Last Modified: Apr 28, 2025
Affected Product(s):
BIG-IP APM
Known Affected Versions:
11.2.1, 11.3.0, 11.4.0, 11.4.1, 11.5.0, 11.5.1, 11.5.1 HF1, 11.5.1 HF2, 11.5.1 HF3, 11.5.1 HF4
Fixed In:
11.6.0, 11.5.1 HF5, 11.4.1 HF6, 11.4.0 HF8
Opened: Mar 28, 2014 Severity: 3-Major Related Article:
K16527
TMM was cored due to memory corruption caused by a double free in form based SSO. A forms-based SSO control failing to decrypt could lead to a double free. The decryption failure message is logged in LTM log.
Traffic disrupted while tmm restarts.
Double free and TMM core could happen only if forms-based SSO control failed to decrypt.
This issue has no workaround at this time.
Forms - Client Initiated SSO authentication handles decryption failure correctly.