Bug ID 639929: Session variable replace with value containing these characters ' " & < > = may cause tmm crash

Last Modified: Nov 07, 2022

Bug Tracker

Affected Product:  See more info
BIG-IP APM(all modules)

Known Affected Versions:
12.0.0, 12.0.0 HF1, 12.0.0 HF2, 12.0.0 HF3, 12.0.0 HF4, 12.1.0, 12.1.0 HF1, 12.1.0 HF2, 12.1.1, 12.1.1 HF1, 12.1.1 HF2, 12.1.2, 12.1.2 HF1, 12.1.2 HF2, 12.1.3, 12.1.3.1, 13.0.0, 13.0.0 HF1, 13.0.0 HF2, 13.0.0 HF3

Fixed In:
13.1.0, 13.0.1, 12.1.3.2

Opened: Jan 17, 2017
Severity: 2-Critical

Symptoms

TMM crash with session variable being replaced with a value containing one of the following special characters: ' " & < > =

Impact

Traffic disrupted while tmm restarts.

Conditions

Session variable replace with value containing the following characters: ' " & < > =

Workaround

If possible, avoid session variable values containing ' " & < > =. Otherwise, there is no workaround.

Fix Information

Session variable overwrite operation with value containing special characters now works correctly.

Behavior Change