← Back to Knowledge Base

KB #245163: Security Patch to Address Vulnerabilities (patch.5163d.2308.4.31155.17)

⏱️ 2 min read

Type:

Info

Summary:

We have released a patch for the NetLib Encryptionizer Platform to address three security issues that our team has identified.
Note: this security fix is now included in all Product versions  2301.1.3.0 and later. (NLEMSYS.SYS v 2201.611.56, NLCBHELP.SYS 2301.601.17)

Additional Information:

Although we have had no reports of these vulnerabilities being exploited, we recommend all system administrators apply the patch listed below at their earliest convenience. The patch requires a reboot, so run the patch at a time that is convenient to do so.

The vulnerabilities, which can be triggered by a non-privileged user, are as follows:

  • NL5163-1: Kernel mode driver can crash the system.
  • NL5163-2: Unrelated registry entries could be altered.
  • NL5163-3: Environment variables for an unrelated parent process could be altered.

This update will patch versions of Encryptionizer with

  • NLEMSYS.SYS file version 2018.611.31 (07/03/2018) and newer,
  • on servers with Windows Server 2008R2 and later,
  • and on workstations with Windows 7 and later.

The patch will update the following file:
NLCBHELP.SYS to file version 2301.601.17 (Location: C:Windowssystem32drivers)

[wpdm_package id=’5475′]

This update will not patch earlier versions of Encryptionizer than stated above. If your licenses are currently under a support and maintenance agreement, contact NetLib Security support to get updated to a newer version of software.

To determine the version of software that you are currently using, please see this KnowledgeBase article.
KB240145: Determine Current Encryptionizer Driver Information

Instructions to Install Patch.5163d.2308.4.31155.17

  • Download patch above to a temporary location
  • Expand downloaded ZIP file
  • Stop any secured processes or services
  • Run the patch executable within the downloaded zip file as privileged user (Run As Administrator)
  • Reboot
  • After the patch is applied and the system rebooted, check that NLCBHELP.SYS file version has been updated to 2301.601.17

You can choose to run this patch from the command line in silent mode which does not require user interaction:
patch.5163d.2308.4.31155.17 /S
Return Codes:
0 - reboot is not required
1 - reboot is required

Please contact NetLib Security Support with questions you may have about this patch, the issues it addresses or have any trouble applying the patch.

 

Was this article helpful?

Related Articles

KB #240096: Column Encryption Manager Fails to Load

Type: Fix Summary: When running Column Encryption (NLCOL_E.EXE), it fails to load, or gives a…

KB #240154: Upgrade Operating System on a machine with EKM installed (v2018.1204.32022.1181)

Type: Information Summary: You are upgrading the operating system of a machine in place, and…

KB #240146: This implementation is not part of the Windows Platform FIPS validated cryptographic algorithms.

Type: Fixed. Summary: This issue has been addressed in Encryptionizer versions 2501.1.7.50217. If you have…

Still need help?

Our support team is here to assist you.

Contact Support 📞 1-877-367-1177
NetLib Security
AI Assistant · Online
Hi! I'm the NetLib Security assistant. I can answer questions about our encryption solutions, HIPAA compliance, Encryptionizer, and more. How can I help you today?