FortiSIEM What’s New in 4.4.5

What’s new in Release 4.4.5

This release contains the following bug fixes and enhancements. It fixes several issues that were newly introduced in 4.4.3.

Bug

ID

Severity Component Description
15111 Major GUI (AO-SP) Rule exceptions created under an organization are not saved
15160 Major GUI Malware hash update via API does not work
15121 Major Parser Netflow events may be dropped because templates not maintained correctly. This was newly introduced in 4.4.3.
15075 Major System Clear cache operation in phMonitor module could keep global cache lock and blocking global cache access. This was newly introduced in 4.4.3.
15099 Major System Lack of mutex can cause a deadlock in phMonitor causing the system to not function correctly. This was newly introduced in 4.4.3.
15074 Major Query A race condition may cause Query Worker to enter a deadlock stage preventing queries from progressing.
15104 Major Performance

Monitor

Class based QoS data not generated even though the job is added.
15101 Minor Application

Server

Too many sockets opened while running a scheduled Report bundle may cause queries to fail.
15102 Minor Application

Server

(AO-SP) Rulemaster module may not pick up user changes on Rule exception for a specific organization
14834 Normal System Partial archives directory can prevent Event DB purging leading to Event DB becoming full.
15112 Normal GUI (AO-SP) Rule Exception notes not saved in per Org level
15100 Normal Application

Server

Improper exception thrown by Application Server on an invalid query may block other queries from progressing.
15162 Enhancement System Disable AccelOps internal Apache logging.
15163 Enhancement System Download of CMDB Objects containing large IP values (e.g. Blocked IP object containing malware data) needs to be optimized.
15166 Enhancement Data Handle new version of Cisco FirePower logs.
15176 Enhancement GUI Identity and location may take a long time to load if the default time window is 1 day – set the default to 1 hour.

 

 

This entry was posted in Administration Guides, FortiSIEM on by .

About Mike

Michael Pruett, CISSP has a wide range of cyber-security and network engineering expertise. The plethora of vendors that resell hardware but have zero engineering knowledge resulting in the wrong hardware or configuration being deployed is a major pet peeve of Michael's. This site was started in an effort to spread information while providing the option of quality consulting services at a much lower price than Fortinet Professional Services. Owns PacketLlama.Com (Fortinet Hardware Sales) and Office Of The CISO, LLC (Cybersecurity consulting firm).

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.