Linux Agent Release Notes

13.8.0 February 20, 2025

• Supported sysdig-deploy version: 1.77.0
• Supported Falco Engine version: 1000.39.0

Enhancements

Improved Monitoring for Horizontal Pod Autoscalers

Added kube_hpa_status_condition metric to provide visibility into the status conditions of Kubernetes Horizontal Pod Autoscalers (HPA). This helps you to track scaling decisions and overall HPA health.

New Configuration Option for Remote Filesystem Statistics

The new configuration option in the Linux Agent: remotefs_stats.enabled controls whether filesystem operation and traffic statistics are collected for each mount entry. By default, it is set to true. Additionally, the Agent now limits the collection of these statistics exclusively to remote mount points, ensuring more targeted data reporting.

Collector Connection Configuration Added to Host Shield

You can now specify the connection information for the Sysdig collector in the host-shield.yaml file as follows:

sysdig_endpoint:
  collector:
    host: <host>
    port: <port>

Vulnerability Fixes

This release addresses the following security vulnerabilities:

• CVE-2024-45341
• CVE-2024-45336
• CVE-2024-12797
• CVE-2022-49043
• CVE-2020-11023
• CVE-2019-12900

Defect fixes

• Fixed an issue where compiling the kernel module failed on recent distributions, such as Fedora 40, which uses GCC 14.
• The application now verifies FIPS support during execution.
• Fixed an issue where suppressed process exit events could result in unexpected resource accumulation. This update ensures proper resource cleanup and improves memory efficiency.

13.7.2 January 17, 2025

• Supported sysdig-deploy version: 1.74.1
• Supported Falco Engine version: 1000.36.0

Vulnerability Fixes

This hotfix addresses the following security vulnerability:

• CVE-2024-45338

Defect Fixes

Fixed a defect that could prevent the scan result from generating when the host has a large number of kernels installed.