Bug ID 421259: secure session variables are wrong length after decryption

Last Modified: Jul 12, 2023

Affected Product(s):
BIG-IP APM(all modules)

Known Affected Versions:
11.2.1, 11.3.0, 11.4.0

Fixed In:
11.5.0, 11.4.0 HF3, 11.2.1 HF10, 11.2.1 HF10

Opened: May 16, 2013

Severity: 3-Major

Related Article: K15706


A decrypted secure session variable may display extraneous characters at the end of the string.


Unable to use mcget with -secure option, because result is not correct.


Secure session variable decrypted using "mcget" with "-secure" option



Fix Information

Secure session variable now decrypts correctly and is the correct length.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips