サポートと今すぐチャット
サポートとのチャット

Defender 6.6 - Release Notes

Release Notes

One Identity Defender 6.6.0

Release Notes

02 December 2024, 06:48

These release notes provide information about the One Identity Defender release.

 

About Defender

About One Identity Defender 6.6.0

Defender enhances security by using two-factor authentication to authenticate the users who request access to valuable resources within your organization. Defender uses your current identity store within Microsoft® Active Directory® to enable two-factor authentication, taking advantage of its inherent scalability and security, and eliminating the costs and time involved to set up and maintain proprietary databases. Defender’s Web-based administration and user self-service ease the implementation of two-factor authentication for both administrators and users.

See New features.

New features

New feature in Defender 6.6.0:

  • Integration of One Identity License Validator (OID LV): Defender now uses the One Identity branded version of License Validator (OID LV) for generating and validating licenses exclusively for One Identity products.

    NOTE: This new version is not backward compatible with the previous Quest license version and requires new OID LV license keys for upgrades to Defender v6.6.0 or later.

  • Update to Curl Library Version 8.8.0 - Defender has been updated to integrate Curl library version 8.8.0, addressing two key vulnerabilities:

    • CVE-2023-38545: A high-severity heap-based buffer overflow that could lead to data corruption or arbitrary code execution.

    • CVE-2023-38546: A low-severity cookie injection vulnerability, mitigated to enhance security robustness.

Resolved issues

The following is a list of issues addressed in 6.6.0 release.

Table 1: General issues

Resolved Issue

Issue ID

High severity security vulnerabilities fixed (Polaris Scan Tool) and remediation of high-severity security issues identified by the Polaris scan tool with Defender pipelines, including out-of-bounds vulnerabilities and resource leaks, enhancing memory handling and resource management.

413217

Security vulnerabilities identified by the Mend-White source scan tool have been fixed. Upgraded the zlib library to version 1.1.4 following deprecation identified by the Mend tool.

469253

セルフ・サービス・ツール
ナレッジベース
通知および警告
製品別サポート
ソフトウェアのダウンロード
技術文書
ユーザーフォーラム
ビデオチュートリアル
RSSフィード
お問い合わせ
ライセンスアシスタンス の取得
Technical Support
すべて表示
関連ドキュメント

The document was helpful.

評価を選択

I easily found the information I needed.

評価を選択