What's New in 7.1.7
This document describes the content on the FortiSIEM 7.1.7 release.
Bug Fixes
This release contains the following fixes.
|
Bug Id |
Severity |
Module |
Description |
|---|---|---|---|
| 1034781 | Major | Linux Agent | Failed to install 7.1.6 and 7.2.0 Linux Agent due to certificate expiration. |
| 1034224 | Minor | System | If charting redis server (Node.js-charting) remains down, then phMonitor may start many new charting processes instances, consuming high memory and CPU resources. |
PostGreSQL Update
FortiSIEM 7.1.7 includes PostGreSQL v13.14 containing the patch for CVE-2024-0985.
-
If you are doing a fresh install of FortiSIEM 7.1.7, then the patch is included and there is nothing to do.
-
If you are upgrading to FortiSIEM 7.1.7, then the patch is included and there is nothing to do.
-
If you want to remain on a version of FortiSIEM 7.1.4 or earlier, then you can't get this patch by running
yum upgrade, since Postgres changed the repo gpg key as per this change
(https://yum.postgresql.org/news/pgdg-rpm-repo-gpg-key-update/). To get this Postgres patch, on the Supervisor, run the following script:
curl -s https://os-pkgs-cdn.fortisiem.fortinet.com/postgres/misc/switch-pgdg-repo-and-upgrade-to-pg13.14.sh | bash -xe
Post-Upgrade ClickHouse IP Index Rebuilding
If you are upgrading ClickHouse based deployment from pre-7.1.1 to 7.1.7, then after upgrading to 7.1.7, you need to run a script to rebuild ClickHouse indices. If you are running 7.1.2, 7.1.3, 7.1.4, 7.1.5 or 7.1.6, and have already executed the rebuilding steps, then nothing more needs to be done.
For details about this issue, see Release Notes 7.1.3 Known Issue.
The rebuilding steps are available in Release Notes 7.1.4 - Script for Rebuilding/Recreating pre-7.1.1 ClickHouse Database Indices Involving IP Fields.