K16352404 : BIG-IQ DCD vulnerability CVE-2021-22996

Security Advisory Description

When set up for auto failover, a BIG-IQ Data Collection Device (DCD) cluster member that receives an undisclosed message may cause the corosync process to abort. This behavior may lead to a denial-of-service (DoS) and impact the stability of a BIG-IQ high availability (HA) cluster. (CVE-2021-22996)

Impact
The unexpected termination of the
corosync
process causes the BIG-IQ Auto Failover HA feature to fail. As a result, the BIG-IQ HA cluster is unable to fail over as expected.