Fortinet black logo

GA Release Notes

Home FortiMail 6.2.8 GA Release Notes
6.2.8
6.4.8
6.4.7
6.4.6
6.4.5
6.4.4
6.4.3
6.4.2
6.4.1
6.4.0
6.2.9
6.2.8
6.2.7
6.2.6
6.2.5
6.2.4
6.2.3
6.2.2
6.2.1
6.2.0
6.0.12
6.0.11
6.0.10
6.0.9
6.0.8
6.0.7
6.0.6
6.0.5
6.0.4
6.0.3
6.0.2
6.0.1
6.0.0
5.4.12
5.4.11
5.4.10
5.4.9
5.4.8
5.4.7
5.4.6
5.4.5
5.4.4
5.4.3
5.4.2
5.4.1
5.4.0

Resolved Issues

Resolved Issues

The resolved issues listed below do not list every bug that has been corrected with this release. For inquires about a particular bug, please contact Fortinet Customer Service & Support.

Antispam/Antivirus

Bug ID

Description
770841

URL exemption for domain names does not work with aggressive URI-checking.

758378

Disclaimer Insertion action is logged but no disclaimer is inserted in the email.

754271

Outbound email from FortiMail Cloud occasionally fails DKIM check.

756824

Return code from DNSBL events of spamhaus.org is not handled properly.

761931

OpenSSL encrypted files (.enc files) are not detected by the correct file type.

753015

Some .docx files may not be processed properly when antivirus is enabled.

740683

SPF records using macros are not handled properly.

737742

DKIM verification may fail due to DKIM signature format reasons.

738397

In some cases, FortiMail fails to allow text/plain attachments.

Mail Delivery

Bug ID

Description

712202

User-defined variables cannot be used in email templates.

752912

In some cases, a single email may be sent to personal quarantine numerous times.

747525

Authentication-Results header placement doesn't follow RFC7601.

752047

The initial SMTP greeting message 220 is sent after about four seconds, instead of instantly.

700997

Error message when sending email in batches with more 25 recipients.

System

Bug ID

Description

757174

When some LDAP profiles have network connection issues, all LDAP profiles may not work properly.

752950

Upgrade issue from 6.0.x to 6.2.x releases.

770916

Unable to configure distinguished name (DN) with more than 127 characters.

755862

If the mail data is scheduled to be backed up with one copy only, the new backup does not overwrite the old ones.

747569

In active-passive HA mode, when disabling admin/web access to one port, access to another port may also be disabled.

743949

When the full config file is backed up via TFTP, the file cannot be decompressed correctly.

729955

Incorrect Japanese translation in custom messages.

725014

High CPU usage when scanning PDF files.

587729

Traffic capture duration setting does not work properly.

731620

AWS VM license will be disabled after a few hours as duplicate by getting code 401.

728065

High CPU due to the "expireenc" process.

727609

Updating an LDAP password that does not meets the LDAP server's password policy returns a wrong message at FortiMail webmail.

766819

Mail data gets corrupted after transferred to a NAS device.

765128

In server mode config-only HA, multiple calendar event reminders are sent to users.

745733

Failed to check certificate revocation status when validating FortiAnalyzer's server certificate.

731620

In some cases, AWS VM license might be disabled as duplicate.

Log and Report

Bug ID

Description

755988

Increase the log field length of From and To in history logs.

758521

Missing event log and SNMP trap for RAID events.
758617

No system event log is created for power supply issues.
733781

Logs do not display the relay host/IP properly.

Admin GUI and Webmail

Bug ID

Description

757084

Webmail access cannot be completely disabled.

756496

SNMP trap and query options are missing from the GUI when adding SNMP communities and users.

768328

In gateway mode, sub-domain based administrators with read & write access cannot access domain based settings.

729564

When replying all in webmail, the sender email is also included in the recipient list.

724125

The body of MIME email with non-standard HTML is not displayed in system quarantine

and webmail.

Common Vulnerabilities and Exposures

Visit https://fortiguard.com/psirt for more information.

Bug ID

Description

771106

CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

686309

CWE-329: Not Using a Random IV with CBC Mode

753903

CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

690201

CWE-20: Improper Input Validation

697129

CWE-287: Improper Authentication
Previous
Next

Resolved Issues

The resolved issues listed below do not list every bug that has been corrected with this release. For inquires about a particular bug, please contact Fortinet Customer Service & Support.

Antispam/Antivirus

Bug ID

Description
770841

URL exemption for domain names does not work with aggressive URI-checking.

758378

Disclaimer Insertion action is logged but no disclaimer is inserted in the email.

754271

Outbound email from FortiMail Cloud occasionally fails DKIM check.

756824

Return code from DNSBL events of spamhaus.org is not handled properly.

761931

OpenSSL encrypted files (.enc files) are not detected by the correct file type.

753015

Some .docx files may not be processed properly when antivirus is enabled.

740683

SPF records using macros are not handled properly.

737742

DKIM verification may fail due to DKIM signature format reasons.

738397

In some cases, FortiMail fails to allow text/plain attachments.

Mail Delivery

Bug ID

Description

712202

User-defined variables cannot be used in email templates.

752912

In some cases, a single email may be sent to personal quarantine numerous times.

747525

Authentication-Results header placement doesn't follow RFC7601.

752047

The initial SMTP greeting message 220 is sent after about four seconds, instead of instantly.

700997

Error message when sending email in batches with more 25 recipients.

System

Bug ID

Description

757174

When some LDAP profiles have network connection issues, all LDAP profiles may not work properly.

752950

Upgrade issue from 6.0.x to 6.2.x releases.

770916

Unable to configure distinguished name (DN) with more than 127 characters.

755862

If the mail data is scheduled to be backed up with one copy only, the new backup does not overwrite the old ones.

747569

In active-passive HA mode, when disabling admin/web access to one port, access to another port may also be disabled.

743949

When the full config file is backed up via TFTP, the file cannot be decompressed correctly.

729955

Incorrect Japanese translation in custom messages.

725014

High CPU usage when scanning PDF files.

587729

Traffic capture duration setting does not work properly.

731620

AWS VM license will be disabled after a few hours as duplicate by getting code 401.

728065

High CPU due to the "expireenc" process.

727609

Updating an LDAP password that does not meets the LDAP server's password policy returns a wrong message at FortiMail webmail.

766819

Mail data gets corrupted after transferred to a NAS device.

765128

In server mode config-only HA, multiple calendar event reminders are sent to users.

745733

Failed to check certificate revocation status when validating FortiAnalyzer's server certificate.

731620

In some cases, AWS VM license might be disabled as duplicate.

Log and Report

Bug ID

Description

755988

Increase the log field length of From and To in history logs.

758521

Missing event log and SNMP trap for RAID events.
758617

No system event log is created for power supply issues.
733781

Logs do not display the relay host/IP properly.

Admin GUI and Webmail

Bug ID

Description

757084

Webmail access cannot be completely disabled.

756496

SNMP trap and query options are missing from the GUI when adding SNMP communities and users.

768328

In gateway mode, sub-domain based administrators with read & write access cannot access domain based settings.

729564

When replying all in webmail, the sender email is also included in the recipient list.

724125

The body of MIME email with non-standard HTML is not displayed in system quarantine

and webmail.

Common Vulnerabilities and Exposures

Visit https://fortiguard.com/psirt for more information.

Bug ID

Description

771106

CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

686309

CWE-329: Not Using a Random IV with CBC Mode

753903

CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

690201

CWE-20: Improper Input Validation

697129

CWE-287: Improper Authentication
Previous
Next