Last Modified: Dec 05, 2024
Affected Product(s):
BIG-IP PEM
Fixed In:
17.1.2, 16.1.5
Opened: Jan 28, 2024 Severity: 2-Critical
PEM writes into buffer without checking size hence resulting unknown behavior or core. TMM starts coring and rebooting.
TMM core, hence service disruption.
1) PEM policy with action reporting is configured. 2) Reporting ->hsl-> session-reporting-fields has large number of fields.
None
Check the bounds before each write