Forum Discussion
shorif2000
Aug 11, 2022Copper Contributor
linux error ProcessCache: Collision on attempt to retire process to terminated cache
Hello
I have set up on Oracle Linux 7.9. This issue seems to persist continuosly in microsoft_defender_enterprise_err.log file
[4131][2022-08-08 12:00:01.865959 UTC][error]: ProcessCache: Collision on attempt to retire process to terminated cache, errorCode:2, newly terminated:[1, 0, 0] "systemd", 1st collision:[1, 0, 0] "systemd"
[4131][2022-08-08 12:00:01.950638 UTC][error]: {"code":{"category":"generic","value":38,"message":"Function not implemented"},"call_stack":{"frames":[{"file":"machineutils.cpp","line":291}]},"context":[]}
[4131][2022-08-08 12:00:02.011652 UTC][error]: ProcessCache: Collision on attempt to retire process to terminated cache, errorCode:2, newly terminated:[2, 0, 0] "kthreadd", 1st collision:[2, 0, 0] "kthreadd"
$ mdatp health
healthy : true
health_issues : []
licensed : true
engine_version : "1.1.19400.3"
app_version : "101.75.43"
org_id : "e4b1bd4a-b6c9-4043-b658-3f34164d269e"
log_level : "info"
machine_guid : "f8cbd045-993e-7c42-afe6-89d0a3fcb522"
release_ring : "Production"
product_expiration : Apr 15, 2023 at 05:45:15 AM
cloud_enabled : true
cloud_automatic_sample_submission_consent : "safe"
cloud_diagnostic_enabled : true
passive_mode_enabled : false
real_time_protection_enabled : true
real_time_protection_available : true
real_time_protection_subsystem : "fanotify"
supplementary_events_subsystem : "auditd"
tamper_protection : "disabled"
automatic_definition_update_enabled : true
definitions_updated : Aug 11, 2022 at 08:15:14 AM
definitions_updated_minutes_ago : 249
definitions_version : "1.373.131.0"
definitions_status : "up_to_date"
edr_early_preview_enabled : "enabled"
edr_device_tags : [{"key":"AzureResourceId","value":"/subscriptions/3861848d-c216-47d0-986c-4ff438b8ef25/resourceGroups/Linux_Endpoints/providers/Microsoft.Compute/virtualMachines/OracleLinux2"},{"key":"SecurityWorkspaceId","value":"3861848d-c216-47d0-986c-4ff438b8ef25"}]
edr_group_ids : ""
edr_configuration_version : "30.199999.7676430.5582739.6176165-d66675e5729d743986bacf9507a9f225a932b60e"
edr_machine_id : "8c977933a29fc8664535af79aec88daae73a44b3"
conflicting_applications : []
network_protection_status : "stopped"
network_protection_enforcement_level : "audit"
No RepliesBe the first to reply