Converse agora com nosso suporte
Chat com o suporte

Defender 6.6 - Release Notes

Release Notes

One Identity Defender 6.6.0

Release Notes

02 December 2024, 06:48

These release notes provide information about the One Identity Defender release.

 

About Defender

About One Identity Defender 6.6.0

Defender enhances security by using two-factor authentication to authenticate the users who request access to valuable resources within your organization. Defender uses your current identity store within Microsoft® Active Directory® to enable two-factor authentication, taking advantage of its inherent scalability and security, and eliminating the costs and time involved to set up and maintain proprietary databases. Defender’s Web-based administration and user self-service ease the implementation of two-factor authentication for both administrators and users.

See New features.

New features

New feature in Defender 6.6.0:

  • Integration of One Identity License Validator (OID LV): Defender now uses the One Identity branded version of License Validator (OID LV) for generating and validating licenses exclusively for One Identity products.

    NOTE: This new version is not backward compatible with the previous Quest license version and requires new OID LV license keys for upgrades to Defender v6.6.0 or later.

  • Update to Curl Library Version 8.8.0 - Defender has been updated to integrate Curl library version 8.8.0, addressing two key vulnerabilities:

    • CVE-2023-38545: A high-severity heap-based buffer overflow that could lead to data corruption or arbitrary code execution.

    • CVE-2023-38546: A low-severity cookie injection vulnerability, mitigated to enhance security robustness.

Resolved issues

The following is a list of issues addressed in 6.6.0 release.

Table 1: General issues

Resolved Issue

Issue ID

High severity security vulnerabilities fixed (Polaris Scan Tool) and remediation of high-severity security issues identified by the Polaris scan tool with Defender pipelines, including out-of-bounds vulnerabilities and resource leaks, enhancing memory handling and resource management.

413217

Security vulnerabilities identified by the Mend-White source scan tool have been fixed. Upgraded the zlib library to version 1.1.4 following deprecation identified by the Mend tool.

469253

Ferramentas de autoatendimento
Base de conhecimento
Notificações e alertas
Suporte a produtos
Downloads de software
Documentação técnica
Fóruns de usuário
Tutorial em vídeo
Feed RSS
Fale conosco
Obtenha assistência de licenciamento
Suporte técnico
Visualizar tudo
Documentos relacionados

The document was helpful.

Selecione a classificação

I easily found the information I needed.

Selecione a classificação