지금 지원 담당자와 채팅
지원 담당자와 채팅

Defender 6.6 - Release Notes

Release Notes

One Identity Defender 6.6.0

Release Notes

02 December 2024, 06:48

These release notes provide information about the One Identity Defender release.

 

About Defender

About One Identity Defender 6.6.0

Defender enhances security by using two-factor authentication to authenticate the users who request access to valuable resources within your organization. Defender uses your current identity store within Microsoft® Active Directory® to enable two-factor authentication, taking advantage of its inherent scalability and security, and eliminating the costs and time involved to set up and maintain proprietary databases. Defender’s Web-based administration and user self-service ease the implementation of two-factor authentication for both administrators and users.

See New features.

New features

New feature in Defender 6.6.0:

  • Integration of One Identity License Validator (OID LV): Defender now uses the One Identity branded version of License Validator (OID LV) for generating and validating licenses exclusively for One Identity products.

    NOTE: This new version is not backward compatible with the previous Quest license version and requires new OID LV license keys for upgrades to Defender v6.6.0 or later.

  • Update to Curl Library Version 8.8.0 - Defender has been updated to integrate Curl library version 8.8.0, addressing two key vulnerabilities:

    • CVE-2023-38545: A high-severity heap-based buffer overflow that could lead to data corruption or arbitrary code execution.

    • CVE-2023-38546: A low-severity cookie injection vulnerability, mitigated to enhance security robustness.

Resolved issues

The following is a list of issues addressed in 6.6.0 release.

Table 1: General issues

Resolved Issue

Issue ID

High severity security vulnerabilities fixed (Polaris Scan Tool) and remediation of high-severity security issues identified by the Polaris scan tool with Defender pipelines, including out-of-bounds vulnerabilities and resource leaks, enhancing memory handling and resource management.

413217

Security vulnerabilities identified by the Mend-White source scan tool have been fixed. Upgraded the zlib library to version 1.1.4 following deprecation identified by the Mend tool.

469253

셀프 서비스 도구
지식 기반
공지 및 알림
제품 지원
소프트웨어 다운로드
기술 설명서
사용자 포럼
비디오 자습서
RSS 피드
문의처
라이센싱 지원가져오기
기술 지원
모두 보기
관련 문서

The document was helpful.

평가 결과 선택

I easily found the information I needed.

평가 결과 선택