Symptoms:

A VMware SD-WAN Edge may experience Dataplane Service failures while running software 5.2.2.0.
 

VMware SD-WAN by VeloCloud
VMware SD-WAN

In an upgrade scenario, the Orchestrator configurations designed for the 5.2.2.0 version are transmitted to the Edge, where they are parsed and applied. As part of the configuration management process, the Edge parses Cloud Gateway configurations and modifies the default "v" routes (IPv4 and IPv6) by either adding or removing them. During this process, there is a potential for a use-after-free vulnerability in route objects, which can lead to the corruption of the route object's memory pool. If this corrupted memory pool is accessed later, it can result in the failure of the Edge service.

This issue is caused by defect id: 136681.

This issue is resolved in SD-WAN Edge releases:
5.2.2.1 (R5221-20240206-GA) and above.
5.2.3.0 (R5230-20240313-GA) and above.

For information on how to upgrade please check the following article: VMware SD-WAN Software Upgrade FAQs

To be alerted when this article is updated, click Subscribe to Article in the Actions box.