IMPORTANT: This site is planned to be decommissioned in 2026. Visit the Tanium Resource Center for all Tanium release notes, user guides, and support information. To view release notes in the Resource Center, see Tanium Release Notes.
IMPORTANT: If you are using semi-annual releases for on premises, see the Release notes for 2024H1 semiannual release, Release notes for 2024H2 semiannual release, or Release notes for 2025H1 semiannual release on the Tanium Resource Center.
Effective October 15, 2024: On prem release notes on the Tanium Knowledge Base are frozen. For release notes related to 7.4 or 7.5 Server and Solutions, see the Monthly updates for Tanium Version 7.4 and 7.5 Server and Solutions on the Tanium Resource Center.

Release Notes Patch (Version 3.7)

From Tanium Knowledge Base
Jump to navigation Jump to search

Tanium Patch 3.7.134.0000

Release Date: 28 June 2022

Resolved Issues

  • Fixed an issue that caused patch scans to fail on certain non-English-language endpoints.

Known Issues

  • Because of MDM requirements for patching that were introduced in macOS Monterey 12.1, Tanium Patch does not support macOS Monterey 12.1 or later.
  • Tanium Scan For Windows still has some known synchronization issues with certain WSUS environments.
  • Deploying operating system patches that require reboot is currently unsupported on Apple Silicon (M1 chip) macOS devices and can cause reboot loops.
  • Due to changes in Endpoint Configuration metadata, customers with approvals enabled will need to re-approve all Patch endpoint configurations.

Tanium Patch 3.7.133.0000

Release Date: 21 June 2022

Resolved Issues

  • Fixed an issue where an invalid release date on a CVE could cause Linux endpoints to inadvertently install the update when using date-based patch lists.

Known Issues

  • Because of MDM requirements for patching that were introduced in macOS Monterey 12.1, Tanium Patch does not support macOS Monterey 12.1 or later.
  • Tanium Scan For Windows still has some known synchronization issues with certain WSUS environments.
  • Deploying operating system patches that require reboot is currently unsupported on Apple Silicon (M1 chip) macOS devices and can cause reboot loops.
  • Due to changes in Endpoint Configuration metadata, customers with approvals enabled will need to re-approve all Patch endpoint configurations.

Security Update

  • This release includes security updates. Details of the issue, including affected versions and mitigation information, can be obtained within Tanium's Support Portal or by contacting your TAM.

Tanium Patch 3.7.126.0000

Release Date: 24 May 2022

Improvements

  • For Windows endpoints, the Mean Time to Patch sensor now uses the OS installation date rather than patch release date for patches released before the OS was installed.
  • TaniumCX now launches the Patch process on Windows endpoints, no longer requiring a scheduled action to run on those endpoints

Resolved Issues

  • Fixes an issue with the Patch homepage dashboards failing to load.

Known Issues

  • Because of MDM requirements for patching that were introduced in macOS Monterey 12.1, Tanium Patch does not support macOS Monterey 12.1 or later.
  • Tanium Scan For Windows still has some known synchronization issues with certain WSUS environments.
  • Deploying operating system patches that require reboot is currently unsupported on Apple Silicon (M1 chip) macOS devices and can cause reboot loops.
  • Due to changes in Endpoint Configuration metadata, customers with approvals enabled will need to re-approve all Patch endpoint configurations.

Tanium Patch 3.7.101.0000

Release Date: 22 March 2022

Resolved Issues

  • Fixed an issue that prevents successful patch scans on Japanese-language Windows endpoints.

Known Issues

  • Because of MDM requirements for patching that were introduced in macOS Monterey 12.1, Tanium Patch does not support macOS Monterey 12.1 or later.
  • Due to changes in Endpoint Configuration metadata, customers with approvals enabled will need to re-approve all Patch endpoint configurations.
  • Tanium Scan For Windows still has some known synchronization issues with certain WSUS environments.
  • Deploying operating system patches that require reboot is currently unsupported on Apple Silicon (M1 chip) macOS devices and can cause reboot loops.

Tanium Patch 3.7.100.0000

Release Date: 1 March 2022

New Features

  • Added support for Apple macOS - ARM64 (M1).
  • Added support for Amazon Linux 2 - ARM64 (Gravitron).
  • Added support for Rocky Linux and AlmaLinux.

Improvements

  • Added additional metadata about included changes for Endpoint Configuration approval workflows.

Resolved Issues

  • Fixed an issue with Tanium scan for Windows syncing against a WSUS server.
  • Fixed an issue that could potentially cause RPM database corruption on Linux endpoints.
  • Fixed an issue that could potentially cause reboot loops on Windows endpoints with Office 365 installed.

Known Issues

  • Because of MDM requirements for patching that were introduced in macOS Monterey 12.1, Tanium Patch does not support macOS Monterey 12.1 or later.
  • Due to changes in Endpoint Configuration metadata, customers with approvals enabled will need to re-approve all Patch endpoint configurations.
  • Tanium Scan For Windows still has some known synchronization issues with certain WSUS environments.
  • Deploying operating system patches that require reboot is currently unsupported on Apple Silicon (M1 chip) macOS devices and can cause reboot loops.

Tanium Patch 3.7.92.0000

Release Date: 25 January 2022

Improvements

  • Added immediate scan retries for scan failures related to the HTTP_CANNOT_CONNECT Windows Update error.
  • Added a setting in the “Patch - Set Patch Process Options [Non-Windows]” package that allows administrators of Linux endpoints to define the “LD_LIBRARY_PATH” variable to use with Tanium Patch.
  • Improved synchronization between Tanium Scan For Windows and a WSUS backend.

Resolved Issues

  • Fixed an issue that caused some patches to be missing only when Tanium Scan for Windows synchronized with WSUS.
  • Fixed an issue that caused the Patch workbench to return an error when navigating to Deployment Templates.
  • Fixed an issue that listed Tanium EUSS tools as a pre-requisite for Tanium Patch.
  • Fixed built-in Patch roles to include Read Sensor on the Patch Content Set.
  • Fixed an issue for Mac deployments that caused notifications to not appear for a deployment a second time when more than one round of patching takes place.
  • Fixed an issue that caused some macOS patches to return an incorrect Release Date.
  • Fixed an issue that caused patch for Big Sur and above to report 10.16 for the Product.
  • Fixed an issue that caused output for the Applicable Patches sensor to be different for macOS endpoints compared to other supported operating systems when there were no applicable patches.

Known Issues

  • Because of MDM requirements for patching that were introduced in macOS Monterey 12.1, Tanium Patch does not support macOS Monterey 12.1 or later.
  • Tanium Scan For Windows still has some known synchronization issues with certain WSUS environments.
  • Deploying operating system patches that require reboot is currently unsupported on Apple Silicon (M1 chip) macOS devices and can cause reboot loops.

Tanium Patch 3.7.73.0000

Release Date: 7 December 2021

New Features

  • Adds support for scanning and deploying patches for Ubuntu 18.04 or later, including:
    • Maintenance Windows
    • Patch Lists
    • Block Lists
    • Scan Configurations
      • Repository Scan only (Tanium Scan will be added soon)
    • Deployments
    • Deployment Templates

Improvements

  • Changed the "RPM Linux" setting to "Enhanced Linux Support" to more accurately reflect the inclusion of Ubuntu support.
  • Improved Linux error reporting for unmet dependencies during a deployment.

Resolved Issues

  • Fixed an issue that could cause endpoint data (patch applicability, statuses, etc.) to stop loading into the Patch workbench under certain circumstances.
  • Fixed an issue that allowed Patch roles to view the Endpoint Configuration workbench.
  • Fixed an issue that caused the Patch - Scan Age to update for a scan that was aborted before starting.
  • Added scan retries for many known ephemeral scan errors in Windows.
  • Fixed an issue that caused the Patch - Has Aged Applicable Patches sensor to report and error on some Mac endpoints.
  • Fixed an issue that could cause multiple reboots if the endpoint date/time was set backwards between the time patches were installed on that endpoint and the accompanying reboot happened.
  • Fixed an issue that caused the console to throw an error on the Patch Deployments page if the Console language was not set to English.
  • Fixed an issue that caused the Patch service logs to write a “ERR_STREAM_WRITE_AFTER_END” error.

Known Issues

  • Because of MDM requirements for patching that were introduced in macOS Monterey 12.1, Tanium Patch does not support macOS Monterey 12.1 or later.
  • macOS endpoints that use the Apple silicon (M1) chip will experience a reboot loop if you deploy an OS patch that requires a reboot.

Prerequisites

  • Red Hat and CentOS endpoints require a minimum YUM version of yum-3.2.29-22.el6 to engage in Tanium Patch.
  • Windows endpoints require a minimum operating system version of Windows 7 SP1 or Windows Server 2008 R2 SP1.
  • macOS endpoints require a minimum operating system version of 10.14.
  • Ubuntu endpoints require a minimum operating system version of 18.04.

Supported Tanium Platforms

Tanium Server 7.3.314.4250+, 7.4+