Operational Defect Database
BugZero found this defect 325 days ago.
Data sources
All data on this page is proprietary to BugZero® or gathered from public sources
F5 | 1312225
System Integrity Status: Invalid with some Engineering Hotfixes
Last update date:
4/26/2024
Affected products:
BIG-IP
BIG-IP TMOS
Affected releases:
14.1.4
14.1.4.1
14.1.4.2
14.1.4.3
14.1.4.4
14.1.4.5
14.1.4.6
14.1.5
14.1.5.1
14.1.5.2
14.1.5.3
14.1.5.4
Fixed releases:
No fixed releases provided.
Description:
Severity: 3-Major ... Symptoms ... After installing an Engineering Hotfix, when to attempt to verify the TPM system integrity with either the "tpm-status" or "tmsh run sys integrity status-check" command, the following error massage may appear: System Integrity Status: Invalid Running the "tpm-status" command with a Verbosity of 1 (or greater) reveals the following detail: Verifying system integrity... ... ... The signature in 17 is valid Output wrong commandline parameters cmdline is *ro ima_hash=sha256 mce=ignore_ce * The pcr value in 17 is invalid. ... System Integrity Status: Invalid ... Impact ... The TPM System Integrity Status is shown as Invalid. ... This may incorrectly suggest that system integrity has been compromised. ... Conditions ... This may occur if the Engineering Hotfix contains changes which cause the following packages to be included in the Engineering Hotfix ISO: -- sirr-tmos -- tboot But the Engineering Hotfix ISO does not contain the following package: -- nas...
