What's new in the 11.3.0 release

Releases can introduce new features and enhancements or update platform support.

Caution: We do not support the upgrade of a pre-release software version. To upgrade to a production release of the software, you must perform a new installation with the production version.

Release details

Release date — July 23, 2019

Release build:

  • McAfee® Data Loss Prevention Prevent (McAfee DLP Prevent) appliance installation images:
    • For VMware vSphere virtual appliance — McAfee-PS-11.3.0-3539.107.ps.hw10.hdd.ova
    • For Windows Hyper-V — McAfee-PS-11.3.0-3539.107.HyperV_ps.zip
    • For hardware appliance — McAfee-PS-11.3.0-3539.107.iso
  • DLP Appliance Management extension — build 11.3.0.105
  • Data Loss Prevention extension — build 11.3.0.19

This release updates components that depend on these McAfee ePO extensions:

  • McAfee® Agent — version 5.5.1
    Note: McAfee Agent is built into the appliance software and cannot be updated through McAfee ePO.
  • Appliance Management extension — build 1.1.0.163 or later
  • Common UI extension — build 1.3.0.258 or later

Note: McAfee® Data Loss Prevention Prevent for Mobile Email (McAfee DLP Prevent for Mobile Email) is not part of this release. The previous release of this product is supported by the current McAfee DLP extension.

Updated platform, environment, or operating system support

This release updates the McAfee Agent package on McAfee DLP appliances to version 5.5.1-462.

You can get the latest information about supported platforms, environments, and operating systems from KB87112.

Additional ICAP header

McAfee DLP Prevent categorizes content as unscannable when it can't be analyzed. Examples of unscannable content include corrupt files, files that exceed the maximum analysis size or time, and files that exceed maximum depth if there are nested files. The appliance now allows an ICAP request with unscannable content and sends a 2xx ICAP response back to the web proxy server. In addition, the appliance adds the X-MFE-PREVENT: SCANFAIL header in its ICAP response when it detects unscannable content.

By default, the McAfee DLP Prevent appliance sends a 4xx ICAP response back to the web proxy server for ICAP requests that exceed the maximum configured file size for scan. You can now configure the McAfee DLP Prevent appliance to allow these ICAP requests with a 2xx response. When the configuration is enabled, the appliance sends the 2xx ICAP response back to the web proxy server and also adds the X-MFE-PREVENT: SCANFAIL header with information about the cause for the ICAP response.

For information about how to configure to allow ICAP requests that exceed the maximum configured file size for scan with a 2xx response, see KB91550.