately report the number of CPU cores on some servers
- Revised CPU topology discovery algorithm.
- ldiscn32.exe miniscan.exe
286521 Inventory Service taking 30 minutes plus to load at some customer sites.
- Updated to process data more efficiently in the inventory scanner. Especially in the load time.
- ldinv32.exe
288011 Inventory for Microsoft* Surface* Pro 4 Windows* 10 shows up as "Type = Desktop"
- Fixed the inventory scanner to properly identify Microsoft Surface Pro devices at Type "portable" instead of "workstation".
- ldiscn32.exe
289747 Inventory service doesn't allow enough time for self-scan with software
- Fixed inventory service to wait 60 minutes, instead of 20 minutes, when running the inventory scanner.
- ldinv32.exe
290203 Windows 10 Enterprise LTSB and Windows 10 Education editions are not reported correctly by inventory
- get windows 10 versions (LTSB and Education).
- ldiscn32.exe
302365 Ldiscn is reporting wrong or garbeled harddrive serial
- Convert hex-encoded serial numbers to display format
- ldiscn32.exe miniscan.exe miniscan_x64.exe
313458 Failed to gather some WMI Custom Data inventory information
- Fix to get WMI Custom Data from the root\wmi namespace.
- ldiscn32.exe

LD Download

249423 lddwnld is failing to download .msi file
- We were using the curl encode url function. Switched to use the atlencodeurl function.
- lddwnld.dll
250152 lddwnld is broken if package name contains a space
- Needed to brute force escape # characters before passing string to the escape function
- lddwnld.dll
288200 TMCSVC may grow in memory consumption
- Fixed memory leak in tmcsvc.
- tmcdll.dll
293372 Peer without the file (with no plan to download it) may randomly reply that it has the file
- Uninitialized memory in a peer discovery structure can cause a peer without the file to reply that it has the file. So now the memory is initialized.
- lddwnld.dll and lddwnd_x64.dll
297250 LDDWNLD may crash when going over a slow link with a lot of latency and dropped packets
- Fixed issue where curl was being given an invalid pointer for the write_function
- lddwnld.dll
306652 LDdwnld.dll ignores client proxy configuration to access public-facing alternative patch download server.
- Clients can be configured to require CSA to talk to the core. The current code would never try direct connections for web requests when set to CSA only even for requests that are not to the core. This fix allows direct connections to be attempted for non-core web requests even when CSA only is set for core communication.It turns out that vulscan detects if a url is off the core and because of the proxyhost limitation it tells lddwnld to disable proxyhost. This breaks if there is an internet proxy in the network. So modified lddwnld to depricate (not do anything) in the disableproxyhost call.
- proxyhost.exe lddwnld.dll
336569 LDAV Update is failing to download an update file when a partial of that file exists.
- When a file was being downloaded to the cache and a hash was supplied, the cache info was not storing the hash for the file until the download was complete. With this fix the supplied hash is stored in the file info while the file is being downloaded. The code was also modified to check the hash of a partial file to make sure it was the same as the new hash supplied.
- tmcdll.dll lddwnld.dll

Linux-Unix

169987 linuxpull.sh still for 32bit linux fails
- linuxpull.sh no longer tries to install the monitoring package
212256 32-bit Linux agents fail to install after 9.6 SP2 is installed
- linuxpull.sh no longer tries to install monitoring or remote control
242333 Patch & compliance scan now (for Linux clients) is getting grayed out after discovery completes (not really related to running once)
- the credentials of the landesk.conf file no longer change thus allowing cba to access it and respond to core pings.
269887 NIX: CBA doesn't handle '>' and '>>' output redirection in custom scripts
- A custom Core script can launch a script on the client box which redirects output to a file. The custom Core script cannot redirect output itself because the script syntax is basically: command "arg list" and the ">file" is not really an argument to the command but a special argument to the shell.
- N/A
275143 RHEL 5 fails to accept scheduled custom script inventory task
- Custom scripts works again with newly ported map agent on redhat 5
302381 Policy needs to be supported for linux on the 9.6sp2 ldms core
- landesk policy now supported on linux 64 bit and32 bit clients
304875 Unix Solaris11: agent configuration configure with wrong platform Id on solaris 11 platform
- add correct platformid to landesk.conf for solaris 11
328622 Running vulscan causes map-sender to 'break' permissions on the landesk.conf which breaks CBA
- the etc/landesk.conf file will now keep the correct credentials of mode: rwxr--r-- user: landesk group: landesk
337030 CentOS 7 - PlatformID is set to "unknown" making vulnerability scans non-functional
- installation scripts changed to support centos 7
337188 32-bit Linux agents fail to install after 9.6 SP2 is installed
- linuxpull.sh no longer tries to install monitoring or remote control
339212 Repair task fails for 32bit linux agents
- -
342688 LD9.6 SP2:Vulscan cannot detect a single patch on Rhel7 x64
- Added search for librpm libraries used by redhat 7.

Localization

154199 [JPN] A message which Vulscan.exe shows is garbled
- Fixed encoding/decoding UTF8 characters on repair dialog and vulscan message dialog.
- vulscan.dll
284237 Core-PTB-Resource.dlls not up to date
- ClientConfig.resource.dll AVUI. resource.dll PatchBiz. resource.dll PatchManagement. resource.dll
- ClientConfig.resource.dll AVUI. resource.dll PatchBiz. resource.dll PatchManagement. resource.dll

Mac

235337 mac antivirus: antivirus task status alway failed after it finish executing on client machine.
- Made changes to UpdaterSDK configuration for Mac.
- GetBases.exe
237770 Software Distribution mpkg will not re-run when executing ldapm -r
- ldapm keeps a task status for all tasks it runs. However, it does most of it's work by creating scheduled tasks for ldscheduler. This amount of indirection prevents ldapm from maintaining all the useful task status that it might otherwise. In particular, the only success/fail status that ldapm can keep is whether the scheduled task (for example, an ldswd distribution task) was successfully scheduled. In the ldswd example, whether the distribution task succeeded or failed is not known by ldapm. This means that if a required task fails in the ldswd (or vulscan, for that matter) part, ldapm will not be aware of the failure, and a second run of ldapm -r will not result in that failed task being re-run. We do, however, keep track of the status of all ldswd tasks run. So, now, ldapm (APMTaskManager shouldTaskBeAvailable) additionally checks that extended task status info (found in /policystatus/status$N$.xml, where $N$ is the task id) when otherwise the task would not be made available for running. If the extended task info indicates that the task failed or was deferred, it will be made available for ldapm -r
- /Library/Application Support/LANDesk/bin/ldapm
250452 When running the uninstallmacagent.sh on a mac machine, it removes Kaspersky Endpoint 8. Customer does not have a LANDesk AV license
- Changes to detect LDMS install of Kaspersky in uninstallmacagent.sh. We only uninstall KAV if LDMS installed it in the first place.
- uninstallmacagent.sh
269966 Mac agent does not install SWD package unless the user is logged in
- We now launch install jobs in the correct context if the user is logged out.
- ldswd, ldapm
275171 Error 45 when mounting share after booting from USB Netboot
- -
292483 Can't create miniscan file when booted from Stamper-created NBI
- We resolved the permissions problems that were causing this defect
- LANDESK Startup Disk Stamper.app
297472 Some software distribution tasks that properly fail when run with no user logged-in report an incorrect result to the core
- -
298978 Provisioning: Netboot failed on mac client (El Capitan) via scheduled template.
- -
301430 LDScheduler is not executing ldcron jobs and crashes randomly
- -
320886 Stamper Utility not detecting required components
- Updated Stamper utility to get all information.
- landeskNBIStamper.pkg, which will install LANDESK Startup Disk Stamper.app
322510 Change setting task Mac AV: Install security component failed.
- Still waiting to hear back from Kaspersky about the definition files we are having problems with.
- ldinstallav
340096 When booting an NBI with the new LANDESK Stamper Utility, we get a kernel panic on the mac device
- Fix an issue with the new Mac NBI utility that broke Netboot from PXE servers.
- PxeParser.dll
340096 When booting an NBI with the new LANDESK Stamper Utility, we get a kernel panic on the mac device
- Fix an issue with the new Mac NBI utility that broke Netboot from PXE servers.
- PxeParser.dll

MBSDK

264874 "GetMachineData"-calls do not respect qualifiers
- -
- mbsdkservice.dll

Mobility

263510 Certain UEFI devices do not pxe boot
- Support added for type 9 (EFI), PXE DHCP Proxy option 93 9.6 component patch replaces Setup_PXEProxy.exe on core. Redeploy PXE to all PXE representatives.
- Setup_PXEProxy.exe (9.6 SP2 + component patch 11/5) bstrapopts.dll pxeparser.dll pxesvc.exe

Monitoring

236712 URL Monitoring is not showing consistent behavior
- Cause: calls to the GetAddrInfoExW() API were not intercepted, so we were missing some URL accesses
- LDUrlMon32.dll LDUrlMon64.dll

Patch Manager

154122 Reboot deferral option does not show AM/PM beside the time
- Date/time is displayed based on OS region setting.
- ldReboot.exe
154170 Autofix status is incorrect on client, when create a repair task and use a specific agent setting (disable autofix).
- This was a display-only problem. If "fixnow" was specified or "autofix" was specified, then the caption said "(with autofix)". Vulscan now only shows that message if "autofix" is specified.
- vulscan.dll (vscmdline.cpp, VulnerabilityData.cpp, vulscan.cpp, vulutils.h)
154171 Unable to download patches directly from the vendor when running vulscan outside of the network
- Changed lddwnld's URL encoder to only encode the string after the '?' character. Otherwise, converting '/' characters in valid URLs into the escape sequence of '%2f' can cause (non-IIS) web servers to fail with a "404 File not found" error. Also made sur
- vulscan.dll (vulUtils.cpp) lddwnld.dll (culrHelper.cpp)
154184 the value of "Last Logoff Date" is set a few seconds later after the system was turned on under certain conditions
- Changes to 9.6 and Escalante - When about to record the logoff event, if we haven't yet noticed a logon event AND the registry doesn't have a newer logon event than last known logoff event, then suppress the recording of the event. We have likely just sta
- LDSystemEventCapture.dll
213922 Vulscan tasks not showing correct status (occurs randomly)
- Compile sendTaskStatus with static linking to Microsoft runtime instead of referencing the runtime as a dll. This way if the runtime is missing, sendTaskStatus will still function properly.
- sendTaskStatus.exe
215719 "Notify user before downloading " doesn't work in Patch Management
- State that the "notify before download" is a "(Distribution-only)" feature in the config UI. 2/25/2016 - added to 9.6
- PatchManagement.dll (PromptPanel.resx)
237618 Fixed LDAV potential crash
- ldav waits for scan computer task to finish before sending AV info to the core. if downloading the latest behavior files before scanning takes longer than 10 min (time out connecting to the core), it will not submit AV info to the core after scanning. update and scan task will not scan computer unless update was successful.
- ldav.exe
249238 Maintenance time window in the the Patch and Distribution Settings may be unclear when Core regional settings do not use AM/PM indicators
- sets custom format of start time and end time depending on the short time format specified in the region settings.
- PatchManagement.dll
250032 Entering a very large address in CVSS information field in a custom definition can cause the rule to be deleted or not saved
- I put a max size limit in the edit control of 1000 characters and increased the max allowed size in the database to 1100. I also bumped up in the db the max size for the patch URL and the FAQ URL but didn't tinker with the UI associated with them.
- datamartpm.xml (need to do a coredbutil with this file) patchmanagement.dll (VulnerabilityPropertyForm.resx)
255140 Forcing FIPS compliant algorithms in 9.6 cause Vulscan / LDDWNLD crash.
- vulscan now preloads libeay32.dll right when it starts, hoping to prevent another dll from occupying the space required by the FIPs version of libeay32.
- vulscan.dll
268590 Check for digital signature before adding LANDESK apps to KES trusted application list
- checks for digital signature and the name of the signer before adding to LANDESK Antivirus trusted applications list.
- ldav.exe
269889 Importing a vulscan results file creates a _034 file storage file, instead of using the vul-types that were actually processed
- Fixed in 9.6, 10.0 Hotfix and 10.1 Dev: Use the xml element "" when building up the unique filename for putting results. Since that value is always "100" when sending group scan results, use commandline "/group=" value for unique putresults filename. Make providing deviceID optional when importing scan results. The sender will pretend that its device id is what was found in the results xml if none is provided. Beware, this import feature still won't work if the core is in secure mode (LDMS 10.0 and beyond) because the core cross-references the device's certificate information with its device ID (to prevent falsly sending scan information on behalf of another machine).Also note, that a workaround was available by specifying "/group=SomethingUnique" on the vulscan commandline. That "SomethingUnique" value would be embedded in the submitted vulscan results file, allowing it to be different than other posted scan result files.
- vulscan.dll (vulutils.cpp, VulnerabilityScanner.cpp)
279372 Resize window problem when downloading associated patches
- Anchor is set to bottom left.
- patchmanagement.dll (\landesk\ManagementSuite\PatchManagement\PatchManagement\DownloadPatchesForm.resx)
283148 JPN/ESP/DEU/FRA/PTB-Truncation in Type dropdown list in Scan info dialog
- PatchManagement.dll
- PatchManagement.dll
289204 Device reboots after pressing "R" with a reboot prompt
- Hook PreTranslateMessage and disallow pretranslation of plain old keydown messages. Alt-keydowns don't even come through there, so Alt-R will still reboot the machine. But pressing 'R' will no longer do so.
- ldReboot.exe
308694 Patch repair group using Portal settings Optional (display in portal) displays Action type "Run automatically (do not display in client portal)".
- Only load portal settings during first-time Port Options panel load. Only save them during actual save event. When loading settings, handle the fact that no other panels can yet be found (so we can't use that technique to determine if we're a repair task). Fix ldPropertySheet to notify the panel that's being hidden before it notifies the panel that's being shown (in case the hiding panel wants to save some stuff into the object that the new panel might want to look at).
- ldpropertysheet.dll patchmanagement.dll
310904 A change needs to be made to delete VulscanReboot prior to reboot to avoid reboot loop
- VulscanReboot key will be deleted before a reboot. If agent install is running or AV install is running, it won't be rebooted automatically and Reboot anyway button will be disabled.
- vulscan.dll ldreboot.exe
312224 CoreSync - When disabling rules on a patch set to autosync, it does not sync the definition after changes are made
- Update the revision to fix the defect.
- PatchBiz.dll
315036 Users with no "edit public" right for the "patch and compliance" permission are able to move a private custom group into the public group folder.
- If the users do not have 'Edit public' rights for Patch and Compliance, they cannot change a private custom group to a public group.
- LANDesk.ManagementSuite.Winconsole.dll PatchManagement.dll
322499 We cannot find "Detected" menu in "Patch and Compliance" - "Blocked applications" in LDMS 9.6 SP 1
- TFS322499: we weren't showing the "Detected" nodes if the type was blocked or SWPackage. Now we only don't show if type is SWPackage. CR: Darren
- patchmanagement.dll
326928 Failed to calculate MD5 hash for additional files from HTTP path when creating a custom definition
- Hash will be calculated for HTTP path.
- patchbiz.dll
327598 RBA: Unless a user is a full admin they are not seeing the reboot settings in the patch manager
- Reboot settings were tied to Security configuration RBA rights, so it was changed to use Agent configuration RBA rights as other non-security settings.
- patchbiz.dll patchmanagement.dll
330425 local scheduler id does not have filter when set the end time with the next day
- When attempting to schedule a task that spans midnight, vulscan was giving ltapi an end hour that was greater than 24. That caused ltapi to fail the request to add that filter which vulscan didn't notice. Now it does a "% 24" on both the begin and end hour to make sure it's between 0 and 23. It also looks for a false from LTAPISetTimeOfDayFilter and will log the failure instead of adding a bogus filter to the scheduled task. Vulscan will still attempt to create the task without the TOD filter, though. I created an automated test in "test.vulscan" which captured the failure and verified that the test now passes after fixing the problem.
- vulscan.dll
330467 Unable to launch only selected patches when deployed in Portal Manager
- when vulscan was creating the individual repair policy files, it was using the name/value pair "vulnerability=vul_id" to specify what to repair, which used to work when the commandline was "repair vulnerability=xyz". But our repair commands are now written as either /scan=xyz or /group=xyz with a /fixnow=true, which doesn't look for the "/vulnerability" value. Instead, it looks for the "scanFilter" value to limit what it actually scans for and repairs. So I tweaked vulscan to write "scanFilter" now. I also added the "maintEnable=false" figuring if the user clicked something to install from the portal, he doesn't want it to "bounce off" if outside the maintenance window. I could (but haven't done) also disable the repair prompt that vulscan could be configured to display (depending on settings). I would only disable the global notify prompt but leave the "if conflicting processes are running" prompt.
- vulscan.dll
336767 Importing vulnerability loses associated scoped autofix info
- When getting current scoped scan and autofix info, make sure to return an entry for EVERY possible scope, even if there isn't a VulCountsScoped record for it. Make a test to ensure we apply scanned scope and autofix settings to newly-imported vulnerabilities when saving to DB. CR: Darren
- patchbiz.dll
336776 Changing scan scopes in UI doesn't update last serialized date so vulscan won't re-download definition
- make sure to mark that we need to update the last serialized date when saving a scoped scan change. Then when we save global scan status and decide there wasn't an overall status change make sure to at least update the last serialized date (and revision, etc.). This change isn't needed for scoped autofix because the "should I fix this" decision is made at the core (so no need to reserialize the definition to get vulscan to download it).
- patchbiz.dll patchmanagement.dll
339043 Adding binary values to the registry in Patch Manager does not seem to work
- TFS339043: Defer running the pre-repair script until we're sure we're about to install our first patch (after checking maintenance window, and reboot-needed, etc). Change the text on the "install commands" registry panel to say "write the value even if it's blank" since that's how the boolean was really being interpreted (the ui used to say "write value only if previous value was blank"). This seems to be the safest move rather than change vulscan's behavior to actually comply with the UI, perhaps breaking tons of content that has that boolean set. Fix the reg binary writer to actually write the binary value by making CxRegKey::WriteReg do the conversion of szData from ascii to hex before writing the data value.
- patchmanagement.dll vulscan.dll
342919 Patch downloads define the User-Agent: as 'User-Agent:'
- "User-Agent:" (the string) was part of the user-agent string itself. Removed it.
- patchbiz.dll

Patch Manager Content-Windows

286452 Patch Manager ST000016: Some users cannot be detected to be using weak password
- increase the timeout from 30 seconds to 2 minutes when waiting for password guessing threads to complete. Added logging if we do fail for any reason. Place a string "<password checker timed out> " into the "weak password user" list if there was nothing there when we timed out so the definition will be "detected." Added option allow configuring the timeout and to ensure that "timed out" is placed in the list of weak users if we do timeout.
- vulscan.dll

Power Manager

302749 The power management component may still install if I don't check this component in agent configuration
- Keep the same enable or disable state between checkbox Start->"Power Mangement" and tree node "Power Mangement" on UI layer.
321299 Windows Power options are changed on agent reinstall
- Update to only clear registry if "Force Clean" is used.
- pwmcfg.exe

Provisioning

240277 CPU spikes on the Core Server when PXE Booting a large number of computers
- Fixed performance issue with getting TaskXML for provisioning jobs when deploying to a high number of computers.
- landesk.provisioning.business.dll
264516 Create disconnected templates does not work
- Defect was caused by a assembly version discrepancy. The build process was modified to ensure that the generated and expected versions match.
- lddwnldClasslib.dll landesk.provisioning.business.dll
278049 WINPE (x:) running out of disk space when HII runs causing the action to fail.
- Fixed an issue that could cause Winpe to run out of disk space when doing HII.
- hiiclient.exe
280594 Spaces in UNC patch not accepted in Map/Unmap Drive Action
- Fix an issue not allowing paths with spaces when mapping a drive.
- landesk.provisioning.business.dll landesk.provisioning.winui.dll ldprovision.exe
289703 HIIclient does not match Windows 10 drivers
- Added a fix to detect Windows 10 more reliably in HII.
- hiiclient.exe
289703 HIIclient may not match some Windows 10 drivers
- Added a fix to detect Windows 10 more reliably in HII.
- hiiclient.exe
301013 Creating capture or deployment templates does not automatically create shortcuts within selected group
- Fixed an issue where shortcuts to the template were not created in custom groups when using the capture or deploy templates functionality.
- Landesk.Provisioning.WinUI.dll Landesk.Provisioning.Business.dll
332845 The action of “Create disconnected template” failed.
- Fix a problem where couldn't build disconnected templates.
- lddwnld_x64.dll lddwnldClassLib.dll LANDesk.Provisioning.Business.dll
341209 Provisioning Templates launched from SWD package need /nostatus switch
- Fix for a problem where status was being sent back for SWD tasks by sdclient. This caused the provisioning tasks to be prematurely finished which would cause provisioning templates to not work after reboots.
- SDClientHandler.exe

Query

303447 User cannot edit qualifier of query when user has restricted scope
- In non-English languages, if a scoped user tried to edit a qualifier on a query, they would receive an error stating that the qualifier was invalid.
- idal.dll ldcache.dll

RBA

268683 Giving users the right to deploy provisioning allows them to edit targets on all tasks (even tasks that they dont have rights for)
- Check right on task for enable remove from context menu and toolbar and drop targets to the task.
- LANDesk.ManagementSuite.SoftwareDistribution.WinUI.dll

Reboot Settings

237343 Client is not rebooting when loclked and a reboot window later is set in the reboot setting.
- when local scheduler initializes, it no longer deletes volatile tasks if they are properly stored in a volatile registry key. This will keep it from deleting tasks if it happens to restart due to a crash or other intervention. Crashes unfortunately plague local scheduler because it's at the mercy of the windows event capture system, which tanks every now and then, forcing localsch.exe to restart (and previously causing it to wipe out reboot tasks). Unfortunately, the “one hour delay” that is applied to the “lockedor logged out” options is implemented as an “auto delay” filter. That filter only starts the countdown processonce EVERY OTHER filter has been passed. So that means the 1 hour countdown doesn’t start until the user islogged off AND it’s in the time window. Soa 1 hour time window will be exactly short enough to keep the reboot from everhappening because it must wait an hour after entering the time window. Rex and I talked about a quick fix to stop the “auto delay”from even looking at the time of day, day of week, day of month filters. That way it would begin its countdown as soonas any other filter was met (such as logged in, logged out, locked, or whateverelse there might be). That change seemeda little scary because it changes the scheduler’s behavior for all existingcustomers. So the workaround I recommend in this case is to eitherincrease the “time window” in your bottom portion of the form or reduce your “lockedor logged out for” window in the upper part of the form so there’s enough time forall filters to be met and for the autodelay to countdown all the way.
- localsch.exe (localscheduler.cpp)
237343 Client is not rebooting when locked and a reboot window later is set in the reboot setting.
- when local scheduler initializes, it no longer deletes volatile tasks if they are properly stored in a volatile registry key. This will keep it from deleting tasks if it happens to restart due to a crash or other intervention. Crashes unfortunately plague local scheduler because it's at the mercy of the windows event capture system, which tanks every now and then, forcing localsch.exe to restart (and previously causing it to wipe out reboot tasks). Unfortunately, the “one hour delay” that is applied to the “locked or logged out” options is implemented as an “auto delay” filter. That filter only starts the countdown process once EVERY OTHER filter has been passed. So that means the 1 hour countdown doesn’t start until the user islogged off AND it’s in the time window. So a 1 hour time window will be exactly short enough to keep the reboot from ever happening because it must wait an hour after entering the time window. If needed the workaround recommend in this case is to either increase the “time window” in your bottom portion of the form or reduce your “locked or logged out for” window in the upper part of the form so there’s enough time forall filters to be met and for the auto-delay to countdown all the way.
- localsch.exe (localscheduler.cpp)

Remote Control

208205 HTML remote control via CSA becomes uncontrollable and then disconnects automatically
- Added more CSA channels to the connection pool and allowed connections to be recycled properly after CSA connection timeouts to guarantee complete connectivity with the CSA during the session.
- issuser.exe
267581 LDMS add logging for -5 error in 9.6 legacy Remote Control
- -
282933 Alt+Tab when switching between HTML RC sessions may prevent the keyboard from working as expected
- Reason: The Alt key up event can be catched if the window loses focus. Fix: Send an up event when window loses focus.
- rc.js
288372 Cannot change IME (Input Method) setting when use legacy remote control chat
- In legacy chat window hit "alt+·" will not lose focus. I installed Japanese and Romanian on English version, it will not lose focus when change language.
289155 HTML Remote Control's File Transfer doesn't work in Japanese - Copied file name is GARBLED
- Fixed double byte file name transfer problem so that the file name is not garbled.
- filetransferhandler.cpp issuser.exe
289155 HTML Remote Control's File Transfer doesn't work in Japanese - Copied file name is GARBLED
- Fixed double byte file name transfer problem so that the file name is not garbled.
- filetransferhandler.cpp issuser.exe
293362 <chat> tags showing in chat text from client using HTML RC
- Reason: the <chat> tag is replaced by escape characters. Fix: Make the <chat> tag not be changed.
- chatdialog.js
300688 Disconnecting Legacy Remote Control session when using HotKey Alt+C or Ctrl+Alt+C
- Reason: the hotkey is not editable.Fix: Make hot hotkey editable.
- isscntr.exe enuicntr.dl
323737 Need Verbose logging for Remote Control
- Reason: Clear the username before writing the log file. Fix: Clear the user name after writing the log file.
- issuser.exe
324459 HTML5 Remote Control can permit unauthenticated directory traversal of system
- Reason: Most of request handlers don't check session ID before response to viewer side. Fix: Checking session ID in the entrance of all request handlers which don't allow unauthorized user to access.
- issuser.exe

Reporting

266656 When scheduling a report to csv that was created from a query that contains information with commas, the csv does not get created as expected
- Add quotation marks over each column.
- LANDesk.ReportingServices.DataDynamicsReports.dll
303959 Cannot view add or remove programs on inventory records "as report" when using single sign on
- Fixed an issue that 'view as report' can't work when using single sign on on remote console.
- RunDDRViewer.exe
318502 Detected Vulnerabilites by Vulnerability (Detected Vulnerabilites Summary) report not filtering by severity properly
- Fixed an issue where Detected Vulnerabilities Summary report can not filtering by severity properly.
- DetectedVulnerabilitiesSummary.rdlx

Rollup

210787 Rollup Core Replication failed with error about PRODUCTSnapshot
- -
215324 DB Replication may not work as expected in an AlwaysOn cluster
- -
260892 Rollup Core Replication failed with error about UNMODELEDDATASnapshot
- If you re-snapshot a core and you see this error in UnmodeledData, delete the data from UnmodeledData on the rollup using the coreguid: delete from unmodeleddata where coreguid = 'xxxxx-xxxx-xxxx-xxxxxxx' The snapshot will then successfully apply to the rollup.
- Landesk.Database.Replication.exe
260893 Rollup Core Replication failed with error about BEHAVIORINFO2Snapshot
- The BehaviorInfo2Snapshot trigger was updated to detect a re-snapshot scenario.
- Landesk.Database.Replication.exe
260895 Rollup Core Replication failed with error about ReplMETAOBJATTRRELATIONSV
- When adding a publisher to LANDesk.Database.Replication.exe, the .exe will look for any duplicates in MetaObjAttrRelations and remove those duplicates before generating a snapshot for that publisher.
- Landesk.database.replication.exe
300160 LANDesk.Database.Replication.exe.log is stamping publishers' snapshot/logreader/distribution account passwords in plain text
- Removed the password from the script file (initially intentional) and the .log file (initially unintentional).

Scripts

293174 The Status of a Scheduled Task for a Custom Script remains "Working" when 1 or more targeted machines are off (not reachable)
- Treat unreachable as a failure machine status
- LANDesk.ManagementSuite.Data.dll

SDK

288435 MBSDK may not add the machines to tasks correctly
- Assign created task to the return structure.
- MBSDKService.dll
308035 The "AddDeviceToScheduledTask" MBSDK call can ignore user-limiting scopes
- Check the user scope and machine before adding the machine to the task.
- MBSDKService.dll

Shared Tech

297178 Security Issue: CBA_ANONYMOUS logging in as batch account may be a concern in some environments
- Changed the way CBA_ANONYMOUS is configured on Windows client systems. Previously it was added to the "Guests" group and was configured to require LogonAsBatch permissions and denied LogonInteractive. This was done to prevent the user from seeing the CBA_ANONYMOUS account as an option at the login screen. Because this configuration required additional GPO configuration to make it work right, CBA_ANONYMOUS has been changed to no longer be in the Guests group and is using LogonInteractive instead of LogonAsBatch. Because the account isn't in in a group such as Users, it still doesn't show up in the Windows logon screen.
- ServiceHost.exe (and subsequently cba8inst.msi)

Software Deployment Portal

269086 Previously successfully installed recommended and optional policies with run once are made available for install after upgrading from 9.0 SP4 to 9.5 SP3
- For last run, only compare if year later than 1970.
- LANDeskLaunchpadDLL.dll
336051 Portal Manager may fail to refresh when communicating via CSA on agent
- When the Policy Manager is unable to connect to the directory (disconnected machine, CSA, etc.), we use the cached credentials. The cache didn't follow the same format as the directory and the user would get an error in Portal Manager stating that the policies couldn't be loaded.
- LocalRequest.dll

Software Distribution

150833 Copy destination folder for DBCS file is not right.
- Client side decode UTF8 to Unicode. Core side call RedirectFilePathW for hash path.
- LANDesk.ManagementSuite.SoftwareDistribution.Business.dll ldredirect_x64.dll sdclientlib.dll
151676 Scheduled Task doesn't run after a reboot that is set to have deferrals and eventually install
- Make push task recurring if task interrupted during download or deploy deferral prompt.
- PolicyData.dll
151929 Executable Packages distributed via UNC with a "Run from Source" method returns always successful even if the .exe has been renamed or deleted
- If launch failed, use return code from ProcessLaunch::Launch instead of exitcode for return value.
- sdclientlib.dll
151965 Numbers for stale task is inconsistent with record in dialog.
- Fixed query to return correct results.
- LANDesk.ManagementSuite.SoftwareDistribution.Business.dll
151974 Using an & in a custom message for a task truncates the message on the client.
- Allow '&' to be display in custom message.
- PatchManagement.dll sdclientlib.dll deferraldeploywithmessage.html deferraldownloadwithmessage.html htmlcommon.js
215713 Packages may not install on Windows 10 clients
- Added the win10 and win10-x64 platforms to the detection logic.
- LANDesk.ManagementSuite.SoftwareDistribution.Business.dll
235271 Reboot settings unavailable for Software Distribution role
- Reboot agent setting provider overrides base HasDeployRights to include SofteareDistribution deploy right.
- PatchManagement.dll
236876 Security: Deployment of a powershell distribution package with LDMS changes the powershell execution policy
- Added the ability to get the current PowerShell execution policy and reset it when we are done.
- sdistps1.exe
254323 WOL for custom scripts works only when starting the scheduled task from its properties
- For custjob, if no ClientPolicy create it so that it will not set task configure to default
- LANDesk.ManagementSuite.SoftwareDistribution.WinUI.dll
258711 Client may not properly run policy.sync if using a terminal session on 2003 server and XP
- When using teminal services, you need to connect to the Admin session in order for ldapwhoami.exe to succeed, which in turn will make PolicySync succeed.
- N/A
259328 Schedule remote wakeup is always Active status
- Set correct task attribute and machine status before and after sending out wake packet.
- LANDesk.PWM.TaskHandler.dll TaskHandlerProxy.exe
260307 Policies are stacked up on client and don't run
- Fix for policy .dat files that get orphaned when they are in the RunNow queue and they get canceled and restarted from the core.
- PolicySync.exe PolicyData.dll
263012 Powershell packages with invalid commands return as successful
- This is a power shell script error. Add if ($? -ne $true) { exit 1 } where exit value can be specified as your desired error code (not have to be 1).
- None
263274 LDMS 9.6 SP2-Core-JPN/FRA - Distribution Setting -Customize windows caption is garbled
- for previewing vulscan dialogs, if a caption is in UTF8, it will convert it to multibyte before displaying it on UI.
- vulscan.dll
267121 APMService.dll can hang during RequestRemoteOperations
- Needed to add a Dispose method on the DataBaseAccessor class. If there was an exception thrown, the semaphore would never release the current instance and eventually no more DB accesses could happen. Both the Dispose method were added and the exception
- ApmService.dll
269184 Some task report a false positive install "package already installed"
- Added extra checking/logging around sending the already installed status back to the core. Now the .stat file must have a success status in order for that particular status to be returned. Otherwise, the policy will be executed unless it's already waiti
- PolicySync.exe
275186 Software app added to an existing bundle never arrives on device after running task a second time
- Re-factored the backend IIS package xml cache so that it checks the package hash along with the package revision and return code template revision. Also rewrote the query to be more optimized and changed the drag n drop UI to update the package revision
- landesk.managementsuite.softwaredistribution.winui.dll landesk.managementsuite.softwaredistribution.business.dll
278244 Packages reinstalling when targeting by LDAP users
- If target to all users, build APM return target with device ID. If target to current user, build APM return target with targeted APM user name.
- LANDesk.ManagementSuite.Data.dll DataMart.xml ApmService.dll LANDesk.ManagementSuite.SoftwareDistribution.WinUI.dll
280039 AD circular group reference cause test of LDAP query crash
- Fixed for AD group circular reference.
- LANDesk.DrManAPI.dll
280590 Package with dependent packages (or bundle) using always reboot setting may not continue after first reboot under some circumstances
- Give a longer retry in case just boot up and proxy host is not ready.
- sdclientlib.dll
282894 A package may still run old file if the preferred server is not updated with the changed files
- Fixed an issue where a software distribution job doesn't download the latest file from source if it changed. Previously, it could still download an old copy from a preferred server.
- lddwnld.dll
284287 Software Distribution task with deferral option starts immediately when custom message contains HTML code
- Needed to modify the back-end javascript message parsing code to allow for custom HTML.
- htmlcommon.js
292573 There are unlocalized strings in Distribution Package in Schedule task dialog
- Change layout for not cutting UI.
- LANDesk.ManagementSuite.SoftwareDistribution.WinUI.dll
293389 Some packages will not install on Microsoft Windows 7 Embedded, 32-bit.
- Added Windows 7 Embedded as a viable platform for vulscan
- Landesk.ManagmentSuite.SoftwareDistribution.Business.dll
293484 Policy retry interval needs to be configurable
- Added the ability to configure the PolicySync required policy retry period (in hours) to agent settings. This is on a per task basis.
- PolicyData.dll PatchManagement.dll Winconsole.dll
297355 Portal Manager displays TT for day and JJJJ for year in Last Run column on an English Windows 7 that has German MUI enabled
- Update for Localization
- LANDeskLaunchpadDLL.resources.dll
298905 Add detection to GetPackageXML to prevent caching of "incomplete" package info
- Generate package hash if not generated and does rely on 9.5 global scheduler doing it.
- PolicyTaskHandler.exe
301425 Add detection to GetPackageXML to prevent caching of "incomplete" package info.
- Defect 301425: Using LDHashUtil_x64 do MD5 hash. Modified schedpkgupdate.exe with new command line switch /checkhash to hash all not hashed package files decoupled from task. Modified scheduler to regularly calling schedpkgupdate.exe for un-hashed files.
- schdsvc.exe Landesk.ManagementSuite.SoftwareDistribution.Business.dll package.data.dll schedpkgupdate.exe
302186 Modify policysync to have a random delay and retry for policies request to APMService
- After 6 retry for 6 seconds each, generate a local scheduler job to run policy sync one more time with auto delay of 5 to 15 minutes.
- PolicySync.exe
302303 MSI services deployment scheduled Fail
- Fixed being able to launch the MSI Services custom script.
- sdclientlib.dll MSI Service Deployment.ini
302318 JPN/FRA/ESP/CHS/DEU-The "Column set" doesn't work in Scheduled task
- Non-english consoles don't show columns due to malformed BNF.
- LANDesk.ManagementSuite.SoftwareDistribution.WinUI.dll
302373 Malformed 'korhtmlstrings.js' file contains syntax errors causing Windows Script Error popups.
- Update for Localization
- korhtmlstrings.js
303364 When deploying a distribution package as a link, a non-admin user can't launch the package
- Read registry key with read only permission.
- sdclientlib.dll
303774 Software Distribution tasks get stuck when task names contain certain UTF-8 characters
- Using Encoding.UTF8 to read bytes for deserialize.
- PolicySync.exe
311232 Optional or recommended task may be automatically run if a repeating frequency is set
- Run repeated optional/recommended only after user run the policy from portal.
- PolicyData.dll
311274 Portal Manager shows no applications if any task .xml is empty
- Invalid policy .xml files on the client resulted in an empty Portal Manager. We now catch the errors and display all the valid policies in the Portal Manager.
- policydata.dll
313212 9.6 does not have a WOL-option for Custom Script jobs (Loss of functionality)
- Add a WOL checkbox in the targets control only if the task is a custjob task. Otherwise, WOL and Accelerated WOL are controlled from the task settings property page.C:\DEV_SVN\landesk\branches\LD9.60.1-release\loc\jpn\ja-JP\LANDesk.ManagementSuite.Softwa
- LANDesk.ManagementSuite.SoftwareDistribution.WinUI.dll
321199 Cached LDAP info may be out of sync in 9.6
- In 9.6 LDAP machine group may not have <*> to separate different group fields and only has name.
- localrequest.dll PolicySync.exe
322282 LDAP Info can be truncated from local cache due to group string value
- Correctly get cached group reg name and using bigger buffer loading group multistring value.
- localrequest.dll
324057 Security: Deployment of a powershell distribution package with LDMS changes the powershell execution policy
- Added UI to turn on the security attribute for powershell execution. Run script using 'RemoteSigned' and restore to original after execution.
- sdclientlib.dll sdistps1.exe
327549 When using high screen resolutions, dialog boxes may be "compressed"
- Reset dialog size based on html page size.
- htmldialog.exe deferraldeploypage.html deferraldeploywithmessage.html deferraldownloadpage.html deferraldownloadwithmessage.html deferralpage.html deferralwithmessage.html htmldefault.css
330465 Portal Manager Crash when deploying Patches
- Check if cannot load status since patch will generate and update with delay.
- LANDeskLaunchpadDLL.dll
330470 Portal Manager doesn't distinguish patches installed
- The Task History in the Portal Manager will now keep a history based on the task id and the package name, not just the task id.
- PolicyData.dll
331185 Powershell packages always return a success even when they fail.
- Added $LASTEXITCODE to the parameter string for the powershell script.
- sdistps1.exe
331228 Failed policies do not retry in 9.6
- Add check required/failed for reoccurring Also add OneOnce check with 24 hour filter
- PolicyData.dll
337818 Policy-Supported Push is not showing the correct status information
- If PSP, in case of failed discovery, set machine status to waiting and return code to "Policy has been made available" (TASK_API_RETCODE.trPullAvailable_Success).
- PolicyTaskHandler.exe
338291 Possible Win32 callback exception in discovery
- Looking next 12 bytes for next MAC address if have multiple.
- PolicyTaskHandler.exe LANDesk.ManagementSuite.SoftwareDistribution.Win32.dll
340420 Missing "Virtuals Applications" in Portal Manager
- "Virtual Application" packages wouldn't show up in the Portal Manager.
- LANDeskLaunchPadDLL.dll

Software License Monitoring

278622 OS Products should not be removed from the ProductComputer table during calculations
- Fixed OS products - Updated SLM calculations so that OS products are not removed from computers during calculations.
- SAM.Business.dll
290605 SLM fails to calculate on Rollup with SQL Replication
- Fixed
- Sam.Business.dll

Web Console

214951 Critical exception when attempting to add domain users to Remote Control Settings > Remote Control Operators Group
- Using a .net method to enumerate the domain object rather than calling into an unmanaged dll.
- rcbehaviorbiz.dll rcbehaviorui.dll
250966 Web Console fails randomly (sometimes requiring a reboot) after applying the Base 0722 Patch
- -
- landesk.managementsuite.authentication.dll ldcache.dll

Files in this patch

administrationappview.xml

1.30kB

6/30/2016 3:16 PM

AdvanceAgent.exe

127.50kB

9.60.4.99

2/1/2016 1:15 PM

AMTConfig.Business.dll

72.00kB

9.60.4.131

5/12/2016 8:19 AM

AMTConfig.Data.dll

172.50kB

9.60.4.113

3/4/2016 5:57 AM

AMTConfig.WinUI.dll

210.50kB

9.60.4.131

5/12/2016 8:19 AM

amtmon.dll

375.50kB

9.60.4.131

5/12/2016 8:19 AM

AMTPlug.dll

168.00kB

9.60.4.113

3/4/2016 5:57 AM

antivirus8.cab

5.94MB

7/1/2016 10:22 AM

ApmService.dll

68.00kB

9.60.4.103

2/12/2016 9:33 AM

apmservice.exe

246.00kB

9.60.4.99

2/1/2016 1:13 PM

ApplicationLauncher.exe

189.00kB

9.60.4.158

7/8/2016 6:52 AM

AppList.xml

1.55kB

10/28/2013 8:24 AM

ApplyDrivers.exe

18.50kB

10/27/2015 8:41 AM

ApplyDrivers_x64.exe

21.00kB

10/27/2015 8:42 AM

appview.xml

1.88kB

6/30/2016 3:16 PM

ArpApi.dll

88.50kB

9.60.4.27

7/8/2015 2:21 PM

AVBiz.dll

221.00kB

9.60.4.32

7/16/2015 6:36 AM

AVDefPusher.exe

9.00kB

9.60.4.88

12/17/2015 10:19 AM

AVUI.dll

2.01MB

9.60.4.117

3/18/2016 9:52 AM

cba8inst.msi

3.11MB

5/16/2016 2:49 PM

ChilkatDotNet45.dll

7.92MB

9.5.0.58

7/8/2016 6:44 AM

clientaccesspolicy.xml

373.00 B

6/30/2016 3:17 PM

ClientConfig.dll

1.34MB

9.60.4.88

12/17/2015 10:24 AM

ClientConfigBehavior_Apply.dll

193.00kB

9.60.4.88

12/17/2015 10:23 AM

ClientConnectivityBehavior_apply.dll

145.00kB

2/4/2016 7:27 AM

ClientDbUtil.exe

129.50kB

9.60.4.126

5/24/2016 11:57 AM

CommonAgentSettingsProvider.dll

28.50kB

9.60.2.102

6/30/2016 3:17 PM

CommonServices.Common.dll

21.00kB

1.0.0.243

11/21/2014 1:09 PM

CommonServices.DAL.dll

18.50kB

1.0.0.243

11/21/2014 1:09 PM

CommonServices.Mef.dll

5.00kB

1.0.0.243

11/21/2014 1:09 PM

CommonServices.Public.dll

14.50kB

1.0.0.243

11/21/2014 1:09 PM

CommonServices.Services.dll

174.00kB

1.0.0.243

11/21/2014 1:09 PM

CommonServicesApplication.Web.dll

7.50kB

1.0.0.243

11/21/2014 1:09 PM

console_rptfiles.cab

1,016.51kB

6/27/2016 6:26 AM

core.secure.dll

64.00kB

9.60.4.129

5/9/2016 9:05 AM

CoreProfile.dll

13.00kB

9.60.4.100

2/4/2016 7:28 AM

CoreSyncService.exe

32.50kB

9.60.4.35

7/22/2015 6:21 AM

custjob.exe

635.55kB

9.60.4.99

2/1/2016 1:26 PM

CustJobLaunch.exe

121.50kB

9.60.4.99

2/1/2016 1:10 PM

CustomDataForms.dll

487.50kB

9.60.4.101

2/9/2016 8:15 AM

dashboardview.xml

830.00 B

6/30/2016 3:16 PM

DataDynamics.Reports.Diagnostics.dll

44.00kB

1.6.2260.8

6/30/2016 3:16 PM

DataDynamics.Reports.dll

2.71MB

1.6.2260.8

6/30/2016 3:16 PM

DataDynamics.Reports.Extensibility.dll

80.00kB

1.6.2260.8

6/30/2016 3:16 PM

DataDynamics.Reports.Rendering.Excel.dll

791.50kB

1.6.2260.8

6/30/2016 3:16 PM

DataDynamics.Reports.Rendering.Graphics.dll

152.50kB

1.6.2260.8

6/30/2016 3:16 PM

DataDynamics.Reports.Rendering.Html.dll

142.00kB

1.6.2260.8

6/30/2016 3:16 PM

DataDynamics.Reports.Rendering.Pdf.dll

1.96MB

1.6.2260.8

6/30/2016 3:16 PM

DataDynamics.Reports.Rendering.Word.dll

89.50kB

1.6.2260.8

6/30/2016 3:16 PM

DataDynamics.Reports.Rendering.Xml.dll

33.00kB

1.6.2260.8

6/30/2016 3:16 PM

DataDynamics.Reports.Web.dll

1.08MB

1.6.2260.8

6/30/2016 3:16 PM

DataHelper.dll

66.50kB

7/8/2016 6:52 AM

DataHelper_x64.dll

82.00kB

7/8/2016 6:52 AM

Datamart.xml

770.36kB

3/31/2016 9:17 AM

DatamartPM.xml

39.31kB

2/26/2016 8:30 AM

DatamartSAM.xml

29.36kB

6/30/2016 3:16 PM

DBRollup.exe

327.50kB

9.60.4.31

7/14/2015 1:27 PM

DeviceCriteria.xml

804.00 B

6/30/2016 3:16 PM

deviceview.xml

229.00 B

6/30/2016 3:16 PM

dmrollup.dll

4.22MB

9.60.4.78

11/16/2015 7:22 AM

DocumentFormat.OpenXml.dll

4.99MB

2.0.5022.0

6/19/2014 5:25 AM

EncArchive.exe

2.25MB

9.60.4.6

6/1/2015 7:03 AM

EncUnlock.exe

149.00kB

7/21/2015 7:59 AM

EPSUI.exe

648.07kB

9.60.4.131

7/12/2016 5:49 AM

execviewer2.dll

147.50kB

9.60.4.167

7/21/2016 2:37 PM

FileReplUI.dll

624.00kB

9.60.4.78

11/16/2015 8:16 AM

fwregister.exe

113.00kB

9.60.4.158

7/8/2016 6:47 AM

gatewayui.dll

157.50kB

9.60.4.126

5/9/2016 8:47 AM

GatherLogs.exe

162.50kB

9.60.4.1

5/21/2015 1:17 PM

GatherProducts.exe

278.89kB

9.60.4.73

11/3/2015 7:30 AM

genkey.exe

136.00kB

9.60.0.399

5/16/2016 2:31 PM

GetBases.exe

58.50kB

9.60.4.139

5/27/2016 7:03 AM

GrapeCity.ActiveReports.Chart.v8.dll

2.57MB

8.0.133.0

6/30/2016 3:16 PM

GrapeCity.ActiveReports.Diagnostics.v8.dll

44.00kB

8.0.133.0

6/30/2016 3:16 PM

GrapeCity.ActiveReports.Document.v8.dll

496.50kB

8.0.133.0

6/30/2016 3:16 PM

GrapeCity.ActiveReports.Export.Document.v8.dll

309.00kB

8.0.133.0

6/30/2016 3:16 PM

GrapeCity.ActiveReports.Export.Excel.v8.dll

1.31MB

8.0.133.0

6/30/2016 3:16 PM

GrapeCity.ActiveReports.Export.Html.v8.dll

411.00kB

8.0.133.0

6/30/2016 3:16 PM

GrapeCity.ActiveReports.Export.Image.Unsafe.v8.dll

8.00kB

8.0.133.0

6/30/2016 3:16 PM

GrapeCity.ActiveReports.Export.Image.v8.dll

180.00kB

8.0.133.0

6/30/2016 3:16 PM

GrapeCity.ActiveReports.Export.Pdf.v8.dll

6.23MB

8.0.133.0

6/30/2016 3:16 PM

GrapeCity.ActiveReports.Export.Rdf.v8.dll

67.50kB

8.0.133.0

6/30/2016 3:16 PM

GrapeCity.ActiveReports.Export.Word.v8.dll

184.50kB

8.0.133.0

6/30/2016 3:16 PM

GrapeCity.ActiveReports.Export.Xaml.v8.dll

310.50kB

8.0.133.0

6/30/2016 3:16 PM

GrapeCity.ActiveReports.Export.Xml.v8.dll

117.50kB

8.0.133.0

6/30/2016 3:16 PM

GrapeCity.ActiveReports.Extensibility.v8.dll

156.00kB

8.0.133.0

6/30/2016 3:16 PM

GrapeCity.ActiveReports.OracleClient.v8.dll

11.00kB

8.0.133.0

6/30/2016 3:17 PM

GrapeCity.ActiveReports.v8.dll

7.16MB

8.0.133.0

6/30/2016 3:16 PM

GrapeCity.ActiveReports.Web.v8.dll

3.14MB

8.0.133.0

6/30/2016 3:16 PM

HIIClient.exe

790.50kB

9.60.4.106

2/17/2016 11:46 AM

HIIClient_x64.exe

1.00MB

9.60.4.106

2/17/2016 11:47 AM

HipsClientConfig.exe

101.36kB

9.60.4.143

7/12/2016 5:49 AM

htmldialog.exe

51.50kB

9.60.4.167

7/21/2016 2:38 PM

idal.dll

496.50kB

9.60.4.124

5/9/2016 8:02 AM

Interop.IDALLib.dll

19.00kB

9.5.0.0

5/9/2016 8:02 AM

InventorySettingsBehavior_Apply.dll

61.50kB

12/17/2015 10:23 AM

isscert.dll

309.00kB

9.60.4.158

7/8/2016 6:48 AM

isschat.dll

197.50kB

9.60.4.158

7/12/2016 5:38 AM

issclip.dll

195.00kB

9.60.4.158

7/8/2016 6:48 AM

issclipexec.exe

143.12kB

9.60.4.158

7/12/2016 5:49 AM

isscntr.exe

1.56MB

9.60.4.158

7/8/2016 6:48 AM

issftclt.dll

108.00kB

9.60.4.158

7/8/2016 6:47 AM

issftran.dll

334.00kB

9.60.4.158

7/12/2016 5:38 AM

issftran64.dll

374.00kB

9.60.4.158

7/12/2016 5:38 AM

issftran64helper.exe

91.50kB

9.60.4.158

7/8/2016 6:50 AM

issinfo.dll

391.00kB

9.60.4.167

7/21/2016 2:37 PM

issproxy.exe

338.00kB

9.60.4.161

7/12/2016 1:39 PM

issrboot.dll

292.00kB

9.60.4.158

7/12/2016 5:38 AM

isstnmp.dll

347.00kB

9.60.4.161

7/12/2016 1:52 PM

isstnmp64.dll

383.00kB

9.60.4.161

7/12/2016 1:53 PM

issuifx.dll

190.50kB

9.60.4.158

7/8/2016 6:47 AM

issuser.exe

1.71MB

9.60.4.166

7/19/2016 3:39 PM

issview.dll

322.00kB

9.60.4.158

7/12/2016 5:38 AM

KavClient.cab

272.30MB

7/1/2016 10:22 AM

KavConnector.cab

3.52MB

7/1/2016 10:22 AM

KavMacClient.cab

142.43MB

7/1/2016 10:22 AM

kvmview.dll

260.00kB

9.60.4.158

7/12/2016 5:38 AM

LANDesk.AlertManager.UI.dll

100.00kB

9.60.4.47

8/21/2015 10:51 AM

LANDesk.Auditing.Archive.dll

15.50kB

9.60.4.99

2/1/2016 1:11 PM

LANDesk.Auditing.Business.dll

18.50kB

9.60.2.48

6/30/2016 3:17 PM

LANDesk.Auditing.Interfaces.dll

11.50kB

9.60.2.48

6/30/2016 3:17 PM

LANDesk.Auditing.Proxy.dll

16.50kB

9.60.2.48

6/30/2016 3:17 PM

LANDesk.AuthorizeToken.dll

10.50kB

1.0.0.243

11/21/2014 1:09 PM

LANDesk.Common.RunMethod.exe

12.00kB

9.60.0.306

7/7/2016 4:56 PM

LANDesk.DataAnalytics.KillApps.exe

21.00kB

9.60.0.440

9/5/2014 8:41 AM

LANDesk.Database.Replication.exe

288.50kB

9.60.4.137

5/24/2016 11:57 AM

LANDesk.DataServices.Database.dll

45.00kB

9.60.2.71

6/30/2016 3:17 PM

LANDesk.DataServices.dll

90.00kB

9.60.2.116

6/30/2016 3:16 PM

LANDesk.DataServices.Registry.dll

30.50kB

9.60.2.74

6/30/2016 3:16 PM

LANDesk.DataServices.Schema.dll

89.50kB

9.60.2.71

6/30/2016 3:17 PM

LANDesk.DrManAPI.dll

20.00kB

9.60.4.98

1/22/2016 7:42 AM

LANDesk.Install.Common.Actions.dll

26.00kB

9.60.0.306

7/7/2016 4:56 PM

LANDesk.Install.Common.dll

96.50kB

9.60.0.306

7/7/2016 4:56 PM

LANDesk.Install.Common.View.dll

71.00kB

9.60.0.306

7/7/2016 4:56 PM

LANDesk.Install.ConfigUtility.exe

21.50kB

9.60.0.306

7/7/2016 4:56 PM

LANDesk.Install.Mobility.dll

76.50kB

1.0.0.0

7/20/2016 1:29 PM

LANDesk.Install.Mobility.View.dll

9.50kB

1.0.0.0

7/20/2016 1:28 PM

LANDesk.Install.ReportQueryInstallerConsole.exe

11.00kB

1.0.0.0

6/30/2016 3:16 PM

LANDesk.Install.ReportQueryInstallTool.dll

28.00kB

1.0.0.0

6/30/2016 3:16 PM

LANDesk.LDPermissionsAndRights.dll

8.50kB

1.0.0.243

11/21/2014 1:09 PM

LANDesk.Licensing.Business.dll

20.00kB

9.60.4.47

8/21/2015 10:51 AM

LANDesk.ManagementSuite.Authentication.dll

169.50kB

9.60.4.49

8/26/2015 6:59 AM

LANDesk.ManagementSuite.BusinessObjects.dll

36.50kB

9.60.4.55

9/4/2015 5:33 AM

LANDesk.ManagementSuite.CustomScripts.dll

28.00kB

9.60.2.48

6/30/2016 3:17 PM

LANDesk.ManagementSuite.Data.dll

868.00kB

9.60.4.124

5/27/2016 7:02 AM

LANDesk.ManagementSuite.Data.XmlSerializers.dll

125.00kB

9.60.0.0

6/30/2016 3:16 PM

LANDesk.ManagementSuite.Database.dll

172.00kB

9.60.4.119

3/31/2016 9:43 AM

LANDesk.ManagementSuite.Diagnostics.dll

112.00kB

9.60.2.105

6/30/2016 3:16 PM

LANDesk.ManagementSuite.HPBiosSettingsPolicy.Business.dll

13.00kB

9.60.2.48

6/30/2016 3:17 PM

LANDesk.ManagementSuite.Information.dll

248.00kB

9.60.4.1

5/21/2015 1:15 PM

LANDesk.ManagementSuite.Integration.dll

38.50kB

9.60.2.48

6/30/2016 3:17 PM

LANDesk.ManagementSuite.Licensing.ActivateCore.exe

236.00kB

9.60.4.100

2/4/2016 7:30 AM

LANDesk.ManagementSuite.Licensing.Activation.dll

116.00kB

9.60.4.100

2/4/2016 7:30 AM

LANDesk.ManagementSuite.Queries.dll

36.00kB

9.60.2.48

6/30/2016 3:16 PM

LANDesk.ManagementSuite.RESTful.Resources.dll

97.50kB

9.60.4.49

8/26/2015 6:56 AM

LANDesk.ManagementSuite.RESTful.Service.dll

172.00kB

9.60.4.82

11/20/2015 5:49 AM

LANDesk.ManagementSuite.ScanAndBlock.Winconsole.dll

432.00kB

9.60.4.159

7/11/2016 6:53 AM

LANDesk.ManagementSuite.SoftwareDistribution.Apm.dll

39.00kB

9.60.4.89

12/18/2015 10:50 AM

LANDesk.ManagementSuite.SoftwareDistribution.Business.dll

792.00kB

9.60.4.130

7/12/2016 5:43 AM

LANDesk.ManagementSuite.SoftwareDistribution.Data.dll

140.00kB

9.60.2.113

6/30/2016 3:17 PM

LANDesk.ManagementSuite.SoftwareDistribution.TaskHandler.dll

136.00kB

9.60.4.130

7/1/2016 10:06 AM

LANDesk.ManagementSuite.SoftwareDistribution.Win32.dll

233.50kB

9.60.4.5

5/29/2015 5:34 AM

LANDesk.ManagementSuite.SoftwareDistribution.WinUI.dll

2.13MB

9.60.4.156

7/1/2016 10:06 AM

LANDesk.ManagementSuite.TaskHandler.dll

20.00kB

9.60.2.48

6/30/2016 3:17 PM

LANDesk.ManagementSuite.Win32Api.dll

140.00kB

9.60.4.158

7/8/2016 6:50 AM

LANDesk.ManagementSuite.WinConsole.dll

4.93MB

9.60.4.145

7/12/2016 5:45 AM

LANDesk.ManagementSuite.WinConsole.Win32.dll

163.50kB

9.60.2.61

6/30/2016 3:17 PM

LANDesk.Provisioning.Business.dll

660.00kB

9.60.4.119

3/31/2016 9:41 AM

LANDesk.Provisioning.WinUI.dll

2.31MB

9.60.4.119

3/31/2016 9:42 AM

LANDesk.PWM.TaskHandler.dll

32.00kB

9.60.4.61

9/29/2015 8:25 AM

LANDesk.PWM.WinUI.dll

750.00kB

9.60.4.24

7/1/2015 12:05 PM

LANDesk.Query.Business.dll

64.00kB

9.60.4.47

8/21/2015 10:51 AM

LANDesk.Query.UI.dll

120.00kB

9.60.4.72

11/2/2015 6:46 AM

LANDesk.ReportingServices.DataDynamicsReports.dll

372.50kB

9.60.4.71

10/30/2015 8:50 AM

LANDesk.ReportingServices.dll

37.00kB

9.60.2.52

6/30/2016 3:16 PM

LANDesk.Scheduler.TaskHandler.dll

313.50kB

9.60.4.78

11/16/2015 8:16 AM

LANDesk.ServerInfo.Business.dll

168.00kB

9.60.4.47

8/21/2015 10:51 AM

LANDesk.ServerManager.Business.dll

144.00kB

9.60.4.47

8/21/2015 10:51 AM

LANDesk.ServerManager.Common.dll

28.00kB

9.60.4.47

8/21/2015 10:51 AM

LANDesk.ServerManager.Data.dll

76.00kB

9.60.4.47

8/21/2015 10:51 AM

LANDesk.ServerManager.UI.dll

128.00kB

9.60.4.47

8/21/2015 10:51 AM

LANDesk.Shared.RAXfer.dll

24.00kB

9.60.0.399

5/16/2016 2:31 PM

LANDesk.SoftwareDistribution.Business.dll

108.00kB

9.60.4.47

8/21/2015 10:51 AM

LANDesk.WebConsole.Common.dll

60.00kB

9.60.4.47

8/21/2015 10:51 AM

LANDesk.WebServiceSecurity.dll

11.50kB

1.0.0.243

11/21/2014 1:09 PM

LANDeskLaunchpadDLL.dll

885.50kB

9.60.4.74

11/3/2015 1:44 PM

Lclxclnt.dll

28.50kB

2/1/2016 1:03 PM

lclxsvc.dll

134.50kB

9.60.4.99

2/1/2016 1:10 PM

ldapinfo.dll

1.79MB

9.60.4.4

5/28/2015 2:24 PM

LDAV.exe

1,000.11kB

9.60.4.139

7/12/2016 5:49 AM

ldavhlpr.dll

792.00kB

9.60.4.149

6/21/2016 5:56 AM

ldcache.dll

946.00kB

9.60.4.124

4/14/2016 7:47 AM

lddevcon.exe

354.50kB

10.0.10011.16384

7/12/2016 5:31 AM

lddevcon64.exe

436.50kB

10.0.10011.16384

7/12/2016 5:31 AM

lddwnld.dll

958.50kB

9.60.4.162

7/13/2016 11:45 AM

lddwnld_x64.dll

1.37MB

9.60.4.162

7/13/2016 11:46 AM

lddwnldClassLib.dll

140.00kB

7/13/2016 11:46 AM

LDEncrypt.exe

94.84kB

9.60.4.96

1/20/2016 6:52 AM

LDHashUtil_x64.dll

11.50kB

2/11/2016 10:05 AM

ldHpCommon.dll

254.27kB

9.60.4.39

8/6/2015 8:58 AM

LDInv32.exe

4.98MB

9.60.4.102

2/11/2016 10:07 AM

ldiscn32.exe

2.69MB

9.60.4.146

7/12/2016 5:49 AM

LDProfile.exe

590.00kB

9.60.4.99

2/1/2016 1:09 PM

ldPropertySheet.dll

60.00kB

9.60.4.5

5/29/2015 5:31 AM

ldReboot.exe

3.54MB

9.60.4.151

6/23/2016 10:08 AM

ldredirect.dll

80.00kB

9.60.4.51

8/28/2015 6:33 AM

ldredirect_x64.dll

114.50kB

9.60.4.51

8/28/2015 6:34 AM

LDRemoteSC.dll

129.04kB

10.1.0.124

7/21/2016 2:37 PM

LDRemoteSC64.dll

157.20kB

10.1.0.124

7/21/2016 2:37 PM

ldrunner.exe

84.00kB

9.60.4.99

2/1/2016 1:11 PM

LDSecSetup32.exe

750.16kB

9.60.4.156

7/12/2016 5:49 AM

LDSecSetup64.exe

956.40kB

9.60.4.156

7/12/2016 5:49 AM

LDSecSvc.exe

1.88MB

9.60.4.156

7/12/2016 5:49 AM

LDSecSvc64.exe

2.41MB

9.60.4.156

7/12/2016 5:49 AM

LDSetTPM.exe

22.00kB

9.60.4.39

8/6/2015 8:45 AM

LDSystemEventCapture.dll

1.79MB

9.60.4.123

4/19/2016 1:34 PM

LDUrlMon64.dll

558.53kB

9.60.4.61

9/29/2015 8:37 AM

LDWFMgr.exe

135.50kB

9.60.4.70

10/29/2015 7:53 AM

libeay32.dll

1.30MB

1.0.1t

5/12/2016 8:23 AM

libeay64.dll

1.52MB

1.0.1t

5/5/2016 2:01 PM

LocalRequest.dll

67.00kB

9.60.4.150

6/22/2016 7:47 AM

localsch.exe

234.16kB

9.60.4.60

9/16/2015 1:42 PM

LocReport.exe

14.00kB

9.60.2.87

11/4/2014 6:00 AM

log4net.dll

252.00kB

1.2.10.0

6/30/2016 3:17 PM

LtaCgi.exe

239.00kB

9.60.4.158

7/8/2016 6:52 AM

LtaEap.dll

294.51kB

9.60.4.99

2/1/2016 1:26 PM

LtaEap64.dll

349.84kB

9.60.4.99

2/1/2016 1:26 PM

ltapi.dll

203.00kB

9.60.4.99

2/1/2016 1:10 PM

MakeBootMedia.exe

56.63kB

9.60.3.5

11/19/2015 6:23 AM

MAKECAB.dll

2.58MB

9.60.4.99

2/1/2016 1:05 PM

Manageldappl.dll

570.00kB

9.60.2.89

6/30/2016 3:17 PM

ManageLdappl.dll

570.50kB

9.60.4.125

5/9/2016 8:50 AM

MBSDKService.dll

144.00kB

9.60.4.137

5/24/2016 11:58 AM

MergeXml.exe

8.50kB

9.50.0.504

6/30/2016 3:16 PM

Microsoft.Practices.ServiceLocation.dll

29.06kB

1.0.0.0

6/30/2016 3:17 PM

Microsoft.Practices.Unity.dll

130.80kB

2.0.414.0

6/30/2016 3:17 PM

Microsoft.Practices.Unity.xml

354.40kB

6/30/2016 3:17 PM

miniscan.exe

145.50kB

9.60.4.126

4/19/2016 1:37 PM

Mobility.msi

3.06MB

7/20/2016 1:30 PM

nav_main.xml

846.00 B

6/30/2016 3:16 PM

NicRestart.exe

122.50kB

9.60.4.99

2/1/2016 1:26 PM

NicRestart64.exe

155.19kB

9.60.4.99

2/1/2016 1:26 PM

ntremoteexec.exe

116.00kB

9.60.0.399

5/16/2016 2:31 PM

OOBCredWrap_x86.dll

58.00kB

9.60.4.29

7/13/2015 11:33 AM

OpenFirewallPorts.exe

173.00kB

9.60.4.11

6/5/2015 5:40 AM

OtherSecurityBehavior_apply.dll

200.00kB

12/17/2015 10:23 AM

package.data.dll

100.00kB

9.60.4.127

7/1/2016 10:05 AM

Packet.dll

95.74kB

4.1.0.2980

7/8/2015 1:36 PM

packet64.dll

105.24kB

4.1.0.2980

7/8/2015 1:36 PM

PanelManager.dll

364.00kB

9.60.4.88

12/17/2015 10:24 AM

ParseMsi.dll

1.74MB

9.60.4.99

2/1/2016 1:03 PM

ParseMsi_x64.dll

2.39MB

9.60.4.99

2/1/2016 1:05 PM

PatchBiz.dll

1.36MB

9.60.4.164

7/15/2016 2:15 PM

PatchManagement.dll

7.70MB

9.60.4.145

7/12/2016 5:48 AM

pds2dis.dll

185.50kB

9.60.0.399

5/16/2016 2:26 PM

pds2dis.exe

67.50kB

9, 0, 0, 16

5/16/2016 2:27 PM

pds2dis_x64.dll

213.50kB

9.60.0.399

5/16/2016 2:27 PM

pds2info.dll

141.50kB

9.60.0.399

5/16/2016 2:26 PM

pds2lis.dll

108.00kB

9.60.0.399

5/16/2016 2:26 PM

PDS2Reg.dll

56.50kB

9.60.0.399

5/16/2016 2:26 PM

PlatformSettingsBehavior_Apply.dll

54.00kB

12/17/2015 10:23 AM

Pluralsight.Crypto.dll

39.50kB

1.1.0.0

11/12/2014 11:40 AM

PolicyData.dll

52.50kB

9.60.4.139

5/27/2016 7:02 AM

PolicySync.exe

76.74kB

9.60.4.145

7/12/2016 5:49 AM

PolicyTaskHandler.exe

36.50kB

9.60.4.130

7/1/2016 10:06 AM

PortalManagerBehavior_apply.dll

82.50kB

9.60.4.88

12/17/2015 10:23 AM

postcgi.exe

8.00kB

5/16/2016 2:40 PM

Provisioning.Secure.dll

24.00kB

9.60.4.107

2/25/2016 2:34 PM

rainstall.exe

279.00kB

9.60.0.399

5/16/2016 2:49 PM

RAXfer.dll

374.00kB

9.60.0.399

5/16/2016 2:34 PM

raxfer_x64.dll

472.00kB

9.60.0.399

5/16/2016 2:45 PM

RCBehavior_apply.dll

150.50kB

9.60.4.158

7/8/2016 6:52 AM

RCBehaviorBiz.dll

37.00kB

9.60.4.158

7/8/2016 6:52 AM

RCBehaviorUI.dll

168.00kB

9.60.4.168

7/25/2016 10:18 AM

rcconfig.exe

69.50kB

9.60.4.158

7/8/2016 6:48 AM

rcgui.exe

409.66kB

9.60.4.158

7/12/2016 5:49 AM

ReportQueries.xml

30.92kB

6/30/2016 3:16 PM

reportsview.xml

234.00 B

6/30/2016 3:16 PM

restartmon.exe

103.91kB

2/1/2016 1:26 PM

rollupcore_rptfiles.cab

982.37kB

6/27/2016 6:26 AM

rptfiles.cab

1.02MB

6/27/2016 6:26 AM

runasuserlibrary.dll

63.50kB

9.60.4.39

8/6/2015 8:35 AM

RunDDRViewer.exe

53.00kB

9.60.4.128

6/27/2016 6:26 AM

SAM.Business.dll

580.50kB

9.60.2.1

6/30/2016 3:17 PM

SAM.Client.UI.Web.dll

397.00kB

9.60.2.1

6/30/2016 3:17 PM

SAM.Services.dll

48.50kB

9.60.2.1

6/30/2016 3:17 PM

SAM.Services.Web.dll

7.50kB

9.60.2.1

6/30/2016 3:17 PM

SAM.WinConsole.dll

6.00kB

9.60.2.1

6/30/2016 3:16 PM

sam_main.xml

846.00 B

6/30/2016 3:16 PM

SAMContentUpdate.exe

31.00kB

9.60.2.1

6/30/2016 3:16 PM

schedpkgupdate.exe

40.00kB

9.60.4.127

7/1/2016 10:06 AM

SchedQry.exe

32.00kB

9.60.4.157

7/7/2016 7:42 AM

schedsvc.exe

281.00kB

9.60.4.164

7/15/2016 2:07 PM

SchedulerSettingsBehavior_Apply.dll

61.50kB

12/17/2015 10:23 AM

schedwol.exe

219.00kB

9.60.4.39

8/6/2015 8:43 AM

SDClientHandler.exe

354.00kB

9.60.4.39

8/6/2015 8:33 AM

SDClientHandler_x64.exe

384.00kB

9.60.4.39

8/6/2015 8:33 AM

sdclientlib.dll

548.50kB

9.60.4.130

6/28/2016 6:45 AM

sdistbat.exe

90.00kB

9.60.4.39

8/6/2015 8:38 AM

sdistmsi.exe

188.50kB

9.60.4.78

11/16/2015 7:21 AM

sdistps1.exe

228.50kB

9.60.4.153

6/28/2016 6:45 AM

sdistscript.exe

230.00kB

9.60.4.39

8/6/2015 8:38 AM

sdistvapp.exe

246.00kB

9.60.4.39

8/6/2015 8:37 AM

sendtaskstatus.exe

102.50kB

9.60.4.63

10/7/2015 12:22 PM

ServerVerify.exe

67.00kB

9.60.4.158

7/8/2016 6:50 AM

setup.exe

2.74MB

9.60.0.105

3/3/2016 7:16 AM

Setup.exe

122.98kB

9.60.0.306

7/7/2016 4:56 PM

Setup_PXEProxy.exe

4.43MB

11/4/2015 2:56 PM

ShutdownReboot.dll

133.00kB

9.60.4.99

2/1/2016 1:10 PM

SilentUpdate.exe

76.16MB

7/28/2016 4:53 PM

SLConsole.dll

20.50kB

9.60.2.1

6/30/2016 3:16 PM

SLM.LdAppl3.dll

29.00kB

9.60.2.1

6/30/2016 3:17 PM

SLM.Routines.exe

9.50kB

9.60.2.1

6/30/2016 3:17 PM

softmon.exe

665.16kB

9.60.4.114

3/11/2016 8:39 AM

stamper.exe

139.50kB

9.60.4.168

7/25/2016 10:18 AM

SubSonic.Core.dll

293.00kB

3.0.0.18338

6/30/2016 3:17 PM

SystemInterface.dll

40.00kB

1.0.0.0

11/12/2014 11:37 AM

SystemInterface.xml

299.97kB

11/12/2014 11:37 AM

SystemWrapper.dll

68.50kB

0.5.0.0

11/12/2014 11:37 AM

SystemWrapper.xml

221.08kB

11/12/2014 11:37 AM

TaskHandlerProxy.exe

14.00kB

9.60.4.87

12/14/2015 1:58 PM

Terminate.exe

153.00kB

9.60.2.104

11/18/2014 2:01 PM

tmcdll.dll

783.50kB

2/12/2016 9:29 AM

tmcsrvr.dll

123.00kB

9.60.4.99

2/1/2016 1:03 PM

tmcsvc.exe

216.54kB

9.60.4.99

2/1/2016 1:26 PM

UninstallWinClient.exe

240.20kB

9.60.4.158

7/12/2016 5:49 AM

UserManagement.Business.dll

216.50kB

9.60.4.35

7/22/2015 6:35 AM

UserManagement.Common.dll

46.00kB

9.60.2.91

6/30/2016 3:16 PM

UserManagement.Data.dll

36.50kB

9.60.2.52

6/30/2016 3:17 PM

VAMiner.exe

24.00kB

9.60.4.156

7/1/2016 10:07 AM

vigalert.exe

2.18MB

9.60.4.160

7/12/2016 5:49 AM

viguard.exe

3.42MB

9.60.4.160

7/12/2016 5:49 AM

vulscan.dll

3.44MB

9.60.4.151

6/23/2016 10:08 AM

vulScan.exe

137.59kB

9.60.3.52

4/13/2015 6:15 AM

WFMaintenanceWindow.exe

48.00kB

9.60.4.70

10/29/2015 7:53 AM

WinOEM.exe

208.00kB

9.60.4.158

7/8/2016 6:50 AM

wpcap.dll

275.74kB

4.1.0.2980

7/8/2015 1:36 PM

wpcap64.dll

361.74kB

4.1.0.2980

7/8/2015 1:36 PM

WpfAnimatedGif.dll

39.50kB

1.4.4

11/12/2014 11:33 AM

WpfAnimatedGif.xml

9.97kB

11/12/2014 11:33 AM

wscfg32.exe

496.70kB

9.60.4.158

7/12/2016 5:49 AM

WSVulnerabilityCore.dll

88.00kB

9.60.4.114

3/11/2016 8:27 AM

WudfUpdate_01009.dll

1.75MB

6.1.7600.16385 (win7_rtm.090713-1255)

7/8/2016 6:43 AM

WudfUpdate_0100964.dll

2.05MB

6.1.7600.16385 (win7_rtm.090713-1255)

7/8/2016 6:43 AM

XDDClient.exe

276.50kB

9.60.4.27

7/8/2015 2:21 PM

XDDFiles2DB.exe

48.00kB

9.60.4.39

8/6/2015 8:39 AM

XmlConfigMerge.dll

24.00kB

1.2.0.0

6/30/2016 3:16 PM

.Loading..Loading.

Service Pack 3

Installation Instructions

Installing on the Core and Rollup Core

Steps

Installing on Remote Consoles

Steps

Updating the Agent

Methods of agent deployment

Manual installation of the client patch

Updating the Agent With Patch Manager

Release Information

More Information

Feature Changes and Updates

Windows 10

Antivirus

Software Distribution

Endpoint Security

Defects Fixed

Agent Configuration

Agent Health

Agent-Core

Agent-Mac

AMT-vPro

Antivirus

Audit

Console

Content Replication

Core Synchronization

CSA

Custom Data Forms

Data Analytics

Endpoint Security

HP

Install

Inventory

LD Download

Linux-Unix

Localization

Mac

MBSDK

Mobility

Monitoring

Patch Manager

Patch Manager Content-Windows

Power Manager

Provisioning

Query

RBA

Reboot Settings

Remote Control

Reporting

Rollup

Scripts

SDK

Shared Tech

Software Deployment Portal

Software Distribution

Software License Monitoring

Web Console

Files in this patch