Bug ID 603906: Faulty attack signature update causes tmm crash under certain configuration

Last Modified: Sep 13, 2023

Affected Product(s):
BIG-IP ASM(all modules)

Known Affected Versions:
12.0.0, 12.0.0 HF1, 12.1.0 HF1, 12.0.0 HF2, 12.1.0 HF2, 12.0.0 HF3, 12.0.0 HF4, 12.1.1 HF1, 12.1.1 HF2, 12.1.2 HF1, 12.1.2 HF2, 12.1.0, 12.1.1, 12.1.2, 12.1.3, 12.1.3.1, 12.1.3.2, 12.1.3.3, 12.1.3.4, 12.1.3.5, 12.1.3.6, 12.1.3.7, 12.1.4, 12.1.4.1, 12.1.5, 12.1.5.1, 12.1.5.2, 12.1.5.3, 12.1.6

Opened: Jul 09, 2016

Severity: 2-Critical

Related Article: K06233932

Symptoms

TMM repeatedly crashes after applying the attack signature update named ASM-SignatureFile_20160627_172326.im.

Impact

Traffic is disrupted while tmm restarts.

Conditions

This can occur in certain configurations when applying the ASM-SignatureFile_20160627_172326.im attack signature update.

Workaround

Turn off suspicious browser detection, or revert to the previous attack signature update.

Fix Information

None

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips