Resolved Issues
The resolved issues listed below do not list every bug that has been corrected with this release. For inquires about a particular bug, please contact Fortinet Customer Service & Support.
Antispam/Antivirus
Bug ID |
Description |
---|---|
686269 |
Files cannot be uploaded to FortiSanbox Cloud for inspection and all the files are incorrectly displayed with the same file size. |
683293 |
Content filter cannot detect *.hta files for certain types of email. |
681435 |
When "Detect on failure to decompress" is enabled in the content profile, the .zip files may cause false positives. |
691329 |
Policy match issue with LDAP verified domains. |
694038 |
Unable to delete dynamic impersonation database entries with special characters in the Display Name. |
700919 |
Issues when scanning PDF files. |
660873 |
Impersonation Analysis false positives. |
684937 |
URL click protection does not work properly with links ending with a dot. |
712099 |
Password protect ,7z files are incorrectly blocked. |
710968 |
After FortiMail/FortiSandbox processes the email, the email is moved to the user's inbox, instead of the original custom folder. |
709083 |
In some case, fail to allow PDF files. |
705753 |
Double stamping removal only works on full domains, not on subdomains. |
702148 |
Invalid top-level domain addresses are rejected in relaxed email parsing mode. |
702940 |
Regular expressions are not detected in XLS files. |
707494 |
For some email, FortiMail may get NoResult response from FortiSandbox. |
709825 |
Fail to detect files with .js extension included in BZIP2 archives. |
713087 |
Fail to allow Excel files when sent in .rar archives. |
713397 |
DLP attachment metadata detection doesn't work for docx and xlsx files. |
713095 |
Reach FortiSandbox submission limit incorrectly. |
713859 |
Fail to detect macros in Excel legacy format *.xls files. |
Mail delivery
Bug ID |
Description |
---|---|
673911 |
Webmail client IP address is used in EHLO when sending DSNs for IBE reply email. |
System
Bug ID |
Description |
---|---|
688015 |
Cloning a used mail routing profile, when the max entries are reached, deletes the original profile. |
688008 |
DKIM and S/MIME signing in combination does not work properly. |
682822 |
Some GUI items are not translated into Spanish and Portuguese. |
683893 |
Oversized email meta data is sent to FortiSandbox. |
675831 |
The maifilterd process causes high CPU usage. |
691549 |
After adding a new webmail custom language under System > Customization > Appearance, the IBE registration web portal stops working. |
693194 |
When hide-on-email-arrival is enabled with Microsoft 365 real-time scanning, duplicate folders may be created in the mail user inbox. |
690048 |
IBE push email enhancement. |
639474 |
After upgrading from 6.0.7 to 6.2.4 release, the quarantine release URL in the quarantine report is incorrect on the HA config secondary unit. |
700244 |
For Diffie-Hellman key exchange, FortiMail uses self-generated parameters, which are different from the predefined finite field groups in RFC 7919. |
679151 |
Gmail using a "+" plus symbol for an alias causes issues with IBE account creation. |
691523 |
Unexpected quotation marks appear in the block lists when exporting the configuration. |
608247 |
LDAP authentication does not work for newly created domains. |
683893 |
Oversized meta data is sent to FortiSandbox. |
675831 |
The mailfilterd process causes high CPU usage. |
705376 |
After upgrading from 6.4.3 to 6.4.4 release, the customized IBE language is lost. |
707925 |
RADIUS 2FA users are locked out after the first unsuccessful login attempt. |
699918 |
IBE customized template for 2FA secure token notification is not taking the changes on the "From" field. |
691596 |
In FIPS-CC mode, importing a certificate via the GUI fails with the message "Unable to get certificate CRL." |
693981 |
Fail to connect to the SMB/CIFS server under Data Loss Prevention > Sensitive Data > FingerPrint Source. |
692153 |
Same email group entries can be created due to case sensitivity. |
711271 |
Mail authentication failed due to special characters in passwords. |
692164 |
Possible to create identical greylist exempt entries. |
712594 |
Disclaimers are not inserted when files are sent to FortiSandbox with Submit Only. |
Log and Report
Bug ID |
Description |
---|---|
681775 |
Incorrect email subject encoding modifies the cross search log lines. |
707915 |
When certain zip files are decrypted, the action is not logged. |
Common vulnerabilites and exposures
Visit https://fortiguard.com/psirt for more information.
Bug ID |
Description |
---|---|
694751 |
CWE-310: Cryptographic Issues. |
695037 694752 |
CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow'). |
693465 |
CWE-36: Absolute Path Traversal. |
694366 |
CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection'). |
691547 690894 |
CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'). |
692223 697251 |
CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'). |
695039 |
CWE-131: Incorrect Calculation of Buffer Size. |
696793 |
CWE-325: Missing Cryptographic Step. |
698764 |
CWE-338: Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG). |
700991 700994 |
CWE-401: Missing Release of Memory after Effective Lifetime. |