Last Modified: Jul 12, 2023
Affected Product(s):
BIG-IP LTM
Known Affected Versions:
14.1.0, 14.0.0, 13.1.1.2, 13.1.1, 13.1.0.8, 12.1.3.7
Fixed In:
15.0.0, 14.1.0.2, 14.0.1.1, 13.1.1.4, 12.1.4.1
Opened: Aug 01, 2018 Severity: 2-Critical
SSL persistence hangs while parsing SSL records comprising multiple handshake messages.
SSL persistence parser fails to parse such messages correctly. The start of the record may be forwarded on to server but then connection will stall and eventually idle timeout.
This issue intermittently happens when an incoming SSL record contains multiple handshake messages.
There is no workaround other than using a different persistence, or disabling SSL persistence altogether. After changing or disabling persistence, the transaction succeeds and no longer hangs.
None