THIS FIELD NOTICE IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTY OF MERCHANTABILITY. YOUR USE OF THE INFORMATION ON THE FIELD NOTICE OR MATERIALS LINKED FROM THE FIELD NOTICE IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS FIELD NOTICE AT ANY TIME.
Affected Software Product | Affected Release | Affected Release Number | Comments |
---|---|---|---|
Adaptive Security Appliance (ASA) Software | 9 | 9.16.1, 9.16.1.28, 9.16.2, 9.16.2.11, 9.16.2.13, 9.16.2.14, 9.16.2.3, 9.16.2.7, 9.16.3, 9.16.3.14, 9.16.3.15, 9.16.3.19, 9.16.3.23, 9.16.3.3, 9.16.4, 9.16.4.14, 9.16.4.18, 9.16.4.19, 9.16.4.27, 9.16.4.28, 9.16.4.38, 9.16.4.39, 9.16.4.9 |
Defect ID | Headline |
CSCwh04730 | ASA/FTD HA checkheaps crash where memory buffers are corrupted |
CSCvy81493 | traceback and reload with 'CHECKHEAPS HAS DETECTED A MEMORY CORRUPTION' |
Some versions of Cisco Adaptive Security Appliance (ASA) Software might cause the Lina process to generate a traceback, which causes it to reload.
The checkheaps process in Cisco ASA Software might detect a memory corruption condition that forces the Lina process to generate a traceback and causes it to reload.
The following example shows the output of a console log file that indicates memory corruption due to the checkheaps process causing the Lina process to generate a traceback that causes it to reload:
Console logs
===========
2023-07-21 13:22:10 ============= CHECKHEAPS HAS DETECTED A MEMORY CORRUPTION ===============
2023-07-21 13:22:10
2023-07-21 13:22:10 Reason: Allocated buffer corrupted
2023-07-21 13:22:10 Previous address not in the heap: 0x000000555db74fc0
2023-07-21 13:22:10 Corruption address not in the heap: 0x000000555db75020
2023-07-21 13:22:10
2023-07-21 13:22:10 ==========================================================================
Solution
To fix the issue that is described in this field notice, upgrade to a fixed software release, as shown in the following table.
Cisco ASA Software Release | First Fixed Release |
---|---|
9.16.1 - 9.16.4.39 | 9.16.4.42 |
Download the latest release of Cisco ASA Software from the Cisco Software Download Center.
Cisco offers a guided upgrade experience through the Secure Firewall Upgrade program. This program will provide environment-specific software upgrade guidance, a customized procedure to follow, and a customized pre-upgrade checklist. For additional information and to register for the upgrade program, see Get access to Cisco Secure Firewall LevelUp.
Version | Description | Section | Date |
1.0 | Initial Release | — | 2024-JUN-07 |
For further assistance or for more information about this field notice, contact the Cisco Technical Assistance Center (TAC) using one of the following methods:
To receive email updates about Field Notices (reliability and safety issues), Security Advisories (network security issues), and end-of-life announcements for specific Cisco products, set up a profile in My Notifications.