What is the severity of F5-K000140297?

The severity of F5-K000140297 is considered to be significant due to performance impacts on affected systems.

How do I fix F5-K000140297?

To fix F5-K000140297, update your software to the latest version as recommended by F5.

Which products are affected by F5-K000140297?

F5-K000140297 affects several products, including F5 BIG-IP, BIG-IQ Centralized Management, and F5OS.

Can F5-K000140297 lead to system slowdowns?

Yes, F5-K000140297 can cause significant slowdowns on systems due to expensive sys_membarrier calls.

Is there a workaround for F5-K000140297?

Currently, the recommended action for F5-K000140297 is to apply the available updates rather than rely on workarounds.

Vulnerability/
F5-K000140297

medium

4.4

CWE

362

25/7/2024

17/1/2025

F5-K000140297: Race Condition

First published: Thu Jul 25 2024(Updated: )

In the Linux kernel, the following vulnerability has been resolved: sched/membarrier: reduce the ability to hammer on sys_membarrier On some systems, sys_membarrier can be very expensive, causing overall slowdowns for everything. So put a lock on the path in order to serialize the accesses to prevent the ability for this to be called at too high of a frequency and saturate the machine.

Affected Software	Affected Version	How to fix
F5 BIG-IP Next (LTM)	>=20.0.1<=20.1.0
F5 BIG-IP Next Central Manager	>=20.0.1<=20.2.0
F5 BIG-IP and BIG-IQ Centralized Management	>=17.1.0<=17.1.2
F5 BIG-IP and BIG-IQ Centralized Management	>=16.1.0<=16.1.5
F5 BIG-IP and BIG-IQ Centralized Management	>=15.1.0<=15.1.10
F5 BIG-IP and BIG-IQ Centralized Management	>=8.1.0<=8.3.0
F5 F5OS	=1.7.0>=1.5.1<=1.5.2
F5 F5OS	>=1.6.0<=1.6.2
F5 Traffix Systems Signaling Delivery Controller	=5.2

Never miss a vulnerability like this again

Reference Links

https://my.f5.com/manage/s/article/K000140297

Frequently Asked Questions

What is the severity of F5-K000140297?
The severity of F5-K000140297 is considered to be significant due to performance impacts on affected systems.
How do I fix F5-K000140297?
To fix F5-K000140297, update your software to the latest version as recommended by F5.
Which products are affected by F5-K000140297?
F5-K000140297 affects several products, including F5 BIG-IP, BIG-IQ Centralized Management, and F5OS.
Can F5-K000140297 lead to system slowdowns?
Yes, F5-K000140297 can cause significant slowdowns on systems due to expensive sys_membarrier calls.
Is there a workaround for F5-K000140297?
Currently, the recommended action for F5-K000140297 is to apply the available updates rather than rely on workarounds.

agent/references
agent/weakness
agent/severity
agent/type
agent/description
agent/first-publish-date
agent/event
agent/last-modified-date
agent/source
agent/softwarecombine
agent/tags
collector/f5-advisory
source/F5
alias/CVE-2024-26602
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/f5
canonical/f5 big-ip next (ltm)
version/f5 big-ip next (ltm)/20.0.1
version/f5 big-ip next (ltm)/20.1.0
canonical/f5 big-ip next central manager
version/f5 big-ip next central manager/20.0.1
version/f5 big-ip next central manager/20.2.0
canonical/f5 big-ip and big-iq centralized management
version/f5 big-ip and big-iq centralized management/17.1.0
version/f5 big-ip and big-iq centralized management/17.1.2
version/f5 big-ip and big-iq centralized management/16.1.0
version/f5 big-ip and big-iq centralized management/16.1.5
version/f5 big-ip and big-iq centralized management/15.1.0
version/f5 big-ip and big-iq centralized management/15.1.10
version/f5 big-ip and big-iq centralized management/8.1.0
version/f5 big-ip and big-iq centralized management/8.3.0
canonical/f5 f5os
version/f5 f5os/1.7.0
version/f5 f5os/1.5.1
version/f5 f5os/1.5.2
version/f5 f5os/1.6.0
version/f5 f5os/1.6.2
canonical/f5 traffix systems signaling delivery controller
version/f5 traffix systems signaling delivery controller/5.2