In BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM, and WebSafe software 12.0.0 to 12.1.1, in some cases the Traffic Management Microkernel (TMM) may crash when processing fragmented packets. This vulnerability affects TMM through a virtual server configured with a FastL4 profile. Traffic processing is disrupted while TMM restarts. If the affected BIG-IP system is configured as part of a device group, it will trigger a failover to the peer device.
The product calls free() twice on the same memory address, potentially leading to modification of unexpected memory locations.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Big-ip_afm | F5 | 12.0.0 (including) | 12.1.1 (including) |
| Big-ip_analytics | F5 | 12.0.0 (including) | 12.1.1 (including) |
| Big-ip_apm | F5 | 12.0.0 (including) | 12.1.1 (including) |
| Big-ip_application_acceleration_manager | F5 | 12.0.0 (including) | 12.1.1 (including) |
| Big-ip_asm | F5 | 12.0.0 (including) | 12.1.1 (including) |
| Big-ip_dns | F5 | 12.0.0 (including) | 12.1.1 (including) |
| Big-ip_link_controller | F5 | 12.0.0 (including) | 12.1.1 (including) |
| Big-ip_ltm | F5 | 12.0.0 (including) | 12.1.1 (including) |
| Big-ip_pem | F5 | 12.0.0 (including) | 12.1.1 (including) |
| F5_websafe | F5 | 12.0.0 (including) | 12.1.1 (including) |
| Linerate | F5 | 2.5.0 (including) | 2.6.2 (including) |