F5 BIG-IP是美国F5公司的一款集成了网络流量管理、应用程序安全管理、负载均衡等功能的多合一网络设备。 F5 BIG-IP设备TLS/SSL堆栈溢出漏洞“又称TicketBleed漏洞”。远程攻击者利用该漏洞一次提取高达31字节的未初始化内存,获取来自其他连接的密钥或敏感数据。

F5 Enterprise Manager F5 ARX F5 BIG-IP Edge Gateway F5 BIG-IP WebAccelerator F5 BIG-IQ Device F5 BIG-IQ Cloud F5 Traffix SDC F5 LineRate F5 BIG-IP GTM >=11.4.0,<=11.6.1 F5 BIG-IP Link Controller >=11.4.0,<=11.6.1 F5 BIG-IP PEM >=11.4.0,<=11.6.1 F5 BIG-IP PSM >=11.4.0,<=11.6.1 F5 BIG-IQ Security F5 BIG-IQ ADC F5 BIG-IQ Centralized Management F5 BIG-IQ Cloud and Orchestration F5 BIG-IP DNS F5 BIG-IP WebSafe F5 F5 iWorkflow F5 BIG-IP LTM >=12.0.0,<=12.1.2 F5 BIG-IP LTM >=11.4.0,<=11.6.1 F5 BIG-IP AAM >=12.0.0,<=12.1.2 F5 BIG-IP AAM >=11.4.0,<=11.6.1 F5 BIG-IP AFM >=12.0.0,<=12.1.2 F5 BIG-IP AFM >=11.4.0,<=11.6.1 F5 BIG-IP Analytics >=12.0.0,<=12.1.2 F5 BIG-IP Analytics >=11.4.0,<=11.6.1 F5 BIG-IP APM >=12.0.0,<=12.1.2 F5 BIG-IP APM >=11.4.0,<=11.6.1 F5 BIG-IP ASM >=12.0.0,<=12.1.2 F5 BIG-IP ASM >=11.4.0,<=11.6.1 F5 BIG-IP Link Controller >=12.0.0,<=12.1.2 F5 BIG-IP PEM >=12.0.0,<=12.1.2 F5 BIG-IQ Centralized Management >=5.0.0,<=5.1.0

用户可参考如下供应商提供的安全公告获得补丁信息: