Last Modified: Sep 13, 2023
Affected Product(s):
BIG-IP FPS, Install/Upgrade
Known Affected Versions:
11.6.1, 11.6.2, 11.6.3, 11.6.3.1, 11.6.3.2, 11.6.3.3, 11.6.3.4, 11.6.4, 11.6.5, 11.6.5.1, 11.6.5.2, 11.6.5.3, 12.0.0, 12.0.0 HF1, 12.1.0 HF1, 12.0.0 HF2, 12.1.0 HF2, 12.0.0 HF3, 12.0.0 HF4, 12.1.1 HF1, 12.1.1 HF2, 12.1.2 HF1, 12.1.2 HF2, 12.1.0, 12.1.1, 12.1.2, 12.1.3, 12.1.3.1, 12.1.3.2, 12.1.3.3, 12.1.3.4, 12.1.3.5, 12.1.3.6, 12.1.3.7, 12.1.4, 12.1.4.1, 12.1.5, 12.1.5.1, 12.1.5.2, 12.1.5.3, 12.1.6, 13.0.0, 13.0.0 HF1, 13.0.0 HF2, 13.0.0 HF3
Fixed In:
13.1.0, 13.0.1
Opened: Jan 02, 2017 Severity: 3-Major
A new malware object was introduced in version 13.0.0. This object replaces some of the functionalities that were previously configured on the FPS profile itself. If you upgrade a pre-13.0.0 software version, the operation might fail if the ;general; malware object already exists.
Upgrade will fail.
This occurs when the following conditions are met: -- Profile-level blacklist-words or whitelist-words lists from the previous version are not empty. -- The general malware appears in the antifraud.domainavailabilityurls db variable. -- Upgrade from pre-v13.0.0 software.
None.
FPS now checks to determine whether the 'general' object already exists and modifies it instead of creating it.