Resolved issues
The following issues have been fixed in FortiProxy 7.0.15. For inquiries about a particular bug, please contact Customer Service & Support.
Bug ID | Description |
---|---|
985198 | IP address threat feed connection status indicates "Other Error". |
955481 983897 |
When fast-policy-match is enabled, traffic is matched to wrong policy during a specific period of time. |
977734 | Access to secondary unit is not granted when you use the SVI interface for management in HA. |
951108 | Crash at wad_sec_policy_result_free. |
979936 | When configuring ipv6 addresses in the CLI, all types of external-resource for ipv6 address are listed. Only the external-resources of type "domain" and "address" should be listed. |
980994 | External-resource type other than address and domain are not filtered out for firewall.policy.dstaddr6 and srcaddr6. |
976713 | Connection is closed during SSL offload by "config firewall ssl-server". |
924398 | FTP passive mode fails to establish data channel via DNAT as the IP/port provided by the server is not translated. |
933593 | User Agent field is truncated in http transaction log. |
976198 | Missing port check for ICAP local server when configuring port in other services. |
977972 | The GUI terminal cannot show the "dia sys top" correctly. |
945197 | Configuration value of the interface IP address should not be synced within a FortiProxy HA cluster on Azure. |
906712 949847 |
Crash on wad_diag_stats_policy_list. |
773815 988544 |
AD group cache update issue. |
986806 | Crash in WAD user-info process. |
982614 | Anti-virus incorrectly blocks the upload of good Excel files to OneDrive with corrupted archive error. |
989515 | Crash on building fast match table when the source interface is configured with an empty system zone. |
976775 | When policy based routing is configured and traffic is redirected to WAD, traffic from the FortiProxy back to the client is routed via static routing. |
981193 | FortiProxy do not send authentication request after proxy-re-authentication-time is passed. |
980297 |
GUI shows empty remote groups while CLI configuration shows the correct remote group configuration. |
980702 |
URL rating lookup does not support valid URLs with forward slash. |
987777 |
Policy ID is not available for disabled policies in the FortiProxy GUI. |
984094 | WAD worker memory leak. |
991641 |
Unable to save changes shaping policy when dstaddr6 is set to be an IPv6 FQDN address with wildcard (*). |
915834 | HA active-passive flip: standby FortiProxy tries to reach out to FortiGuard services through HA port. |
989798 | Out-of-bounds write in SSL VPN. |
985049 | XSS vulnerability in reboot page. |
989784 | Access to other users' bookmarks in SSL VPN web mode. |
990142 | Interfaces with no members are allowed to be aggregated in GUI. |
992599 |
UTM action and count information is missing in http-transaction-log for HTTPS request when tp-policy is certificate-inspect. |
994230 |
WAD crashes when SOCKS request fails to connect to LDAP server. |
995622 |
SOCKS request is unable to match web-proxy entity in auth rule and WAD crashes. |
Common vulnerabilities and exposures
FortiProxy 7.0.15 is no longer vulnerable to the following CVE references. Visit https://fortiguard.com/psirt for more information.
Bug ID |
CVE reference |
---|---|
989784 |
|
973351 |
|
989798 |