CVE-2017-6166

Name of the Vulnerable Software and Affected Versions BIG-IP software versions 12.0.0 through 12.1.1

Description The issue affects the Traffic Management Microkernel (TMM) when processing fragmented packets, potentially causing it to crash. This occurs in cases where a virtual server is configured with a FastL4 profile. As a result, traffic processing is disrupted until TMM restarts. If the affected system is part of a device group, it triggers a failover to the peer device.

Recommendations For BIG-IP software versions 12.0.0 through 12.1.1, consider disabling the FastL4 profile on virtual servers as a temporary workaround until a patch is available. Restrict access to the virtual server configured with the FastL4 profile to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.