Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY 6.4.2
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
All Products
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Web Application Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • Web Application / API Protection
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions
    • All Products

    Release Notes

    Home FortiAnalyzer 6.4.2 Release Notes
    6.4.2
    8.0.0
    7.6.6
    7.6.5
    7.6.4
    7.6.3
    7.6.2
    7.6.1
    7.6.0
    7.4.11
    7.4.10
    7.4.9
    7.4.8
    7.4.7
    7.4.6
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.12
    7.2.11
    7.2.10
    7.2.9
    7.2.8
    7.2.7
    7.2.6
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.0.16
    7.0.15
    7.0.14
    7.0.13
    7.0.12
    7.0.11
    7.0.10
    7.0.9
    7.0.8
    7.0.7
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    6.4.15
    6.4.14
    6.4.13
    6.4.12
    6.4.11
    6.4.10
    6.4.9
    6.4.8
    6.4.7
    6.4.6
    6.4.5
    6.4.4
    6.4.3
    6.4.2
    6.4.1
    6.4.0
    6.2.13
    6.2.12
    6.2.11
    6.2.10
    6.2.9
    6.2.8
    6.2.7
    6.2.6
    6.2.5
    6.2.3
    6.2.2
    6.2.1
    6.2.0
    6.0.12
    6.0.11
    6.0.10
    6.0.9
    6.0.8
    6.0.7
    6.0.6
    6.0.5
    6.0.4
    6.0.3
    6.0.2
    6.0.1
    6.0.0
    5.6.11
    5.6.10
    5.6.9
    5.6.8
    5.6.7
    5.6.6
    5.6.5
    5.6.4
    5.6.3
    5.6.2
    5.6.1
    5.6.0
    5.4.7
    5.4.6
    5.4.5
    5.4.4
    5.4.3
    5.4.2
    5.4.1
    5.4.0
    5.2.10
    5.2.9
    5.2.7
    5.2.6
    5.2.5
    5.2.4
    5.2.3
    5.2.2
    5.2.1
    5.2.0
    5.0.13
    5.0.12
    5.0.11
    5.0.10
    5.0.9
    5.0.8
    5.0.7
    5.0.6
    5.0.5
    5.0.4
    5.0.3
    5.0.2
    5.0.1
    4.3.8

    Resolved Issues

    Resolved Issues

    The following issues have been fixed in FortiAnalyzer version 6.4.2. For inquires about a particular bug, please contact Customer Service & Support.

    Device Manager

    Bug ID

    Description
    641490 FortiAnalyzer may fail to update HA group name after the group name is changed on the FortiGate side causing it crash occasionally.
    648893 Device list may be empty in Device Manager after upgrade.

    FortiView

    Bug ID

    Description
    590775 FortiAnalyzer should hide Device and Time Frame selection in FortiView Threat Map.
    624856 Default user filter is missing from FortiView > VPN > SSL & Dialup IPsec in filter mode while it is available in text mode.
    632532 Drill-down in FortiView does not display correctly when log is at the bottom of the display.
    641616 Exporting chart from FortiView triggers both successful and error messages.
    641983 Traffic filter by policy ID with greater or less than option is not working correctly when viewing real-time logs.

    Log View

    Bug ID

    Description
    636967 After upgrade, FortiAnalyzer reports problem that filter in real-time log does not work resulting in No entry found.
    642960 Logs imported in Log Browse may not show up in traffic logs.

    Others

    Bug ID Description
    630900 FortiAnalyzer should add filters from session-view to default skip-index list.
    645965 The diagnose dvm device list command shows incorrect VDOM to ADOM assignment and Fabric view Asset displays data belonging to different ADOMs.
    647589 EMS sysinfo wildcard call should be {'uid_list': []} instead of {'uid_list': ['']}.

    644232

    FortiAnalyzer may use high IO usage on VACUUM process.
    652541 The siemagentd may hang under load.

    Reports

    Bug ID

    Description
    296148 FortiAnalyzer needs to restrict log tables when creating a view for dataset testing.
    528395 Deleting device from Device Manager removes the report filter but does not stop schedule and notifications.
    643238 User should be able filter reports based on device name in Reports > Report Definitions > All Reports.

    System Settings

    Bug ID Description
    599771 When logging in with an LDAP admin, one invalid ADOM value may cause 'authentication failed'.
    613032 Cover page files may be not synchronized to secondary unit.
    642459 Syslogd receives empty logs when FortiAnalyzer forwards FortiExtender logs.
    644863 When SAML uses Supper_User under root ADOM, the user is not able to view analytic logs under FortiView and Event handler prompts "Web Server Error 500".

    Common Vulnerabilities and Exposures

    Visit https://fortiguard.com/psirt for more information.

    Bug ID CVE references

    626913

    FortiAnalyzer 6.4.2 is no longer vulnerable to the following CVE-Reference:

    • CVE-2020-12817
    Previous
    Next

    Resolved Issues

    Resolved Issues

    The following issues have been fixed in FortiAnalyzer version 6.4.2. For inquires about a particular bug, please contact Customer Service & Support.

    Device Manager

    Bug ID

    Description
    641490 FortiAnalyzer may fail to update HA group name after the group name is changed on the FortiGate side causing it crash occasionally.
    648893 Device list may be empty in Device Manager after upgrade.

    FortiView

    Bug ID

    Description
    590775 FortiAnalyzer should hide Device and Time Frame selection in FortiView Threat Map.
    624856 Default user filter is missing from FortiView > VPN > SSL & Dialup IPsec in filter mode while it is available in text mode.
    632532 Drill-down in FortiView does not display correctly when log is at the bottom of the display.
    641616 Exporting chart from FortiView triggers both successful and error messages.
    641983 Traffic filter by policy ID with greater or less than option is not working correctly when viewing real-time logs.

    Log View

    Bug ID

    Description
    636967 After upgrade, FortiAnalyzer reports problem that filter in real-time log does not work resulting in No entry found.
    642960 Logs imported in Log Browse may not show up in traffic logs.

    Others

    Bug ID Description
    630900 FortiAnalyzer should add filters from session-view to default skip-index list.
    645965 The diagnose dvm device list command shows incorrect VDOM to ADOM assignment and Fabric view Asset displays data belonging to different ADOMs.
    647589 EMS sysinfo wildcard call should be {'uid_list': []} instead of {'uid_list': ['']}.

    644232

    FortiAnalyzer may use high IO usage on VACUUM process.
    652541 The siemagentd may hang under load.

    Reports

    Bug ID

    Description
    296148 FortiAnalyzer needs to restrict log tables when creating a view for dataset testing.
    528395 Deleting device from Device Manager removes the report filter but does not stop schedule and notifications.
    643238 User should be able filter reports based on device name in Reports > Report Definitions > All Reports.

    System Settings

    Bug ID Description
    599771 When logging in with an LDAP admin, one invalid ADOM value may cause 'authentication failed'.
    613032 Cover page files may be not synchronized to secondary unit.
    642459 Syslogd receives empty logs when FortiAnalyzer forwards FortiExtender logs.
    644863 When SAML uses Supper_User under root ADOM, the user is not able to view analytic logs under FortiView and Event handler prompts "Web Server Error 500".

    Common Vulnerabilities and Exposures

    Visit https://fortiguard.com/psirt for more information.

    Bug ID CVE references

    626913

    FortiAnalyzer 6.4.2 is no longer vulnerable to the following CVE-Reference:

    • CVE-2020-12817
    Previous
    Next