Fortinet Document Library

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:


Table of Contents

Resolved issues

The following issues have been fixed in version 6.4.8. For inquires about a particular bug, please contact Customer Service & Support.

System

Bug ID

Description

750149

NP7 processors are dropping CAPWAP packets when users are authenticated using an EAP method. This happens because the EAP packets are being fragmented into two packets, and the second packet is smaller than the minimum allowed packet size.

User & Authentication

Bug ID

Description

750551

DST_Root_CA_X3 certificate is expired.

757883

FortiGate blocks expired root CA, even if the cross-signed intermediate CA of the root CA is valid.

Common Vulnerabilities and Exposures

Visit https://fortiguard.com/psirt for more information.

Bug ID

CVE references

752134

FortiOS 6.4.8 is no longer vulnerable to the following CVE Reference:

  • CVE-2021-42757

752450

FortiOS 6.4.8 is no longer vulnerable to the following CVE Reference:

  • CVE-2021-44168

Resolved issues

The following issues have been fixed in version 6.4.8. For inquires about a particular bug, please contact Customer Service & Support.

System

Bug ID

Description

750149

NP7 processors are dropping CAPWAP packets when users are authenticated using an EAP method. This happens because the EAP packets are being fragmented into two packets, and the second packet is smaller than the minimum allowed packet size.

User & Authentication

Bug ID

Description

750551

DST_Root_CA_X3 certificate is expired.

757883

FortiGate blocks expired root CA, even if the cross-signed intermediate CA of the root CA is valid.

Common Vulnerabilities and Exposures

Visit https://fortiguard.com/psirt for more information.

Bug ID

CVE references

752134

FortiOS 6.4.8 is no longer vulnerable to the following CVE Reference:

  • CVE-2021-42757

752450

FortiOS 6.4.8 is no longer vulnerable to the following CVE Reference:

  • CVE-2021-44168