Bug ID 1002109: Xen binaries do not follow security best practices

Last Modified: Feb 15, 2023

Bug Tracker

Affected Product:  See more info
BIG-IP TMOS(all modules)

Known Affected Versions:
13.1.0,,,,,,,,, 13.1.1,,,,, 13.1.3,,,,,,, 13.1.4,, 14.1.0,,,,,, 14.1.2,,,,,,,,, 14.1.3,, 14.1.4,,,, 15.1.0,,,,,, 15.1.1, 15.1.2,, 15.1.3,

Fixed In:
16.1.0, 15.1.4,, 13.1.5

Opened: Mar 13, 2021
Severity: 1-Blocking


The following xen* binaries have multiple violations of security best practices. usr/bin/xenstore /usr/bin/xenstore-exists /usr/bin/xenstore-ls /usr/bin/xenstore-read /usr/bin/xenstore-rm /usr/bin/xenstore-watch /usr/bin/xenstore-chmod /usr/bin/xenstore-list /usr/bin/xenstore-write


The issue lead to violation of security best practices.


The violations can be seen on BIG-IP by running following script. https://github.com/slimm609/checksec.sh



Fix Information

Fixed an issue with certain xen* binaries.

Behavior Change