K53183580 : TMM FastL4 vulnerability CVE-2019-6680

Security Advisory Description

While processing traffic through a standard virtual server that targets a FastL4 virtual server (VIP on VIP), hardware appliances may stop responding. (CVE-2019-6680)

Impact

This vulnerability allows remote attackers to cause a denial of service (DoS) on the BIG-IP system. This issue affects only a standard virtual server that sends traffic to a FastL4 virtual server on the same BIG-IP system, and the same Virtual Clustered Multiprocessing (vCMP) guest in the case of vCMP. This issue does not affect a FastL4 virtual server that sends traffic to another FastL4 virtual server, nor does it affect a FastL4 virtual server that sends traffic to a standard virtual server.