Resolved Issues
The resolved issues listed below do not list every bug that has been corrected with this release. For inquires about a particular bug, please contact Fortinet Customer Service & Support.
Antispam/Antivirus
|
Bug ID |
Description |
|---|---|
|
686269 |
Files cannot be uploaded to FortiSanbox Cloud for inspection and all the files are incorrectly displayed with the same file size. |
|
683293 |
Content filter cannot detect *.hta files for certain types of email. |
|
681435 |
When "Detect on failure to decompress" is enabled in the content profile, the .zip files may cause false positives. |
|
691329 |
Policy match issue with LDAP verified domains. |
|
694038 |
Unable to delete dynamic impersonation database entries with special characters in the Display Name. |
|
700919 |
Issues when scanning PDF files. |
|
660873 |
Impersonation Analysis false positives. |
|
684937 |
URL click protection does not work properly with links ending with a dot. |
|
712099 |
Password protect ,7z files are incorrectly blocked. |
|
710968 |
After FortiMail/FortiSandbox processes the email, the email is moved to the user's inbox, instead of the original custom folder. |
|
709083 |
In some case, fail to allow PDF files. |
|
705753 |
Double stamping removal only works on full domains, not on subdomains. |
|
702148 |
Invalid top-level domain addresses are rejected in relaxed email parsing mode. |
|
702940 |
Regular expressions are not detected in XLS files. |
|
707494 |
For some email, FortiMail may get NoResult response from FortiSandbox. |
|
709825 |
Fail to detect files with .js extension included in BZIP2 archives. |
|
713087 |
Fail to allow Excel files when sent in .rar archives. |
|
713397 |
DLP attachment metadata detection doesn't work for docx and xlsx files. |
|
713095 |
Reach FortiSandbox submission limit incorrectly. |
|
713859 |
Fail to detect macros in Excel legacy format *.xls files. |
Mail delivery
|
Bug ID |
Description |
|---|---|
|
673911 |
Webmail client IP address is used in EHLO when sending DSNs for IBE reply email. |
System
|
Bug ID |
Description |
|---|---|
| 688015 |
Cloning a used mail routing profile, when the max entries are reached, deletes the original profile. |
|
688008 |
DKIM and S/MIME signing in combination does not work properly. |
| 682822 |
Some GUI items are not translated into Spanish and Portuguese. |
| 683893 |
Oversized email meta data is sent to FortiSandbox. |
|
675831 |
The maifilterd process causes high CPU usage. |
|
691549 |
After adding a new webmail custom language under System > Customization > Appearance, the IBE registration web portal stops working. |
|
693194 |
When hide-on-email-arrival is enabled with Microsoft 365 real-time scanning, duplicate folders may be created in the mail user inbox. |
|
690048 |
IBE push email enhancement. |
|
639474 |
After upgrading from 6.0.7 to 6.2.4 release, the quarantine release URL in the quarantine report is incorrect on the HA config secondary unit. |
|
700244 |
For Diffie-Hellman key exchange, FortiMail uses self-generated parameters, which are different from the predefined finite field groups in RFC 7919. |
|
679151 |
Gmail using a "+" plus symbol for an alias causes issues with IBE account creation. |
|
691523 |
Unexpected quotation marks appear in the block lists when exporting the configuration. |
|
608247 |
LDAP authentication does not work for newly created domains. |
|
683893 |
Oversized meta data is sent to FortiSandbox. |
|
675831 |
The mailfilterd process causes high CPU usage. |
|
705376 |
After upgrading from 6.4.3 to 6.4.4 release, the customized IBE language is lost. |
|
707925 |
RADIUS 2FA users are locked out after the first unsuccessful login attempt. |
|
699918 |
IBE customized template for 2FA secure token notification is not taking the changes on the "From" field. |
|
691596 |
In FIPS-CC mode, importing a certificate via the GUI fails with the message "Unable to get certificate CRL." |
|
693981 |
Fail to connect to the SMB/CIFS server under Data Loss Prevention > Sensitive Data > FingerPrint Source. |
|
692153 |
Same email group entries can be created due to case sensitivity. |
|
711271 |
Mail authentication failed due to special characters in passwords. |
|
692164 |
Possible to create identical greylist exempt entries. |
|
712594 |
Disclaimers are not inserted when files are sent to FortiSandbox with Submit Only. |
Log and Report
|
Bug ID |
Description |
|---|---|
|
681775 |
Incorrect email subject encoding modifies the cross search log lines. |
|
707915 |
When certain zip files are decrypted, the action is not logged. |
Common vulnerabilites and exposures
Visit https://fortiguard.com/psirt for more information.
|
Bug ID |
Description |
|---|---|
|
694751 |
CWE-310: Cryptographic Issues. |
|
695037 694752 |
CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow'). |
|
693465 |
CWE-36: Absolute Path Traversal. |
|
694366 |
CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection'). |
|
691547 690894 |
CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'). |
|
692223 697251 |
CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'). |
| 695039 |
CWE-131: Incorrect Calculation of Buffer Size. |
|
696793 |
CWE-325: Missing Cryptographic Step. |
|
698764 |
CWE-338: Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG). |
|
700991 700994 |
CWE-401: Missing Release of Memory after Effective Lifetime. |