New
2.4.190-20251024
Download the ISO
https://github.com/Security-Onion-Solutions/securityonion/blob/39572f36f43289fa700d84d7453f682fbf1246be/DOWNLOAD_AND_VERIFY_ISO.md
What's Changed
- bump version by @jertel in https://github.com/Security-Onion-Solutions/securityonion/pull/15044
- Update 2-4.yml by @dougburks in https://github.com/Security-Onion-Solutions/securityonion/pull/15045
- add oom check to so-log-check by @reyesj2 in https://github.com/Security-Onion-Solutions/securityonion/pull/15051
- rework fleet scripts by @reyesj2 in https://github.com/Security-Onion-Solutions/securityonion/pull/15047
- typo by @reyesj2 in https://github.com/Security-Onion-Solutions/securityonion/pull/15064
- make sure fleet-default-output is not set as either default output p… by @reyesj2 in https://github.com/Security-Onion-Solutions/securityonion/pull/15070
- Updated default investigation prompt by @mc-wright in https://github.com/Security-Onion-Solutions/securityonion/pull/15071
- retry kratos pulls since this is the first image to install during setup by @jertel in https://github.com/Security-Onion-Solutions/securityonion/pull/15072
- update so-elastic-fleet-setup by @reyesj2 in https://github.com/Security-Onion-Solutions/securityonion/pull/15075
- restart registry after upgrading images (in airgap mode) by @jertel in https://github.com/Security-Onion-Solutions/securityonion/pull/15080
- fix hypervisor bridge setup by @m0duspwnens in https://github.com/Security-Onion-Solutions/securityonion/pull/15082
- less strict exits for fleet configuration by @reyesj2 in https://github.com/Security-Onion-Solutions/securityonion/pull/15086
- New field for assistant health check by @coreyogburn in https://github.com/Security-Onion-Solutions/securityonion/pull/15087
- Made lowBalanceColorAlert global by @mc-wright in https://github.com/Security-Onion-Solutions/securityonion/pull/15091
- updates for wiretap lib by @jertel in https://github.com/Security-Onion-Solutions/securityonion/pull/15092
- byoh by @m0duspwnens in https://github.com/Security-Onion-Solutions/securityonion/pull/15103
- update logstash fleet output policy by @reyesj2 in https://github.com/Security-Onion-Solutions/securityonion/pull/15105
- Filters by @TOoSmOotH in https://github.com/Security-Onion-Solutions/securityonion/pull/15114
- UPGRADE: ES 8.18.8 by @reyesj2 in https://github.com/Security-Onion-Solutions/securityonion/pull/15111
- support non-async state apply by @jertel in https://github.com/Security-Onion-Solutions/securityonion/pull/15118
- ignore error for elastic-fleet agent by @reyesj2 in https://github.com/Security-Onion-Solutions/securityonion/pull/15124
- csv delimiter and query name by @jertel in https://github.com/Security-Onion-Solutions/securityonion/pull/15127
- missed commit by @jertel in https://github.com/Security-Onion-Solutions/securityonion/pull/15130
- allow user to create VMs that mount virtual disk for /nsm. new nsm_total grain by @m0duspwnens in https://github.com/Security-Onion-Solutions/securityonion/pull/15137
- Update so-saltstack-update by @m0duspwnens in https://github.com/Security-Onion-Solutions/securityonion/pull/15063
- New Config Entries by @coreyogburn in https://github.com/Security-Onion-Solutions/securityonion/pull/15142
- event.module elasticsearch by @reyesj2 in https://github.com/Security-Onion-Solutions/securityonion/pull/15139
- logstash helpers by @reyesj2 in https://github.com/Security-Onion-Solutions/securityonion/pull/15141
- implement host os overhead based on role by @m0duspwnens in https://github.com/Security-Onion-Solutions/securityonion/pull/15144
- Should be multiline by @coreyogburn in https://github.com/Security-Onion-Solutions/securityonion/pull/15145
- omit new hypervisor state name fp by @m0duspwnens in https://github.com/Security-Onion-Solutions/securityonion/pull/15147
- do not log set_timezone in setup by @m0duspwnens in https://github.com/Security-Onion-Solutions/securityonion/pull/15148
- update log4j2 policy for ES json output by @reyesj2 in https://github.com/Security-Onion-Solutions/securityonion/pull/15151
- log4j2 settings by @reyesj2 in https://github.com/Security-Onion-Solutions/securityonion/pull/15153
- add exclusion toggle by @jertel in https://github.com/Security-Onion-Solutions/securityonion/pull/15161
- 2.4.190 by @TOoSmOotH in https://github.com/Security-Onion-Solutions/securityonion/pull/15166
- 2.4.190 by @TOoSmOotH in https://github.com/Security-Onion-Solutions/securityonion/pull/15167
Full Changelog: https://github.com/Security-Onion-Solutions/securityonion/compare/2.4.180-20250916...2.4.190-20251024