CVE-2016-9252

Name of the Vulnerable Software and Affected Versions F5 BIG-IP versions prior to 11.5.4 HF3 F5 BIG-IP versions 11.6.x prior to 11.6.1 HF2 F5 BIG-IP versions 12.x prior to 12.1.2

Description The issue is related to the Traffic Management Microkernel (TMM) in F5 BIG-IP, which does not properly handle minimum path MTU options for IPv6. This allows remote attackers to cause a denial-of-service (DoS) through unspecified vectors.

Recommendations For F5 BIG-IP versions prior to 11.5.4 HF3, update to version 11.5.4 HF3 or later. For F5 BIG-IP versions 11.6.x prior to 11.6.1 HF2, update to version 11.6.1 HF2 or later. For F5 BIG-IP versions 12.x prior to 12.1.2, update to version 12.1.2 or later.