Bug ID 1207793: Bracket expression in JSON schema pattern does not work with non basic latin characters

Last Modified: May 29, 2024

Affected Product(s):
BIG-IP ASM(all modules)

Known Affected Versions:
16.1.3, 16.1.3.1, 16.1.3.2, 16.1.3.3, 16.1.3.4, 16.1.3.5, 16.1.4, 16.1.4.1, 16.1.4.2, 16.1.4.3

Fixed In:
17.1.1, 15.1.10

Opened: Dec 08, 2022

Severity: 3-Major

Symptoms

Pattern matching in JSON schema has an issue of unable to match string in a specific pattern expression.

Impact

The JSON content profile fails matching legitimate JSON token with JSON schema, resulting a false positive.

Conditions

When all the following conditions are satisfied: - a non-basic latin character is in bracket expression [] - the bracket expression is led by ^ or followed by $ - there is at least one character just before or after bracket expression Following are examples for pattern that has issue: - /^[€]1/ - /1[€]$/ The bracket would have multiple characters in real scenario. Following are examples for patterns that do not have the issue: - /^[€]/ - /[€]1/ - /^€1/

Workaround

None

Fix Information

None

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips