Last Modified: Oct 16, 2023
Affected Product(s):
BIG-IP LTM
Known Affected Versions:
13.1.0, 13.1.0.1, 13.1.0.2, 13.1.0.3, 13.1.0.4, 13.1.0.5, 13.1.0.6, 13.1.0.7, 14.0.0, 14.0.0.1, 14.0.0.2
Fixed In:
14.1.0, 14.0.0.3, 13.1.0.8
Opened: Mar 07, 2018 Severity: 3-Major
When the BigDB variable tmm.ssl.loggingcreatedcerts is set, a buffer overflow can occur.
A off-by-one error causes one byte to write off the end of an array.
-- The BigDB variable tmm.ssl.loggingcreatedcerts is set. -- Forward proxy is being used. -- A malformed certificate with a serial number length equal to 256 bytes is parsed during forging.
There is no workaround other than to not set tmm.ssl.loggingcreatedcerts BigDB variable.
Buffer no longer overflows.