Bug ID 421450: Specific multi-part parser issue

Last Modified: Oct 29, 2019

Bug Tracker

Affected Product:  See more info
BIG-IP ASM(all modules)

Known Affected Versions:
11.2.1, 11.3.0, 11.4.0

Fixed In:
11.5.0, 11.4.0 HF3, 11.3.0 HF8, 11.2.1 HF8

Opened: May 20, 2013
Severity: 2-Critical

Symptoms

In 11.2.1-hf8 and later hotfix, ASM Enforcer may parse multi-part parameters which violate RFC.

Impact

False negative, missing a parsing error in multi-part.

Conditions

Specific multi-part request.

Workaround

None.

Fix Information

This release fixes an issue that sometimes caused the Enforcer to incorrectly parse multi-part data.

Behavior Change