B&B Bezpieczeństwo w biznesie
  • Start
  • O nas
  • Produkty
  • Usługi
    • Szkolenia
    • Cyberbezpieczny Samorząd
    • Audyt bezpieczeństwa informacji
      • Testy penetracyjne
      • Testy ataków socjotechnicznych
    • Audyt konfiguracji Fortigate
    • Prezentacje
    • Wdrożenia
  • Blog techniczny
  • Pomoc
  • Kariera
  • Kontakt

Fortinet opublikował aktualizację dla produktu FortiMail. W wersji 6.0.6 wyeliminowano podatność jądra systemu operacyjnego, która umożliwiała atak DoS. Oprócz tego producent standardowo eliminuje wykryte przez administratorów błędy. Zachęcamy do aktualizacji oprogramowania!

Rozwiązane problemy:

Antispam/Antivirus/Content/Session

Bug ID Description
569960 DLP with profanity setting does not work.
557805 Regular expressions in DLP rules and content monitor do not match contents in HTML links.
567801 For URI protection scan, FortiMail and FortiSandbox Cloud have communication issues.
568910 BCC action in the content profile does not work if DSN email generation is disabled.
567511 Rewrite From in the session profile does not work if Header From is missing.
563130 In some cases, header manipulation may not work properly.
569416 Impersonation Analysis should not be bypassed for ACL rule match.
568281 Impersonation Analysis is bypassed when an email message contains multiple recipients.
573097 When using a customized file filter in a content profile, the .pub files are caught by the MS
PowerPoint filter, instead of the MS Publisher filter.

Mail Receiving/Delivery

Bug ID Description
553478 In some cases, received email is not delivered.
556364 Recipient Address Verification does not work when the internal mail server responds to SMTP connections with warning messages.
565422 SMTP connections timeout on incoming mail. FortiMail should send EOM responses after receiving all data.
530592 When both URI Click Protection and MS Office/PDF CDR are enabled, there will be milter exception error.

System

Bug ID Description
561924 Nested LDAP groups deeper than two levels cannot be found.
572514 Error message when resetting an IBE user.
565860 After system reboot, IP pools fail to answer SMTP connections.
498174 LDAP alias expansion should not be case sensitive.
551045 In some cases, mailfiltered may cause high CPU usage on HA pairs.
514185 Under certain conditions, Cyrillic alphabets from some domains show incorrect encoding.
558429 Config-only HA members should not have the same entity IDs.
554636 FortiMail can be accessed from any IP address even if the IP address is different from the trusted host.

 

Admin GUI/Webmail

Bug ID Description
563496 Multiple attachments cannot be uploaded and sent properly in webmail.
565536 Under Security > Quarantine > Quarantine Report > Web release host name/IP, a port number cannot be added.
556550 Some columns of the policy table are not displayed properly.
560618 The system quarantine folder cannot be opened when the folder name contains Japanese characters.
564553 In some cases, the FotiSandbox statistics are not displayed properly under FortiView > Threat Statistics > FortiSandbox Statistics.
554898 Expired administrators are still displayed in the current administrator list if the administrators closed the browser without logging out from the admin GUI.

Common Vulnerabilities and Exposures

Bug ID Description
565946 FortiMail 6.0.6 is no longer vulnerable to the following CVE-Reference:
CVE-2019-11478
CVE-2019-11479
565904 FortiMail 6.0.6 is no longer vulnerable to the following CVE-Reference:
CVE-2019-11477
568641 FortiMail 6.0.6 is no longer vulnerable to the following CVE-Reference:
CVE-2019-0217
569759 FortiMail 6.0.6 is no longer vulnerable to the following CVE-Reference:
CVE-2019-12900

 

Znane problemy do rozwiązania:

Bug ID Description
307919 Webmail GUI for IBE users displays a paper clip for all email although the email has no attachments.
381511 IBE messages are not signed with DKIM although DKIM signing is enabled.

 

Zachęcamy do lektury notatek wydanych przez producenta: Release Notes – FortiMail 6.0.6

Pozdrawiamy,

Zespół B&B
Bezpieczeństwo w biznesie

Post Views: 994

6.0.6 FortiMail fortimail 6.0.6

Poprzedni artykułFortiClient 6.2.1Następny artykuł FortiAP-S / FortiAP-W2 6.2.1

Najnowsze

ESET Endpoint products for Windows version 11.0.2032.04 grudnia 2023
vSphere Replication 8.8.0.21 grudnia 2023
FortiWeb 7.4.121 listopada 2023

Kategorie

  • Acronis
  • Aktualności
  • Bez kategorii
  • ESET
  • F-Secure
  • FortiAnalyzer
  • FortiAP
  • FortiAuthenticator
  • FortiClient
  • FORTIGATE
  • FORTIMAIL
  • FortiManager
  • FortiNAC
  • FortiSIEM
  • FORTISWITCH
  • FortiWeb
  • NAKIVO
  • Proget
  • Qnap
  • Stormshield
  • Szkolenia
  • Veeam
  • VMware
  • WithSecure

Tagi

6.0.6 6.2.2 6.2.7 6.4.0 6.4.2 6.4.3 6.4.4 6.4.5 6.4.8 7.0.0 7.0.2 7.0.5 7.2.0 7.2.2 Eset eset endpoint antivirus eset endpoint security ESET Protect ESET Protect Cloud F-Secure f-secure client security f-secure policy manager FMG FortiAnalyzer forti analyzer FortiAP fortiap-w2 FortiAuthenticator FortiClient FortiClientEMS FortiGate FortiMail FortiManager FortiNAC Fortinet FortiOS FortiSIEM FortiSwitch FortiWeb Stormshield vCenter vCenter Server VMware vmware vcenter VMware vCenter Server

MENU

  • Start
  • O nas
  • Produkty
  • Usługi
    • Szkolenia
    • Cyberbezpieczny Samorząd
    • Audyt bezpieczeństwa informacji
      • Testy penetracyjne
      • Testy ataków socjotechnicznych
    • Audyt konfiguracji Fortigate
    • Prezentacje
    • Wdrożenia
  • Blog techniczny
  • Pomoc
  • Kariera
  • Kontakt

BLOG TECHNICZNY

ESET Endpoint products for Windows version 11.0.2032.04 grudnia 2023
vSphere Replication 8.8.0.21 grudnia 2023
FortiWeb 7.4.121 listopada 2023

KONTAKT

+48 500-413-313
biuro@b-and-b.plhttps://www.b-and-b.pl
8:00-16:00
RODO | POLITYKA PRYWATNOŚCI

BEZPIECZEŃSTWO W BIZNESIE 2023 - wszystkie prawa zastrzeżone

MENU

  • Start
  • O nas
  • Produkty
  • Usługi
    • Szkolenia
    • Cyberbezpieczny Samorząd
    • Audyt bezpieczeństwa informacji
      • Testy penetracyjne
      • Testy ataków socjotechnicznych
    • Audyt konfiguracji Fortigate
    • Prezentacje
    • Wdrożenia
  • Blog techniczny
  • Pomoc
  • Kariera
  • Kontakt

BLOG TECHNICZNY

ESET Endpoint products for Windows version 11.0.2032.04 grudnia 2023
vSphere Replication 8.8.0.21 grudnia 2023
FortiWeb 7.4.121 listopada 2023

Kontakt

+48 500-413-313
biuro@b-and-b.pl
8:00-16:00

Korzystamy z plików cookies lub podobnych technologii, by lepiej dopasować treści na stronie do Twoich potrzeb.
W każdej chwili możesz zmienić ustawienia cookies. Polityka prywatności

Akceptuję Odmów
  • About Cookies

    About Cookies

    Cookies are small text files that can be used by websites to make a user's experience more efficient. The law states that we can store cookies on your device if they are strictly necessary for the operation of this site. For all other types of cookies we need your permission. This site uses different types of cookies. Some cookies are placed by third party services that appear on our pages.
  • Necessary

    Necessary

    Always Active
    Necessary cookies help make a website usable by enabling basic functions like page navigation and access to secure areas of the website. The website cannot function properly without these cookies.
  • Marketing

    Marketing

    Marketing cookies are used to track visitors across websites. The intention is to display ads that are relevant and engaging for the individual user and thereby more valuable for publishers and third party advertisers.
  • Analytics

    Analytics

    Analytics cookies help website owners to understand how visitors interact with websites by collecting and reporting information anonymously.
  • Preferences

    Preferences

    Preference cookies enable a website to remember information that changes the way the website behaves or looks, like your preferred language or the region that you are in.
  • Unclassified

    Unclassified

    Unclassified cookies are cookies that we are in the process of classifying, together with the providers of individual cookies.