Important: Icinga2 security update Type/Severity NetEye Product Security has rated this update as having a High security impact. Topic An update for the icinga2 packages is now available for NetEye 4. Security Fix for NetEye 4.44 CVEs The CVEs include three different vulnerabilities: an Information Disclosure, a Denial of Service and a Limited Privilege Escalation. For a detailed…
Read MoreImportant: Elastic Stack security update Type/Severity NetEye Product Security has rated this update as having a High security impact. Topic An update for the elasticsearch and kibana packages is now available for NetEye 4. Security Fix for NetEye 4.44 CVEs The CVEs include three XSS vulnerabilities and two Broken Access Control vulnerabilities. For a detailed overview of the…
Read MoreSatellite config creation in HA mode using zone names with whitespaces We’ve addressed an issue where running the neteye satellite config create for a satellite configured in HA mode having whitespaces in the Zone name prevented the procedure to successfully execute. List of updated packages To solve the issues mentioned above, the following packages have…
Read MoreDashboard Graphs Now Use Full Width We’ve addressed an issue where service and host graphs on dashboards were not utilizing the full available width. This fix ensures the charts now expand to fill the space, providing a better and clearer data visualization. List of updated packages To solve the issues mentioned above, the following packages…
Read MoreImportant: Elastic Stack security update (installed with SIEM) Type/Severity NetEye Product Security has rated this update as having a High security impact. Topic An update for the elasticsearch package is now available for NetEye 4. Security Fix for NetEye 4.43 CVE-2025-54988 (Apache Tika): CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/MPR:L For a detailed overview of the security issue(s), including the impact, CVSS score, acknowledgments,…
Read MoreFix redirect to __SELF__ We resolved a bug for which sometimes during the login workflow an automatic redirect to __SELF__ was performed, forcing the user to manually change the URL on the browser tab. List of updated packages To solve the issues mentioned above, the following packages have been updated for NetEye 4.43:
Read MoreFix network target waited on boot We resolved a bug for which the network systemd target waited on boot was not sufficient in guaranteeing that all interfaces were actually ready, causing possibly some services failing to bind, under certain circumstances. List of updated packages To solve the issues mentioned above, the following packages have been…
Read MoreFix Kibana sysconfig migration We resolved a bug that occurred during the migration of Kibana to a multi-instance setup. The issue prevented the proper copying of custom configurations from /neteye/shared/kibana/conf/sysconfig/kibana-user-customization. As a result, these customizations were missing from the Kibana instances after the upgrade. List of updated packages To solve the issues mentioned above, the following…
Read MoreFix monitoring object creation during deployment We fixed a bug that caused a monitoring object to be lost if it was created while a Diretor deployment was in progress. List of updated packages To solve the issues mentioned above, the following packages have been updated for NetEye 4.43:
Read MoreFix for Tornado Webhook collector We have fixed an issue where large incoming requests to the Webhook Collector could cause the system to become unresponsive over time. List of updated packages To solve the aforementioned issues, the following packages have been updated for NetEye 4.42:
Read MoreFixes for Elastic Stack Improved wait for cluster status during updates / upgrades When restarting the Elasticsearch cluster during the NetEye update / upgrade procedure, is it possible let the restart procedure going even if the cluster has a “yellow” status. The check on the cluster status has been improved to allow at least the…
Read MoreFix for Previously, database updates would fail if the GLPI DRBD resource was active on a node other than the primary, due to an inability to locate the necessary database configuration within the DRBD-managed volume. This fix ensures that GLPI can now successfully access its database configuration and perform updates irrespective of the active DRBD…
Read MoreFixes for GLPI We have updated GLPI to the latest bugfix version to resolve some security fixes. List of updated packages To solve the aforementioned issues, the following packages have been updated for NetEye 4.42:
Read MoreFixes for icingaweb2-module-tornado We’ve updated to the latest bugfix version to resolve an issue with the WITH extractor rule, where Regex values appeared empty in the UI when the corresponding Group Match Index was set to NULL (even though the values were correctly stored in the configuration). We also addressed a bug that was preventing…
Read MoreFixes for icinga2 We have updated icinga2 to the latest bugfix version to resolve CVE-2025-48057. List of updated packages To solve the aforementioned issues, the following packages have been updated for NetEye 4.42:
Read More