CVE-2018-5500: On F5 BIG-IP systems running 13.0.0, 12.1.0 - 12.1.3.1, or 11.6.1 - 11.6.2, every Multipath TCP (MCTCP) connection established leaks a small amount of memory…

medium5.9CVSS 3.0

AVNACHPRNUINSUCNINAH

On F5 BIG-IP systems running 13.0.0, 12.1.0 - 12.1.3.1, or 11.6.1 - 11.6.2, every Multipath TCP (MCTCP) connection established leaks a small amount of memory. Virtual server using TCP profile with Multipath TCP (MCTCP) feature enabled will be affected by this issue.

Affected

52 ranges· showing 25

Vendor	Product	Version range	Fixed in
f5	big-ip_aam	—	—
f5	big-ip_access_policy_manager	—	—
f5	big-ip_access_policy_manager	11.6.1 – 11.6.2	—
f5	big-ip_access_policy_manager	12.1.0 – 12.1.3.1	—
f5	big-ip_advanced_firewall_manager	—	—
f5	big-ip_advanced_firewall_manager	11.6.1 – 11.6.2	—
f5	big-ip_advanced_firewall_manager	12.1.0 – 12.1.3.1	—
f5	big-ip_afm	—	—
f5	big-ip_analytics	—	—
f5	big-ip_analytics	—	—
f5	big-ip_analytics	11.6.1 – 11.6.2	—
f5	big-ip_analytics	12.1.0 – 12.1.3.1	—
f5	big-ip_apm	—	—
f5	big-ip_application_acceleration_manager	—	—
f5	big-ip_application_acceleration_manager	11.6.1 – 11.6.2	—
f5	big-ip_application_acceleration_manager	12.1.0 – 12.1.3.1	—
f5	big-ip_application_security_manager	—	—
f5	big-ip_application_security_manager	11.6.1 – 11.6.2	—
f5	big-ip_application_security_manager	12.1.0 – 12.1.3.1	—
f5	big-ip_asm	—	—
f5	big-ip_dns	—	—
f5	big-ip_dns	—	—
f5	big-ip_dns	11.6.1 – 11.6.2	—
f5	big-ip_dns	12.1.0 – 12.1.3.1	—
f5	big-ip_edge_gateway	—	—