Fortinet serwuje nam aktualizację dla produktu FortiMail. W wersji 5.4.10 producent rozszerza funkcjonalność wyszukiwania w konfiguracji profilu LDAP. Możemy teraz określić, ile zagnieżdżonych grup w LDAP zostanie rozwiniętych do przeszukania. Oprócz tego producent standardowo eliminuje wykryte przez administratorów błędy. Zachęcamy do aktualizacji oprogramowania!
Rozwiązane problemy:
Antispam/Antivirus/Content/Session
| Bug ID | Description |
|---|---|
| 569960 | DLP with profanity setting does not work. |
| 557805 | Regular expressions in DLP rules and content monitor do not match contents in HTML links. |
| 549420 | False positive in DLP sensitive data scan. |
| 568910 | BCC action in the content profile does not work if DSN email generation is disabled. |
| 567511 | Rewrite From in the session profile does not work if Header From is missing. |
| 563130 | In some cases, header manipulation may not work properly. |
Mail Receiving/Delivery
| Bug ID | Description |
|---|---|
| 553478 | In some cases, received email is not delivered. |
| 556364 | Recipient Address Verification does not work when the internal mail server responds to SMTP connections with warning messages. |
System
| Bug ID | Description |
|---|---|
| 561924 | Nested LDAP groups deeper than two levels cannot be found. |
| 551408 | Wrong certificate chain is supplied when the default certificate is chained and the IP pool is used. |
| 565860 | After system reboot, IP pools fail to answer SMTP connections. |
| 498174 | LDAP alias expansion should not be case sensitive. |
| 551451 | Under Security > Quarantine > System Quarantine Setting, the account name field should only allow to enter the local part of an email address, not the entire email address. |
| 549961 | Not DKIM signature is generated when Mail From is empty but the Header From is not. |
| 558429 | Config-only HA members should not have the same entity IDs. |
| 542637 | Fortinet VM appliance anti-exploit enhancement. |
Admin GUI/Webmail
| Bug ID | Description |
|---|---|
| 563496 | Multiple attachments cannot be uploaded and sent properly in webmail. |
| 565536 | Under Security > Quarantine > Quarantine Report > Web release host name/IP, a port number cannot be added. |
| 556550 | Some columns of the policy table are not displayed properly. |
| 560618 | The system quarantine folder cannot be opened when the folder name contains Japanese characters. |
CLI
| Bug ID | Description |
|---|---|
| 550710 | When using CLI to install VM license, it always timeouts. |
Common Vulnerabilities and Exposures
| Bug ID | Description |
|---|---|
| 565946 | FortiMail 5.4.10 is no longer vulnerable to the following CVE-Reference: CVE-2019-11478 CVE-2019-11479 |
| 565904 | 565904 FortiMail 5.4.10 is no longer vulnerable to the following CVE-Reference: CVE-2019-11477 |
| 568641 | 568641 FortiMail 5.4.10 is no longer vulnerable to the following CVE-Reference: CVE-2019-0217 |
| 569759 | 569759 FortiMail 5.4.10 is no longer vulnerable to the following CVE-Reference: CVE-2019-12900 |
Znane problemy do rozwiązania:
| Bug ID | Description |
|---|---|
| 307919 | Webmail GUI for IBE users displays a paper clip for all email although the email has no attachments. |
| 381511 | IBE messages are not signed with DKIM although DKIM signing is enabled. |
Zachęcamy do lektury notatek wydanych przez producenta: Release Notes – FortiMail 5.4.10
Pozdrawiamy,
Zespół B&B
Bezpieczeństwo w biznesie