Skip to main content
Sumo Logic

Collector Release Notes

RSS Feed

Collector Release Notes for the current year are listed here. If you need to see previous Collector Release Notes, check the archive.

You can upgrade Installed Collectors in the following ways:

May 11, 2022 (19.392-6)

  • Security: Upgraded the Collector JRE to 8.332.08.1 to address several CVEs:

CVE

CVSS

Component

CVE-2022-21476

7.5

security-libs/java.security

CVE-2022-21496

5.3

core-libs/javax.naming

CVE-2022-21434

5.3

core-libs/java.lang

CVE-2022-21426

5.3

xml/jaxp

CVE-2022-21443

3.7

security-libs/java.security

For details, see the changelog here.

April 18, 2022 (19.392-4)

  • Security: Removed a writeable zero-byte file that was previously included in Debian and RPM installers.
  • Bug Fix: Source configuration requests were not sent to the correct deployment.
  • Bug Fix: Duplicate Windows events ingested after upgrading to version 19.386-16 and the Windows API returning an incorrect order of events.
  • Bug Fix: The Docker Log Source did not retain the indentation of log messages.
  • Bug Fix: Nullpointerexception resulted in duplication of events.
  • Bug Fix: Log4j vulnerability found during installation via RPM method and Docker image.
  • Bug Fix: Local File Source multiline boundary regex had an idle timeout issue.
  • Bug Fix: Better handling of Active Directory Inventory. 

March 3, 2022 (19.386-16)

  • Bundled JRE version upgraded to 8.322.06.2.
  • Bug fix: Memory leak in Windows Events, record number logic for standard event channels.
  • Bug fix: Local Windows Event Log Source ingested in legacy format during upgrade when JSON format selected.
  • Bug fix: Collector upgrade failure resulting in collector service stopping.
  • Bug fix: Log4j vulnerability in RPM and Debian packages.
  • Bug fix: Windows Active Directory Source has more default attributes.
  • Bug fix: Security fix for Script Source.