Bug ID 634015: Potential TMM crash due to a PEM policy content triggered buffer overflow

Last Modified: Oct 10, 2018

Bug Tracker

Affected Product:  See more info
BIG-IP PEM(all modules)

Known Affected Versions:
12.1.0, 12.1.0 HF1, 12.1.0 HF2, 12.1.1, 12.1.1 HF1, 12.1.1 HF2, 12.1.2, 12.1.2 HF1, 12.1.2 HF2, 12.1.3, 13.0.0, 13.0.0 HF1, 13.0.0 HF2, 13.0.0 HF3

Fixed In:
13.1.0, 13.0.1, 12.1.3.1

Opened: Dec 16, 2016
Severity: 3-Major
Related AskF5 Article:
K49315364

Symptoms

Failure to add a PEM policy to a subscriber session in addition to a TMM crash.

Impact

Traffic disrupted while tmm restarts.

Conditions

PEM configured with a large number of policy rules that goes beyond the maximum supported PEM resources.

Workaround

None.

Fix Information

Buffer allocation checks have been added in that result in an error log along in case of a buffer overflow.

Behavior Change