02 December 2024, 06:48
These release notes provide information about the One Identity Defender release.
Defender enhances security by using two-factor authentication to authenticate the users who request access to valuable resources within your organization. Defender uses your current identity store within Microsoft® Active Directory® to enable two-factor authentication, taking advantage of its inherent scalability and security, and eliminating the costs and time involved to set up and maintain proprietary databases. Defender’s Web-based administration and user self-service ease the implementation of two-factor authentication for both administrators and users.
See New features.
New feature in Defender 6.6.0:
Integration of One Identity License Validator (OID LV): Defender now uses the One Identity branded version of License Validator (OID LV) for generating and validating licenses exclusively for One Identity products.
NOTE: This new version is not backward compatible with the previous Quest license version and requires new OID LV license keys for upgrades to Defender v6.6.0 or later.
Update to Curl Library Version 8.8.0 - Defender has been updated to integrate Curl library version 8.8.0, addressing two key vulnerabilities:
CVE-2023-38545: A high-severity heap-based buffer overflow that could lead to data corruption or arbitrary code execution.
CVE-2023-38546: A low-severity cookie injection vulnerability, mitigated to enhance security robustness.
The following is a list of issues addressed in 6.6.0 release.
|
Resolved Issue |
Issue ID |
|---|---|
|
High severity security vulnerabilities fixed (Polaris Scan Tool) and remediation of high-severity security issues identified by the Polaris scan tool with Defender pipelines, including out-of-bounds vulnerabilities and resource leaks, enhancing memory handling and resource management. |
413217 |
|
Security vulnerabilities identified by the Mend-White source scan tool have been fixed. Upgraded the zlib library to version 1.1.4 following deprecation identified by the Mend tool. |
469253 |
© 2024 One Identity LLC. ALL RIGHTS RESERVED. 使用条款 隐私 Cookie Preference Center
