Bug ID 1008265: DoS Flood and Sweep vector states are disabled on an upgrade to BIG-IP software versions 14.x and beyond

Last Modified: May 29, 2024

Affected Product(s):
BIG-IP AFM, Install/Upgrade(all modules)

Known Affected Versions:
14.0.0, 14.0.0.1, 14.0.0.2, 14.0.0.3, 14.0.0.4, 14.0.0.5, 14.0.1, 14.0.1.1, 14.1.0, 14.1.0.1, 14.1.0.2, 14.1.0.3, 14.1.0.5, 14.1.0.6, 14.1.2, 14.1.2.1, 14.1.2.2, 14.1.2.3, 14.1.2.4, 14.1.2.5, 14.1.2.6, 14.1.2.7, 14.1.2.8, 14.1.3, 14.1.3.1, 14.1.4, 14.1.4.1, 14.1.4.2, 14.1.4.3, 14.1.4.4, 14.1.4.5, 15.0.0, 15.0.1, 15.0.1.1, 15.0.1.2, 15.0.1.3, 15.0.1.4, 15.1.0, 15.1.0.1, 15.1.0.2, 15.1.0.3, 15.1.0.4, 15.1.0.5, 15.1.1, 15.1.2, 15.1.2.1, 15.1.3, 15.1.3.1, 15.1.4, 15.1.4.1, 15.1.5, 16.0.0, 16.0.0.1, 16.0.1, 16.0.1.1, 16.0.1.2, 16.1.0, 16.1.1, 16.1.2, 16.1.2.1

Fixed In:
17.0.0, 16.1.2.2, 15.1.5.1, 14.1.4.6

Opened: Apr 01, 2021

Severity: 2-Critical

Related Article: K92306170

Symptoms

DoS Flood and Sweep vector states are disabled after upgrade.

Impact

DoS Flood and Sweep vector states are disabled. System is susceptible to a DoS attack.

Conditions

DoS Flood and Sweep vectors are enabled prior to an upgrade to software release 14.x and beyond.

Workaround

Reset the DoS Flood and Sweep vectors to their previous state.

Fix Information

Removed default disabled state from upgrade scripts so that both vectors were restored to previous configured state

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips