Fortinet black logo

Release Notes

Home FortiSwitch 7.0.1 Release Notes
7.0.1
7.2.7
7.2.6
7.2.5
7.2.4
7.2.3
7.2.2
7.2.1
7.2.0
7.0.10
7.0.9
7.0.8
7.0.7
7.0.6
7.0.5
7.0.4
7.0.3
7.0.2
7.0.1
7.0.0
6.4.14
6.4.13
6.4.12
6.4.11
6.4.10
6.4.9
6.4.8
6.4.7
6.4.6
6.4.5
6.4.4
6.4.3
6.4.2
6.4.1
6.4.0
6.2.8
6.2.7
6.2.6
6.2.5
6.2.4
6.2.3
6.2.2
6.2.1
6.2.0
6.0.7
6.0.6
6.0.5
6.0.4
6.0.3
6.0.2
6.0.1
6.0.0
3.6.12
3.6.11
3.6.10
3.6.9
3.6.8
3.6.7
3.6.6
3.6.5
3.6.4
3.6.3
3.6.2
3.6.1
3.6.0
3.5.6
3.5.5
3.5.4
3.5.3
3.5.2
3.5.1
3.5.0
3.4.3
3.4.2
3.4.1
3.4.0
3.3.3
3.3.2
3.3.1

Resolved issues

Resolved issues

The following issues have been fixed in FortiSwitchOS 7.0.1. For inquiries about a particular bug, please contact Customer Service & Support.

Bug ID Description
566433 Setting the value for ca-cert causes LDAP authentication to fail sometimes.
589912 The version of OpenSSL needs to be upgraded to 1.1.1k.
598871 Some 4xxE switches report “failed BASE ID Check Sequence” and “failed reading register” errors.
686325 When many LLDP neighbors are connected to the FortiSwitch units, the daemon receiving the LLDP neighbor messages is overwhelmed and stops synchronizing the configuration.
701196 The root port for the spanning tree inter-chassis link (ICL) flaps in an MCLAG topology.
704377 After adding and then removing ip6-allowaccess ping from a VRF-enabled switch virtual interface (SVI), ping is still allowed through.
706717 The first time that the managed FS-108E-FPOE model attempts RADIUS authentication to the Cisco Identity Services Engine (ISE) always fails.
709837 The number of power supply units on the FS-448D model is not displayed correctly with the diagnose sys psu status command.
710229 When FortiSwitch 802.1x port-based authentication is configured on a switch port with learning-limit set to 1, traffic is not received on the FortiGate device.
711074 After a split-brain state is detected, some of the managed FortiSwitch units in the MCLAG topology are disconnected.
711950 After upgrading from 6.0.9 to 6.4.5, the FortiGate configuration is not being synchronized with the managed FortiSwitch units.
712323 After VRRP is enabled, the switch does not respond to ARP requests from the directly connected interface.
715261 Configuring allow-mac-move for 802.1x authentication does not work when using dynamic VLAN.
719044 After enabling a MACsec profile for a port, client traffic stopped flowing from that port.
719628 In an “MCLAG with access rings” topology, the managed switch crashes with an “Unable to handle kernel NULL pointer dereference at virtual address 0000000c” error.

Common vulnerabilities and exposures

FortiSwitchOS 7.0.1 is no longer vulnerable to the following CVEs:

  • CVE-2021-3449

Visit https://fortiguard.com/psirt for more information.

Previous
Next

Resolved issues

The following issues have been fixed in FortiSwitchOS 7.0.1. For inquiries about a particular bug, please contact Customer Service & Support.

Bug ID Description
566433 Setting the value for ca-cert causes LDAP authentication to fail sometimes.
589912 The version of OpenSSL needs to be upgraded to 1.1.1k.
598871 Some 4xxE switches report “failed BASE ID Check Sequence” and “failed reading register” errors.
686325 When many LLDP neighbors are connected to the FortiSwitch units, the daemon receiving the LLDP neighbor messages is overwhelmed and stops synchronizing the configuration.
701196 The root port for the spanning tree inter-chassis link (ICL) flaps in an MCLAG topology.
704377 After adding and then removing ip6-allowaccess ping from a VRF-enabled switch virtual interface (SVI), ping is still allowed through.
706717 The first time that the managed FS-108E-FPOE model attempts RADIUS authentication to the Cisco Identity Services Engine (ISE) always fails.
709837 The number of power supply units on the FS-448D model is not displayed correctly with the diagnose sys psu status command.
710229 When FortiSwitch 802.1x port-based authentication is configured on a switch port with learning-limit set to 1, traffic is not received on the FortiGate device.
711074 After a split-brain state is detected, some of the managed FortiSwitch units in the MCLAG topology are disconnected.
711950 After upgrading from 6.0.9 to 6.4.5, the FortiGate configuration is not being synchronized with the managed FortiSwitch units.
712323 After VRRP is enabled, the switch does not respond to ARP requests from the directly connected interface.
715261 Configuring allow-mac-move for 802.1x authentication does not work when using dynamic VLAN.
719044 After enabling a MACsec profile for a port, client traffic stopped flowing from that port.
719628 In an “MCLAG with access rings” topology, the managed switch crashes with an “Unable to handle kernel NULL pointer dereference at virtual address 0000000c” error.

Common vulnerabilities and exposures

FortiSwitchOS 7.0.1 is no longer vulnerable to the following CVEs:

  • CVE-2021-3449

Visit https://fortiguard.com/psirt for more information.

Previous
Next