Palo Alto Networks Knowledgebase: Threat Database Handler (Commit Error)

Threat Database Handler (Commit Error)

10037
Created On 02/07/19 23:53 PM - Last Updated 02/07/19 23:53 PM
Resolution

Issue/Symptoms

Commit to a Palo Alto Networks device fails with the following error:

 

Threat database handler failed
Commit failed
Failed to commit policy to device 

 

Cause

In certain cases, the AV update process or content update process might be terminated abruptly without any indication as to why. This isssue is seen more often in the PA-200, but other platforms like the PA-3000 also exhibit the issue. The corrupt AV signature database or content database will cause these commit failures.

 

Workaround

A manual Anti-Virus install from the CLI will serve as a workaround for this issue.  Download the Anti-Virus file manually from https://support.paloaltonetworks.com  > Dynamic Updates and upload the same to the Palo Alto Networks firewall. After the upload, use the following command to do the manaul AV install from the CLI.

 

> request anti-virus upgrade install file
panup-all-antivirus-2276-2715.candidate.tgz 2016/02/23 15:21:13 97473.4K
panup-all-antivirus-2283-2722.candidate.tgz 2016/03/01 15:27:58 102607.3K
<value>

 

If this workaround does not work, then either upgrade the PAN-OS version to ones listed below, or contact Palo Alto Networks TAC for support.

 

Resolution

There is a known issue that is resolves this issue in PAN-OS versions 7.1.2, 7.0.8 and 6.1.13.

 

Troubleshooting

To verify this error, look into the device server logs, which will indicate the following error messages related to the AV cache error:

 

2016-02-24 01:39:29.493 -0500 [TDB] Load virus cache now
2016-02-24 01:39:29.493 -0500 load virus cache /opt/pancfg/mgmt/updates/curav/
2016-02-24 01:39:29.493 -0500 Virus - Content Engine version: 0x7000000 version 6e308c2,
min_threat_version 92007b , path /opt/pancfg/mgmt/updates/curav/
2016-02-24 01:39:29.814 -0500 Error: pan_tdb_do_load_virus_serialize(pan_tdb_ser.c:735): Virus
version mismatch 0x6df08be vs 0x6e308c2
2016-02-24 01:39:29.862 -0500 Error: pan_tdb_do_load_virus_cache(pan_tdb_handler.c:365): [TDB]
Load /opt/pancfg/mgmt/updates/curav//cache/virus.cache.ser-8 error, will load again
2016-02-24 01:39:29.862 -0500 [TDB] Loaded path /opt/pancfg/mgmt/updates/curav/ cache loaded 0
skip 0
2016-02-24 01:40:10.202 -0500 Error: pan_tcomp_sqlite3_compile(pan_tcomp_sqlite3.c:295): SQL
error: database disk image is malformed

 



Attachments
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClRSCA0&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Attachments
Choose Language