Bug ID 421450: Specific multi-part parser issue

Last Modified: Nov 22, 2021

Affected Product(s):
BIG-IP ASM(all modules)

Known Affected Versions:
11.2.1, 11.3.0, 11.4.0

Fixed In:
11.5.0, 11.4.0 HF3, 11.3.0 HF8, 11.2.1 HF8

Opened: May 20, 2013

Severity: 2-Critical

Symptoms

In 11.2.1-hf8 and later hotfix, ASM Enforcer may parse multi-part parameters which violate RFC.

Impact

False negative, missing a parsing error in multi-part.

Conditions

Specific multi-part request.

Workaround

None.

Fix Information

This release fixes an issue that sometimes caused the Enforcer to incorrectly parse multi-part data.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips

Have a question?

About F5

Education

F5 sites

Support Tasks

© F5, Inc. All rights reserved. Policies | Privacy | Trademarks