Fortinet black logo

Release Notes

Home FortiMail 7.2.6 Release Notes
7.2.6
7.4.2
7.4.1
7.4.0
7.2.6
7.2.5
7.2.4
7.2.3
7.2.2
7.2.1
7.2.0
7.0.7
7.0.6
7.0.5
7.0.4
7.0.3
7.0.2
7.0.1
7.0.0
6.2.5

Resolved Issues

Resolved Issues

The resolved issues listed below do not list every bug that has been corrected with this release. For inquires about a particular bug, please contact Fortinet Customer Service & Support.

Antispam/Antivirus

Bug ID

Description

1013426

URL click protection is triggered even if the URL doesn't match the URL rewrite category.

1011714

URL is not rewritten although the log shows otherwise.

1016306

QR code with logo inside cannot be detected.

1004244

Fails to parse Base64 escaped UTF-8 strings.

978390

Large QR codes cannot be detected.

993340

In some cases, the SPF records cannot be resolved properly.

995247

Email classified as a "Sender Alignment" is not archived in the "Bulk" but in the "Inbox".

987126

Click protection with FortiIsolator occurred when its URL rating category was configured, even though CDR was not enabled in the content profile.

985249

Fail to submit the email to FortiSandbox when the attachment ends with "." (such as "test.htm.").

993514

Large dictionary with wildcards may cause high CPU usage and email rejection.

993870

When setting "None" action as replacement message profile in the content profile action, the default replacement message notification is delivered.

974770

QR code with inverted colors cannot be detected.

973157

The specified recipient in the on-demand scan rule for Microsoft 365 is ignored.

Mail Delivery

Bug ID

Description

982592

Message ID is the same for email that is sent to original host and released from system quarantine.

976027

Some email was incorrectly rejected with SMTP code 421 4.7.0 and mail event error message milter_write(mailfilterd).

System

Bug ID

Description

1020012

Extended DSN does not work.

1019843

In some cases, not all sender rate control notifications are sent.

1016312

Some sender rate control notification email contents are blank.

1011246

IBE reactivation notification uses wrong Mail From address.

926899

Fails to respond to IPv6 requests in some cases.

1009570

Fortimail VM license won't validate after upgrading to Proxmox 8.1.4.

1009303

MTA-STS policies cannot be matched properly.

995799

Incorrect replacement message information for email sent in HTML or Rich Text Format.

993319

In HA mode, the personal quarantine folder is automatically removed after some time on the secondary unit.

984713

4096-bit DKIM key import is not supported.

992801

LDAP synchronization for address book in server mode does not work properly.

989046

Duplicate email after restoring the mailbox.

955065

PKI admin login with non-ASCII characters does not work.

Log and Report

Bug ID

Description

1012390

TLS minimum version enforcement log is incomplete.

1001596

Mail statistics report doesn't work as expected when there are multiple-level protected domains.

992734

In some cases, the original file names are not logged when sending attachments to FortiSandbox.

Admin GUI/Webmail

Bug ID

Description

1006119

When filling the name in the "To" filed that contain Cyrillic, the results are not displayed correctly.

987280

Scroll bar does not show when trying to switch users in webmail.

972443

After the user accesses the secure email (IBE) webmail, the error message "Unable to open message. It might have been moved or deleted" displays although the secure email is showing in the inbox.

966184

Mail Statistics does not include email messages from associated domains.

969500

Email signature in webmail is garbled for specific words.

1022492

In some cases, adding comments with spaces may cause the system to reboot.

Common Vulnerabilities and Exposures

FortiMail 7.2.6 is no longer vulnerable to the following CVE/CWE-References.

Visit https://fortiguard.com/psirt for more information.

Bug ID

Description
985989

CWE-1395: Dependency on Vulnerable Third-Party Component

1012561

CVE-2023-52435

CVE-2023-45871

CVE-2023-2860

CVE-2023-1206

CVE-2023-1195
Previous
Next

Resolved Issues

The resolved issues listed below do not list every bug that has been corrected with this release. For inquires about a particular bug, please contact Fortinet Customer Service & Support.

Antispam/Antivirus

Bug ID

Description

1013426

URL click protection is triggered even if the URL doesn't match the URL rewrite category.

1011714

URL is not rewritten although the log shows otherwise.

1016306

QR code with logo inside cannot be detected.

1004244

Fails to parse Base64 escaped UTF-8 strings.

978390

Large QR codes cannot be detected.

993340

In some cases, the SPF records cannot be resolved properly.

995247

Email classified as a "Sender Alignment" is not archived in the "Bulk" but in the "Inbox".

987126

Click protection with FortiIsolator occurred when its URL rating category was configured, even though CDR was not enabled in the content profile.

985249

Fail to submit the email to FortiSandbox when the attachment ends with "." (such as "test.htm.").

993514

Large dictionary with wildcards may cause high CPU usage and email rejection.

993870

When setting "None" action as replacement message profile in the content profile action, the default replacement message notification is delivered.

974770

QR code with inverted colors cannot be detected.

973157

The specified recipient in the on-demand scan rule for Microsoft 365 is ignored.

Mail Delivery

Bug ID

Description

982592

Message ID is the same for email that is sent to original host and released from system quarantine.

976027

Some email was incorrectly rejected with SMTP code 421 4.7.0 and mail event error message milter_write(mailfilterd).

System

Bug ID

Description

1020012

Extended DSN does not work.

1019843

In some cases, not all sender rate control notifications are sent.

1016312

Some sender rate control notification email contents are blank.

1011246

IBE reactivation notification uses wrong Mail From address.

926899

Fails to respond to IPv6 requests in some cases.

1009570

Fortimail VM license won't validate after upgrading to Proxmox 8.1.4.

1009303

MTA-STS policies cannot be matched properly.

995799

Incorrect replacement message information for email sent in HTML or Rich Text Format.

993319

In HA mode, the personal quarantine folder is automatically removed after some time on the secondary unit.

984713

4096-bit DKIM key import is not supported.

992801

LDAP synchronization for address book in server mode does not work properly.

989046

Duplicate email after restoring the mailbox.

955065

PKI admin login with non-ASCII characters does not work.

Log and Report

Bug ID

Description

1012390

TLS minimum version enforcement log is incomplete.

1001596

Mail statistics report doesn't work as expected when there are multiple-level protected domains.

992734

In some cases, the original file names are not logged when sending attachments to FortiSandbox.

Admin GUI/Webmail

Bug ID

Description

1006119

When filling the name in the "To" filed that contain Cyrillic, the results are not displayed correctly.

987280

Scroll bar does not show when trying to switch users in webmail.

972443

After the user accesses the secure email (IBE) webmail, the error message "Unable to open message. It might have been moved or deleted" displays although the secure email is showing in the inbox.

966184

Mail Statistics does not include email messages from associated domains.

969500

Email signature in webmail is garbled for specific words.

1022492

In some cases, adding comments with spaces may cause the system to reboot.

Common Vulnerabilities and Exposures

FortiMail 7.2.6 is no longer vulnerable to the following CVE/CWE-References.

Visit https://fortiguard.com/psirt for more information.

Bug ID

Description
985989

CWE-1395: Dependency on Vulnerable Third-Party Component

1012561

CVE-2023-52435

CVE-2023-45871

CVE-2023-2860

CVE-2023-1206

CVE-2023-1195
Previous
Next