Bug ID 726996

Bug Tracker
ID 726996

Bug ID 726996: HTTP::header names might damage HTTP cookie cache due to stale xcursor

Last Modified: Sep 13, 2023

Affected Product(s):
BIG-IP LTM(all modules)

Known Affected Versions:
11.5.4, 11.5.5, 11.5.6, 11.5.7, 11.5.8, 11.5.9, 11.5.10, 11.6.0, 11.6.1, 11.6.2, 11.6.3, 11.6.3.1, 11.6.3.2, 11.6.3.3, 11.6.3.4, 11.6.4, 11.6.5, 11.6.5.1, 11.6.5.2, 11.6.5.3

Opened: Jul 06, 2018

Severity: 2-Critical

Symptoms

HTTP::header names can damage HTTP cookie cache due to stale xcursor, and subsequently causes tmm to core dump on failing to validate the internal data structure.

Impact

Tmm might core dump, resulting in device failover. Traffic disrupted while tmm restarts.

Conditions

Using Tcl HTTP::header names that change the internal data structure of the HTTP cookie cache.

Workaround

This is likely a rarely occurring event. There is no workaround, short of using HTTP::header only as read-only mode.

Fix Information

None

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips