Field Notice: FN74062 - Cisco Firepower Management Center Software: MariaDB Database Might Become Unresponsive And Prevent User Login Access - Software Upgrade Recommended

Available Languages

Updated:December 6, 2023
Document ID:FN74062

Bias-Free Language

The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.

Notice

THIS FIELD NOTICE IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTY OF MERCHANTABILITY. YOUR USE OF THE INFORMATION ON THE FIELD NOTICE OR MATERIALS LINKED FROM THE FIELD NOTICE IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS FIELD NOTICE AT ANY TIME.

Products Affected


Affected Software Product Affected Release Affected Release Number Comments
Firepower Management Center Software 7 7.0.5, 7.0.5.1, 7.2.0, 7.2.0.1, 7.2.1, 7.2.2, 7.2.3, 7.2.3.1  

Defect Information


Defect IDHeadline
CSCwe22216Maria DB crashing/holding high CPU and not allowing users to login GUI and CLI

Problem Description


For affected releases of Cisco Firepower Management Center (FMC) Software, the FMC MariaDB database might consume excessive CPU cycles and memory resources. This condition can prevent user login access to the FMC from both the GUI or CLI.


Background


Cisco FMC collects the outputs of the top command once every minute in the /var/log/top.log.* files. These logs indicate the resource utilization of different processes on the FMC. If the mariadbd process starts consuming memory beyond the allocated limit, there will be a gradual increase in the %CPU field of the mariadbd process. This might result in all available CPU cores being used by the mariadbd process and result in the FMC becoming unresponsive.


Problem Symptom


Users are unable to log in to Cisco FMC from the GUI and CLI interfaces.. High CPU consumption by the MariaDB database is indicated in the /var/log/top.log.* files, which is highlighted in the following example:

PID USER      PR  NI    VIRT    RES    SHR S  %CPU  %MEM     TIME+ COMMAND
20069 mysql     20   0 5347552   2.7g      0 R 728.6   8.7   4357:53 /usr/sbin/mariadbd --defaults-file=/etc/my.cnf --user=mysql --basedir=/usr --pid-file=/var/run/mysql/mysqld.pid --skip-external-locking

Corruption of some MariaDB database event tables might also be observed.


Workaround/Solution


Cisco  recommends upgrading to one of the Cisco FMC Software releases shown in the following table:

Cisco FMC Software Release First Fixed Release
7.0.5 7.0.6
7.2 7.2.4

 


For More Information


Cisco offers a guided upgrade experience through the Secure Firewall Upgrade program. This program will provide environment-specific software upgrade guidance, a customized procedure to follow, and a customized pre-upgrade checklist. For additional information and to register for the upgrade program, see Get access to Cisco Secure Firewall LevelUp.


Revision History


VersionDescriptionSectionDate
1.0Initial Release2023-DEC-06

For More Information

For further assistance or for more information about this field notice, contact the Cisco Technical Assistance Center (TAC) using one of the following methods:

Receive Email Notification About New Field Notices

To receive email updates about Field Notices (reliability and safety issues), Security Advisories (network security issues), and end-of-life announcements for specific Cisco products, set up a profile in My Notifications

Was this Document Helpful?

FeedbackFeedback

Contact Cisco

This Document Applies to These Products