B&B Bezpieczeństwo w biznesie
  • Start
  • O nas
  • Produkty
  • Usługi
    • Szkolenia
    • Audyt bezpieczeństwa informacji
      • Testy penetracyjne
      • Testy ataków socjotechnicznych
    • Audyt konfiguracji Fortigate
    • Program Cyfrowy Powiat
    • Prezentacje
    • Wdrożenia
  • Blog techniczny
  • Pomoc
  • Kariera
  • Kontakt

Fortinet opublikował aktualizację dla produktu FortiAuthenticator o numerze wersji 6.0.8. Nowa wersja oprogramowania ze względów bezpieczeństwa przynosi aktualizację komponentów – OpenLDAP, libxml2 oraz OpenSSL, co sprawia że sam FortiAuthenticator w tej wersji jest wolny od podatności CVE-2022-0778.

Rozwiązane problemy:

Bug ID Description
837219 FortiAuthenticator-VM on same Hyper-V host cannot form HA A/A cluster after July 2022 Windows Updates.
861776 Upgrade OpenSSL from 1.1.1n to 1.1.1s, then again to 1.1.1t.
791452 OpenSSL 1.1.1n – Infinite loop in BN_mod_sqrt() reachable when parsing certificates (CVE-2022-0778).
800714 [3rd party component upgrade required for security reasons] FortiAuthenticator– OpenLDAP to 2.6.2.
814167 [3rd party component upgrade required for security reasons] FortiAuthenticator – libxml2 to 2.9.14.
803891 SAML peer certificate expiration issue and XML security issue.

Common Vulnerabilities and Exposures

FortiAuthenticator is no longer vulnerable to the following CVE-Reference(s):

Bug ID CVE references
791452 CVE-2022-0778

Znane problemy:

Bug ID Description
529178 FortiAuthenticator 5.5.0 search for serial number in certificate subject.
526662 FortiAuthenticator SNMP TRAP on disk failure or / and SNMP OID for disk status.
576691 Default realm allowing RADIUS users to authenticate using non-existing realms.
582850 RADIUS attributes are not added in the Access-Accept packet.
540932 FSSOMA nested group search failing if nested via primary group.
478985 FortiAuthenticator Windows Agent sometimes does not see the domain name and the user is not able to log in.
551706 FortiAuthenticator LB HA Cluster cannot have two remote FortiAuthenticator Admins with same username when 2FA FortiToken is enabled.
570138 Local user screen crashes intermittently.
490281 GUI issue with FortiAuthenticator logging.
554282 Should have similar log messages for remote sync rule when either admin or non-admin role is assigned to an imported user.
583729 Unable to import users into LDAP directory tree.
551478 FortiAuthenticator-VM upgrade from 4.0 b6237 to 6.0 b010 is not successful.
577590 FortiGuard server fails to send SMS because the message is too long.
555320 Captive Portal time schedule for device only (MAC address) is not working.
581951 FortiToken Cloud status service error when no entitlement purchased.
569420 Certificate upload to FortiAuthenticator in PKCS#12 format fails.
581967 FTM trial license activation: Disable „Cannot find req_trial_ftm task. It might have been removed”.
544851 HA re-enable and interface in use.
573278 GUI SSO Portal Services page hiding elements.
528231 Log showing cannot add any more users because limit of 1100 has been reached.
574824 No more than 20 realms can be present in RADIUS client settings.
567157 Trusted CA import shows pending when certificate is using SHA512 as hash.
526202 FortiAuthenticator does not check if the signature of CSR is valid.
566145 Usage Profile „TIME USAGE=Time used” is not triggering COA or Disconnect request to FortiGate.
445313 Default behavior for FTM deprovision.
563330 Error while accessing Authentication> Remote Users.
565635 2FA: When FortiAuthenticator receives AVP with multiple VSA for MSCHAP-v2, it rejects the 2nd request (response to challenge).
512913 One of the cluster units does not send traps while acting as primary.
536211 Should limit FSSO password to 15 characters since that is the limit on the FortiGate.
519319 FortiAuthenticator is crashing every time when the LDAP Remote user sync rules are supposed to run.
561563 Guest portal authentication fails with HTTP 500 if the user’s name contains non-ASCII characters.
568479 EAP-TLS – deletion of local CA#1 breaks authentication for local CA#2 with identical subject.
532652 Users Audit Report not working on secondary of LB cluster.
555180 Push notification certificates not restored to disk following model conversion.
544691 Remote LDAP admins have no certificate bindings.
561588 Adding SMS license shows „connection timeout” in the GUI.
541884 FortiAuthenticator constantly drops connection to FortiGate with error „sock_recv() failed, error: 104”.
582845 Revoked local service certificates not in CRL.
567493 EAP-TLS authentication does not check AuthorityKeyIdentifier when matching allowed/trusted CAs.
538059 Importing an ECDSA-signed certificate/key causes an error dump.
546764 Non-ASCII characters in replacement messages cause line-break in the middle of a URL in emails.
510931 Monitor – Authentication – Windows AD statuses are unclear.
528352 FortiAuthenticator HA CLI errors.
566500 Activation Failed. FTM Server: provision code not exist (40).
543729 RADIUS client service not working after upgrade.
575996 FortiAuthenticator as RSSO > FSSO processing fails if fails RADIUS Accounting Sources is configured with FQDN instead of IP.
571537 Smart Connect profile is not working with MAC computer.

Notatki producenta: FortiAuthenticator 6.0.8

Pozdrawiamy,

Zespół B&B
Bezpieczeństwo w biznesie

Post Views: 27

FortiAuthenticator Fortinet

Poprzedni artykułFortiAuthenticator 6.2.2Następny artykuł FortiAuthenticator 6.3.4

Najnowsze

FortiAnalyzer 7.0.724 marca 2023
FortiSwitch 7.2.422 marca 2023
FortiClient EMS 7.0.821 marca 2023

Kategorie

  • Acronis
  • Aktualności
  • Bez kategorii
  • ESET
  • F-Secure
  • FortiAnalyzer
  • FortiAP
  • FortiAuthenticator
  • FortiClient
  • FORTIGATE
  • FORTIMAIL
  • FortiManager
  • FortiNAC
  • FORTISWITCH
  • FortiWeb
  • NAKIVO
  • Qnap
  • Stormshield
  • Szkolenia
  • Veeam
  • VMware

Tagi

6.0.6 6.2.1 6.2.2 6.2.7 6.4.0 6.4.2 6.4.3 6.4.4 6.4.5 6.4.8 7.0.0 7.0.2 7.0.5 7.2.0 7.2.2 acronis Eset eset endpoint antivirus eset endpoint security ESET Protect ESET Protect Cloud F-Secure f-secure client security f-secure policy manager FMG FortiAnalyzer FortiAP fortiap-s fortiap-w2 FortiAuthenticator FortiClient FortiClientEMS FortiGate FortiMail FortiManager FortiNAC Fortinet FortiOS FortiSwitch FortiWeb vCenter vCenter Server VMware vmware vcenter VMware vCenter Server

MENU

  • Start
  • O nas
  • Produkty
  • Usługi
    • Szkolenia
    • Audyt bezpieczeństwa informacji
      • Testy penetracyjne
      • Testy ataków socjotechnicznych
    • Audyt konfiguracji Fortigate
    • Program Cyfrowy Powiat
    • Prezentacje
    • Wdrożenia
  • Blog techniczny
  • Pomoc
  • Kariera
  • Kontakt

BLOG TECHNICZNY

FortiAnalyzer 7.0.724 marca 2023
FortiSwitch 7.2.422 marca 2023
FortiClient EMS 7.0.821 marca 2023

KONTAKT

+48 500-413-313
biuro@b-and-b.plhttps://www.b-and-b.pl
8:00-16:00
RODO | POLITYKA PRYWATNOŚCI

BEZPIECZEŃSTWO W BIZNESIE 2023 - wszystkie prawa zastrzeżone

MENU

  • Start
  • O nas
  • Produkty
  • Usługi
    • Szkolenia
    • Audyt bezpieczeństwa informacji
      • Testy penetracyjne
      • Testy ataków socjotechnicznych
    • Audyt konfiguracji Fortigate
    • Program Cyfrowy Powiat
    • Prezentacje
    • Wdrożenia
  • Blog techniczny
  • Pomoc
  • Kariera
  • Kontakt

BLOG TECHNICZNY

FortiAnalyzer 7.0.724 marca 2023
FortiSwitch 7.2.422 marca 2023
FortiClient EMS 7.0.821 marca 2023

Kontakt

+48 500-413-313
biuro@b-and-b.pl
8:00-16:00

Korzystamy z plików cookies lub podobnych technologii, by lepiej dopasować treści na stronie do Twoich potrzeb.
W każdej chwili możesz zmienić ustawienia cookies. Polityka prywatności

Akceptuję Odmów
  • About Cookies

    About Cookies

    Cookies are small text files that can be used by websites to make a user's experience more efficient. The law states that we can store cookies on your device if they are strictly necessary for the operation of this site. For all other types of cookies we need your permission. This site uses different types of cookies. Some cookies are placed by third party services that appear on our pages.
  • Necessary

    Necessary

    Always Active
    Necessary cookies help make a website usable by enabling basic functions like page navigation and access to secure areas of the website. The website cannot function properly without these cookies.
  • Marketing

    Marketing

    Marketing cookies are used to track visitors across websites. The intention is to display ads that are relevant and engaging for the individual user and thereby more valuable for publishers and third party advertisers.
  • Analytics

    Analytics

    Analytics cookies help website owners to understand how visitors interact with websites by collecting and reporting information anonymously.
  • Preferences

    Preferences

    Preference cookies enable a website to remember information that changes the way the website behaves or looks, like your preferred language or the region that you are in.
  • Unclassified

    Unclassified

    Unclassified cookies are cookies that we are in the process of classifying, together with the providers of individual cookies.