Multiple Fortinet products may be affected by the following Linux Kernel vulnerability:
CVE-2016-10229 Linux Kernel ipv4/udp.c Remote Code Execution Vulnerability
udp.c in the Linux kernel before 4.5 allows remote attackers to execute arbitrary code via UDP traffic that triggers an unsafe second checksum calculation during execution of a recv system call with the MSG_PEEK flag
However, note there is no recorded successful attack on Fortinet products.
Affected ProductsFortiAP (including S/W2 series) - 5.6.0, 5.4.3 and below
FortiAnalyzer - 5.4.2 and below
FortiOS - 5.6.0 and below
FortiSwitch - 3.6.2 and below