Resolved Issues
The resolved issues listed below do not list every bug that has been corrected with this release. For inquires about a particular bug, please contact Fortinet Customer Service & Support.
Antispam/Antivirus
Bug ID |
Description |
---|---|
1013426 |
URL click protection is triggered even if the URL doesn't match the URL rewrite category. |
1011714 |
URL is not rewritten although the log shows otherwise. |
1016306 |
QR code with logo inside cannot be detected. |
1004244 |
Fails to parse Base64 escaped UTF-8 strings. |
978390 |
Large QR codes cannot be detected. |
993340 |
In some cases, the SPF records cannot be resolved properly. |
995247 |
Email classified as a "Sender Alignment" is not archived in the "Bulk" but in the "Inbox". |
987126 |
Click protection with FortiIsolator occurred when its URL rating category was configured, even though CDR was not enabled in the content profile. |
985249 |
Fail to submit the email to FortiSandbox when the attachment ends with "." (such as "test.htm."). |
993514 |
Large dictionary with wildcards may cause high CPU usage and email rejection. |
993870 |
When setting "None" action as replacement message profile in the content profile action, the default replacement message notification is delivered. |
974770 |
QR code with inverted colors cannot be detected. |
973157 |
The specified recipient in the on-demand scan rule for Microsoft 365 is ignored. |
Mail Delivery
Bug ID |
Description |
---|---|
982592 |
Message ID is the same for email that is sent to original host and released from system quarantine. |
976027 |
Some email was incorrectly rejected with SMTP code 421 4.7.0 and mail event error message milter_write(mailfilterd). |
System
Bug ID |
Description |
---|---|
1020012 |
Extended DSN does not work. |
1019843 |
In some cases, not all sender rate control notifications are sent. |
1016312 |
Some sender rate control notification email contents are blank. |
1011246 |
IBE reactivation notification uses wrong Mail From address. |
926899 |
Fails to respond to IPv6 requests in some cases. |
1009570 |
Fortimail VM license won't validate after upgrading to Proxmox 8.1.4. |
1009303 |
MTA-STS policies cannot be matched properly. |
995799 |
Incorrect replacement message information for email sent in HTML or Rich Text Format. |
993319 |
In HA mode, the personal quarantine folder is automatically removed after some time on the secondary unit. |
984713 |
4096-bit DKIM key import is not supported. |
992801 |
LDAP synchronization for address book in server mode does not work properly. |
989046 |
Duplicate email after restoring the mailbox. |
955065 |
PKI admin login with non-ASCII characters does not work. |
Log and Report
Bug ID |
Description |
---|---|
1012390 |
TLS minimum version enforcement log is incomplete. |
1001596 |
Mail statistics report doesn't work as expected when there are multiple-level protected domains. |
992734 |
In some cases, the original file names are not logged when sending attachments to FortiSandbox. |
Admin GUI/Webmail
Bug ID |
Description |
---|---|
1006119 |
When filling the name in the "To" filed that contain Cyrillic, the results are not displayed correctly. |
987280 |
Scroll bar does not show when trying to switch users in webmail. |
972443 |
After the user accesses the secure email (IBE) webmail, the error message "Unable to open message. It might have been moved or deleted" displays although the secure email is showing in the inbox. |
966184 |
Mail Statistics does not include email messages from associated domains. |
969500 |
Email signature in webmail is garbled for specific words. |
1022492 |
In some cases, adding comments with spaces may cause the system to reboot. |
Common Vulnerabilities and Exposures
FortiMail 7.2.6 is no longer vulnerable to the following CVE/CWE-References.
Visit https://fortiguard.com/psirt for more information.
Bug ID |
Description |
---|---|
985989 |
CWE-1395: Dependency on Vulnerable Third-Party Component |
1012561 |
CVE-2023-52435 CVE-2023-45871 CVE-2023-2860 CVE-2023-1206 CVE-2023-1195 |