Resolved Issues
The resolved issues listed below do not list every bug that has been corrected with this release. For inquires about a particular bug, please contact Fortinet Customer Service & Support.
Antispam/Antivirus
|
Bug ID |
Description |
|---|---|
|
782699 |
Email scanning continues after the final action has been taken. |
|
782367 |
DLP condition "body is empty" should be applied to the email that looks empty (with invisible characters). |
|
783166 |
SPF check fails for MS365 API mail. |
|
770190 |
DKIM checking may not work properly in some cases. |
|
773494 |
Manipulated MIME headers may bypass AV scan. |
|
778938 |
In some cases, zip files cannot be decrypted. |
|
772298 |
After upgrading from v7.0.1 to v7.0.2, DLP scan does not work properly. |
|
771118 |
Sender IP address is added to authentication reputation blocklist after delivering five to 10 email messages. |
|
770566 |
Malicious URLs in text format may bypass FortiGuard URL filter check. |
|
770445 |
DLP scan does not detect words in the headers and footers of Microsoft Word documents. |
|
770841 |
URL exemption for domain names does not work properly with "aggressive" URL checking. |
|
764802 |
Dictionary profile was triggered with no matching pattern. |
|
785327 |
DKIM check fails incorrectly. |
|
784305 |
In some cases, the content filter fails to detect HTML attachments. |
|
789214 |
DKIM check is not performed if the sender is in the safelist. |
|
794309 |
Final action of DMARC is not applied. |
|
792507 |
Quarantine report does not work for associate domains when using domain recipient policy with regular expressions. |
|
799789 |
DKIM check false positive. |
|
803094 |
Content filter with wildcard patterns cannot detect Thai language. |
|
797391 |
In some cases, URL Click Protection does not work properly. |
Mail delivery
|
Bug ID |
Description |
|---|---|
|
773010 |
Successful bounce verification scan does not remove the tag. |
|
774758 |
DSNs are sent using the mail routing profile of the original email. |
|
732598 |
In some cases, email delivery may be delayed after Microsoft 365 real-time scanning. |
|
800994 |
Outbound email messages are rejected due to timeout but are logged as Accept. |
System
|
Bug ID |
Description |
|---|---|
|
781056 |
After upgrading from v6.4 to v7.0, FortiGuard antispam service is displayed as not reachable although the service is disabled. |
|
783656 |
DANE check 2.x.x should ignore "Unable to get CRL". |
|
672299 |
The dnscached process may cache incorrect query results under heavy traffic. |
|
773356 |
Missing deployment package for VMware ESXi 7.02. |
|
771913 |
Domain disclaimers do not work properly. |
|
768275 |
IP pools in ACL rules should have higher priority over IP pools in policies. |
|
772318 |
Push update does not work properly. |
|
769748 |
System encounters reboot loop with subscription license. |
|
770916 |
Unable to configure distinguished name (DN) with more than 127 characters. |
|
765128 |
In server mode config-only HA, multiple calendar event reminders are sent to users. |
|
764216 |
When ping access is disabled on an interface, ping6 from FortiMail cannot be sent. |
|
768328 |
Subdomain-based admins with read/write access privilege are not able to view domain based settings. |
|
786272 |
In some cases, disclaimers are not added properly although the logs show otherwise. |
|
788629 |
Associated domains should use the primary domain's Bayesian database. |
|
782368 |
High CPU usage after upgrading from v6.4.5 to v6.4.6. |
|
793149 |
Fail to subscribe MS365 users due to large number of invalid users. |
|
781108 |
High memory usage caused by hasyncd. |
|
797330 |
Disclaimers are not added at the top of email messages. |
|
794074 |
If post-login banner is enabled on the admin portal, SSO login does not work. |
|
766819 |
Mail data may get corrupted when transferred to a NAS device. |
|
798144 |
Problem with system time when using GMT time zone. |
|
799920 |
Admin profile with permission to Traffic Capture cannot sniffer via CLI. |
|
801861 |
High memory usage over time. |
Log and Report
|
Bug ID |
Description |
|---|---|
|
781956 |
When adding a safe/block list via webmail, the entries are added successfully but the event is not logged. |
|
786675 |
No System Event logs are generated when creating/deleting a DKIM key pair. |
|
797621 |
In some cases, log search does not work properly. |
Admin GUI and Webmail
|
Bug ID |
Description |
|---|---|
|
781054 |
History log search by message ID does not work. |
|
777084 |
Sender Reputation search filter does not work with relationship set to "or". |
|
764729 |
In server mode, the "Failed to open mailbox" error message may display when a webmail user tries to open a mail folder. |
|
786646 |
Unable to create safelists and blocklists. |
|
786675 |
No system event logs are generated when creating/deleting a DKIM key pair. |
|
799549 |
Webmail GUI is blocked when composing an email message and trying to edit a link. |
|
801157 |
System time section shows vertical format in Japanese GUI. |
|
803220 |
FortiMail product icon is not shown on webmail GUI in server mode. |
|
794341 |
IBE notification for new user registration and activation is in English while the language is set to German. |
|
804982 |
On the log search page, the "Load Previous Setting" button does not repopulate the Client IP field. |
|
804855 |
Admin login page is accessible from any IP address when trusted IP is set. |
Common vulnerabilites and exposures
Visit https://fortiguard.com/psirt for more information.
|
Bug ID |
Description |
|---|---|
|
776309 |
CWE-121: Stack-based Buffer Overflow |
|
765178 |
CWE-134: Use of Externally-Controlled Format String |
|
686309 |
CWE-329: Not Using a Random IV with CBC Mode |
|
771106 |
CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') |
|
703776 |
CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') |
|
790809 |
CWE-352: Cross-Site Request Forgery (CSRF) |
|
793937 |
CWE-284: Improper Access Control |
|
773386 |
CWE-610: Externally Controlled Reference to a Resource in Another Sphere |