Resolved Issues
The resolved issues listed below do not list every bug that has been corrected with this release. For inquires about a particular bug, please contact Fortinet Customer Service & Support.
Antispam/Antivirus
Bug ID |
Description |
---|---|
782699 |
Email scanning continues after the final action has been taken. |
782367 |
DLP condition "body is empty" should be applied to the email that looks empty (with invisible characters). |
783166 |
SPF check fails for MS365 API mail. |
770190 |
DKIM checking may not work properly in some cases. |
773494 |
Manipulated MIME headers may bypass AV scan. |
778938 |
In some cases, zip files cannot be decrypted. |
772298 |
After upgrading from v7.0.1 to v7.0.2, DLP scan does not work properly. |
771118 |
Sender IP address is added to authentication reputation blocklist after delivering five to 10 email messages. |
770566 |
Malicious URLs in text format may bypass FortiGuard URL filter check. |
770445 |
DLP scan does not detect words in the headers and footers of Microsoft Word documents. |
770841 |
URL exemption for domain names does not work properly with "aggressive" URL checking. |
764802 |
Dictionary profile was triggered with no matching pattern. |
785327 |
DKIM check fails incorrectly. |
784305 |
In some cases, the content filter fails to detect HTML attachments. |
789214 |
DKIM check is not performed if the sender is in the safelist. |
794309 |
Final action of DMARC is not applied. |
792507 |
Quarantine report does not work for associate domains when using domain recipient policy with regular expressions. |
799789 |
DKIM check false positive. |
803094 |
Content filter with wildcard patterns cannot detect Thai language. |
797391 |
In some cases, URL Click Protection does not work properly. |
Mail delivery
Bug ID |
Description |
---|---|
773010 |
Successful bounce verification scan does not remove the tag. |
774758 |
DSNs are sent using the mail routing profile of the original email. |
732598 |
In some cases, email delivery may be delayed after Microsoft 365 real-time scanning. |
800994 |
Outbound email messages are rejected due to timeout but are logged as Accept. |
System
Bug ID |
Description |
---|---|
781056 |
After upgrading from v6.4 to v7.0, FortiGuard antispam service is displayed as not reachable although the service is disabled. |
783656 |
DANE check 2.x.x should ignore "Unable to get CRL". |
672299 |
The dnscached process may cache incorrect query results under heavy traffic. |
773356 |
Missing deployment package for VMware ESXi 7.02. |
771913 |
Domain disclaimers do not work properly. |
768275 |
IP pools in ACL rules should have higher priority over IP pools in policies. |
772318 |
Push update does not work properly. |
769748 |
System encounters reboot loop with subscription license. |
770916 |
Unable to configure distinguished name (DN) with more than 127 characters. |
765128 |
In server mode config-only HA, multiple calendar event reminders are sent to users. |
764216 |
When ping access is disabled on an interface, ping6 from FortiMail cannot be sent. |
768328 |
Subdomain-based admins with read/write access privilege are not able to view domain based settings. |
786272 |
In some cases, disclaimers are not added properly although the logs show otherwise. |
788629 |
Associated domains should use the primary domain's Bayesian database. |
782368 |
High CPU usage after upgrading from v6.4.5 to v6.4.6. |
793149 |
Fail to subscribe MS365 users due to large number of invalid users. |
781108 |
High memory usage caused by hasyncd. |
797330 |
Disclaimers are not added at the top of email messages. |
794074 |
If post-login banner is enabled on the admin portal, SSO login does not work. |
766819 |
Mail data may get corrupted when transferred to a NAS device. |
798144 |
Problem with system time when using GMT time zone. |
799920 |
Admin profile with permission to Traffic Capture cannot sniffer via CLI. |
801861 |
High memory usage over time. |
Log and Report
Bug ID |
Description |
---|---|
781956 |
When adding a safe/block list via webmail, the entries are added successfully but the event is not logged. |
786675 |
No System Event logs are generated when creating/deleting a DKIM key pair. |
797621 |
In some cases, log search does not work properly. |
Admin GUI and Webmail
Bug ID |
Description |
---|---|
781054 |
History log search by message ID does not work. |
777084 |
Sender Reputation search filter does not work with relationship set to "or". |
764729 |
In server mode, the "Failed to open mailbox" error message may display when a webmail user tries to open a mail folder. |
786646 |
Unable to create safelists and blocklists. |
786675 |
No system event logs are generated when creating/deleting a DKIM key pair. |
799549 |
Webmail GUI is blocked when composing an email message and trying to edit a link. |
801157 |
System time section shows vertical format in Japanese GUI. |
803220 |
FortiMail product icon is not shown on webmail GUI in server mode. |
794341 |
IBE notification for new user registration and activation is in English while the language is set to German. |
804982 |
On the log search page, the "Load Previous Setting" button does not repopulate the Client IP field. |
804855 |
Admin login page is accessible from any IP address when trusted IP is set. |
Common vulnerabilites and exposures
Visit https://fortiguard.com/psirt for more information.
Bug ID |
Description |
---|---|
776309 |
CWE-121: Stack-based Buffer Overflow |
765178 |
CWE-134: Use of Externally-Controlled Format String |
686309 |
CWE-329: Not Using a Random IV with CBC Mode |
771106 |
CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') |
703776 |
CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') |
790809 |
CWE-352: Cross-Site Request Forgery (CSRF) |
793937 |
CWE-284: Improper Access Control |
773386 |
CWE-610: Externally Controlled Reference to a Resource in Another Sphere |