What patches have been applied?

Question

If I am presented with this information from my Risk and Compliance team.
F5: K04225025: tcpdump vulnerabilities CVE-2017-5202, CVE-2017-5203, CVE-2017-5204, CVE-2017-5205, and CVE-2017-5342
How would I find out if this patch has been applied .. thank you muchly

kolom_265617 · Answer

You need to upgrade your software version to one of the following based on your current running version (11.6.2 , 12.1.3 , 13.1.0 ) , or you can invoke the -w option in your tcpdump syntax to write raw packets to a pcap file for offline examination.&nbsp;
check this link.&nbsp;

kolom · Answer

You need to upgrade your software version to one of the following based on your current running version (11.6.2 , 12.1.3 , 13.1.0 ) , or you can invoke the -w option in your tcpdump syntax to write raw packets to a pcap file for offline examination.&nbsp;
check this link.&nbsp;

duncan_proffitt · Answer

Thank you Kolom, for such a prompt answer.  What happens if I have 50 of the same message about other patches?&nbsp;
F5: K32262483: NTP vulnerability CVE-2017-6451&nbsp;
F5: K74759095: SafeNet External Network HSM script vulnerability CVE-2017-6165&nbsp;
F5: K82508682: Linux kernel vulnerability CVE-2017-6074&nbsp;
F5: K62279530: ConfigSync mcpd vulnerability CVE-2017-616 ... ad infinitum&nbsp;
We have just upgraded to 12.1.3 and the roadmap for theupgrade to 13.x is a long and winding road .. that leads to ... a Chris Rea song ...&nbsp;

duncan_proffitt · Answer

Thank you Kolom, for such a prompt answer.  What happens if I have 50 of the same message about other patches?&nbsp;
F5: K32262483: NTP vulnerability CVE-2017-6451&nbsp;
F5: K74759095: SafeNet External Network HSM script vulnerability CVE-2017-6165&nbsp;
F5: K82508682: Linux kernel vulnerability CVE-2017-6074&nbsp;
F5: K62279530: ConfigSync mcpd vulnerability CVE-2017-616 ... ad infinitum&nbsp;
We have just upgraded to 12.1.3 and the roadmap for theupgrade to 13.x is a long and winding road .. that leads to ... a Chris Rea song ...&nbsp;

kolom · Answer

With a quick search , BIGIP 12.1.3 is not vulnerable to any of these vulnerabilities . If you have access to F5 support portal , you can generate a QKVIEW file , upload it to , and it will give you under the diagnostics tab a nice list of exposed vulnerabilities in your version. and each entry will have a hyperlink attached that will lead you to an official KB including versions that are not vulnerable or how to mitigate it using some configuration options.

Forum Discussion

What patches have been applied?

Recent Discussions

Application only need to access from 2 uris

In Radius auth, how to allow second attempt of token input when the first input is incorrect?

AS3 Limitations

Unable to install firmware OS and drop at 10%

Statistics ›› Analytics : HTTP : Overview

Related Content

Dell & Ticketmaster breaches, CVE & patch roundup and ProxyShell is back

Patch Tuesday, cURL, passkey - October 8th - 14th, 2023 - F5 SIRT - This Week in Security

Applying APM on an iframe

Guidance on Patching CVE-2020-5902

F5 apm on mac os resolve.conf patch

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS