Endpoint Protection

 View Only
Expand all | Collapse all

SEP definition

  • 1.  SEP definition

    Posted Jul 09, 2012 01:25 AM

    Hi

    Is it just me, or are the new SEP definition update running late?

    My last update was on Friday 6th July 2012 r36.

    DM



  • 2.  RE: SEP definition

    Posted Jul 09, 2012 01:47 AM

    Yes, same thing here.   It is currently Monday 7/9/12 1:45am EDT USA and the last definition file was released on 7/6/12.    This isn't like Symantec to go more than 24 hours without a release.   I wonder if something broke when they stopped releasing definitions for SAVCE on July 4th.   Anyways this isn't good as my policy is configured to alert when defs are three days out-of-date.  So in the morning when all the employees arrive they are all going to get pop-up alerts and start calling the helpdesk.  Ouch.



  • 3.  RE: SEP definition

    Posted Jul 09, 2012 02:16 AM

    Hello the last updated Patch is avail on Sep Site is 20120706-036

    Same patch is avail on my Server.

    For the more information you can go through this link

    http://www.symantec.com/security_response/definitions/download/detail.jsp?gid=savce

    Latest Patch information is avail on the attach link.

    Heop it help you



  • 4.  RE: SEP definition

    Broadcom Employee
    Posted Jul 09, 2012 04:52 AM

    Hi,

    Yes, SEP definitions update running late. Symantec is aware of this problem.

    You can verify the latest definitions on the below mentioned link

    http://www.symantec.com/security_response/definitions.jsp

     

     



  • 5.  RE: SEP definition

    Posted Jul 09, 2012 05:07 AM

    Chetan, as a Symantec employee, would you able to provide an official statement for why the defs are delayed, the ETA for when these will be updated, and if an Incident report will be generated and made available once the dust has settled?



  • 6.  RE: SEP definition

    Broadcom Employee
    Posted Jul 09, 2012 05:21 AM

    Hi,

    I won't be able to comment on exact root cause however it was due to technical difficulties.

    Latest update is new definitions are released now.

    Check this: http://www.symantec.com/security_response/definitions/certified/



  • 7.  RE: SEP definition

    Posted Jul 09, 2012 05:37 AM
      |   view attached

    ...while the defs have been released for other products (Messageing Gateway, Scan Engine, Mail Security for Exchange, etc) the SEP ones have not yet been updated at the time of writing (see screenie)

    Would you be able to give us a heads up when the SEP ones are available please?



  • 8.  RE: SEP definition

    Posted Jul 09, 2012 05:42 AM

    Hi,

    now our SEPM were able to load and process them. :-)

     



  • 9.  RE: SEP definition

    Broadcom Employee
    Posted Jul 09, 2012 05:48 AM

    Hi,

    Could you please recheck because  I can see below information.

    File based protection (Traditional Antivirus)

    Definitions Created: 7/6/2012
    Definitions Released 7/9/2012
    Extended Version: 7/6/2012 rev. 36
    Definitions Version: 140706aj
    Sequence Number: 135796
    Number of Signatures: 18,797,185

     



  • 10.  RE: SEP definition

    Posted Jul 09, 2012 05:50 AM

    ...the SEPM is now aware of newer updates available from Symantec.  It's too bad the below page has not yet been updated (at time of writing)sad

    http://www.symantec.com/security_response/definitions.jsp

    Any word on an official statement and incident report on this?  Or should we contact Symantec Support directly?



  • 11.  RE: SEP definition

    Posted Jul 09, 2012 05:53 AM

    ...I'm not quite sure what you mean.  You've confirmed that it's showing the defs from last Friday...

    "Extended Version: 7/6/2012 rev. 36"



  • 12.  RE: SEP definition

    Broadcom Employee
    Posted Jul 09, 2012 06:05 AM

    Hi,

    Probably there won't be any public incident report on this.

    As I said earlier the definition delay is due to techinical difficulties.From Symantec Support also you will get the same answer.

     



  • 13.  RE: SEP definition
    Best Answer

    Broadcom Employee
    Posted Jul 09, 2012 06:15 AM

    Hi,

    Best way to check latest definitions is to check certified definitions.

    http://www.symantec.com/security_response/definitions/certified/

    It takes time to replicate certified definitions details on home tab.

    http://www.symantec.com/security_response/definitions.jsp

     



  • 14.  RE: SEP definition

    Posted Jul 09, 2012 06:40 AM

    It must be clear by now guys, I got it solved by this time:)

    https://www-secure.symantec.com/connect/forums/sepm-not-updating-definitions-daily-need-help#comment-7373551