Current ThreatQ Version Filter
 

ThreatQ Version 5.6.1 Release Notes

Release Date: 2022-10-20
Download PDF Version

ThreatQ Release Notes Header

What's New in Version 5.6.1

The ThreatQuotient team is pleased to announce the availability of ThreatQ version 5.6.1. Below is an important bug that has been addressed and upgrade instructions.

Upgrade Impact

Due to the scope of 5x as well as changes to the upgrade process, we urge customers with a large number (>15M) of Threat Library objects to reach out to ThreatQ Support for an estimate of upgrade time and to review the upgrade process. Once started, the upgrade cannot be stopped and the system remains unavailable until the upgrade is complete.

All ThreatQ Data Exchange (TQX) and Air Gapped Data Sync (AGDS) customers must contact ThreatQuotient Support for assistance with the upgrade from 4x to 5x.

After you start the upgrade, do not cancel the installation. Doing so will leave your system in an unusable state.

Full Reindex Required Data Migration Required Server Reboot Required
Yes
Yes
Yes

ThreatQ Platform (TQ)

The following is a bug fix for the ThreatQ platform.

Notable Bug Fixes

  • Customers with ThreatQ TDR Orchestrator workflows configured were not able to upgrade from ThreatQ 5.5 to 5.6. Instead, they received the following migration error message:
    API Migration has failed.

    This issue only impacted upgrades from ThreatQ 5.5, a limited availability release.

Install Notes

  • To upgrade from a 4x version to 5x, you must be on the most recent 4x release.
  • For the upgrade from the most recent 4x release to 5x, you will need to enter your MySQL root password during the upgrade process.
  • The following warning will be displayed during the upgrade process:
    Warning: RPMD altered outside of yum.
    **Found 5 pre-existing rpmdb problem(s), ‘yum’ check output follows
    This warning does not require any action on your part and will be resolved during the upgrade.
  • Do not restart your instance during the upgrade process.

We highly recommend that you perform a backup of your ThreatQ instance before upgrading.

How to Upgrade

TQAdmin requires elevated privileges and must be run as root.

ThreatQ version 5x provides you with the ability to run an independent preflight check, prior to upgrading, to ensure adequate disk space. The system will also scan your installed integrations for any incompatible versions.  You will be unable to perform the upgrade if an incompatible integration version is detected. 

This scan does not apply to integrations installed on third-party systems such as the ThreatQ App for QRadar.

Run a platform check for the most recent ThreatQ version:

# tqadmin platform check

Run a platform check for a specific version:

# tqadmin platform check -v <version number> 

Upgrade Commands:

To upgrade, run the following command:

# tqadmin platform upgrade

To upgrade to a specific version, run the following command:

# tqadmin platform upgrade -v <version number>

As always, contact our Customer Support team if you encounter problems when updating, have any questions, or need assistance.

Thank you,

The ThreatQuotient Team

Email Support  support@threatq.com
Web Support support.threatq.com
Support Phone 703.574.9893