News and Notices
QRadar Security Bulletins issued on 13 July 2020
The IBM Security QRadar Product Security (PSIRT) team published several security bulletins on 13 July 2020 for QRadar V7.3.3 and V7.4.0 administrators. Software is available to mitigate CVEs in QRadar 7.4.0 Fix Pack 3 and QRadar 7.3.3 Fix Pack 4 on IBM Fix Central. QRadar Support recommends administrators review the published bulletins and click on the CVE numbers to read more about the issue and determine if your QRadar deployment is affected. To assist administrators, We recently updated the QRadar Master Software list to include clickable links to filter for security bulletins.
QRadar M4 V7.0.0 firmware is released
A new firmware release is available for administrators with QRadar M4 appliances. This release includes updates for UEFI, IMM2, DSA, and RAID controllers. This update resolves several security issues and CVE links are provided in the release notes. Administrators have the option of remotely updating appliances by downloading an EXE file that includes an ISO file that can be installed over IMM. Optionally, administrators who are on-premise with their appliances can use a USB flash drive to update their M4 appliance firmware.
QRadar lifecycle technical note updated
A reminder to QRadar administrators that an exception for QRadar 7.3.2 and QRadar 7.3.3 expires on 6 July 2020. Administrators on older versions of QRadar can review the lifecycle technical note for the information about software and hardware support.
Upcoming changes to support for Napatech SmartNIC cards
Napatech has deprecated support for the NT20E SmartNIC. As a result of this change, future releases of QRadar will not support this network card. Although QRadar 7.4.1 is still under development, customers who install QRadar on their own hardware and who use the NT20E SmartNIC to collect flows will need to consider this change before they upgrade to QRadar 7.4.1 in the future.
QRadar Risk Manager Adapter Bundle 13.1
QRadar Risk Manager Adapter Bundle 13.1 is available on IBM Fix Central. This release adds Juniper JunOS Virtual Interface support and includes multiple adapter updates to CLOSE existing problems reported by users for Cisco IOS, Cisco ASA, Check Point, and Cisco Next-Generation IPS adapters. Adapter Bundle 13.1 supercedes Bundle 13 and is intended for QRadar Risk Manager 7.3.2 and earlier deployments.