3rd party component upgrade required for security reasons: CVE-2016-10229 Linux Kernel ipv4/udp.c Remote Code Execution Vulnerability Fortinet PSIRT Advisories Fortinet PSIRT Contact: Website: https://fortiguard.fortinet.com/faq/psirt-contact FG-IR-17-118 Final 1 1 2019-07-24T00:00:00 Current version 2019-07-24T00:00:00 2019-07-24T00:00:00 Multiple Fortinet products may be affected by the following Linux Kernel vulnerability:CVE-2016-10229 Linux Kernel ipv4/udp.c Remote Code Execution Vulnerabilityudp.c in the Linux kernel before 4.5 allows remote attackers to execute arbitrary code via UDP traffic that triggers an unsafe second checksum calculation during execution of a recv system call with the MSG_PEEK flagHowever, note there is no recorded successful attack on Fortinet products. Execute unauthorized code or commands FortiAP (including S/W2 series) - 5.6.0, 5.4.3 and belowFortiAnalyzer - 5.4.2 and belowFortiOS - 5.6.0 and belowFortiSwitch - 3.6.2 and below The following products were patched on a precaution basis:FortiAP (including S/W2 series) - upgrade to 5.4.4 or 5.6.1 and aboveFortiAnalyzer - upgrade to 5.4.3 or aboveFortiOS - upgrade to 5.6.1 or aboveFortiSwitch - upgrade to 3.6.3 or above CVE-2016-10229 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:X/RC:X https://fortiguard.fortinet.com/psirt/FG-IR-17-118 3rd party component upgrade required for security reasons: CVE-2016-10229 Linux Kernel ipv4/udp.c Remote Code Execution Vulnerability Reference>