Bug ID 421435: TMM crash, at AVR double release of memory

Last Modified: Oct 06, 2020

Bug Tracker

Affected Product:  See more info
BIG-IP ASM, AVR(all modules)

Known Affected Versions:
11.3.0, 11.4.0

Fixed In:
11.5.0, 11.4.0 HF3, 11.3.0 HF6

Opened: May 18, 2013
Severity: 2-Critical

Symptoms

In some cases AVR tries to release the same memory area twice, which leads to memory corruption and tmm crash.

Impact

Traffic disrupted while tmm restarts.

Conditions

There are 2 configurations that can lead to it: 1. Application Dos is used. 2. AVR is used with the option of Max Statistics turned on. In both cases, HTTP responses should be compressed, and some timing issue with regards to compression activity running in parallel to the payload being transferred, can lead to this situation.

Workaround

If Application Dos is used - there is no workaround. If AVR is used, then disabling the option of "Max Statistics" solves the problem. Run the command: tmsh modify sys db md.enablemaxandglobalhttpstats value 0

Fix Information

Fixed an Application DoS/AVR issue that caused the double release of memory, and possible memory corruption.

Behavior Change