VYPR
Unrated severityNVD Advisory· Published Jan 15, 2019· Updated Sep 17, 2024

Junos OS: A flowspec BGP update with a specific term-order causes routing protocol daemon (rpd) process to crash with a core.

CVE-2019-0003

Description

When a specific BGP flowspec configuration is enabled and upon receipt of a specific matching BGP packet meeting a specific term in the flowspec configuration, a reachable assertion failure occurs, causing the routing protocol daemon (rpd) process to crash with a core file being generated. Affected releases are Juniper Networks Junos OS: 12.1X46 versions prior to 12.1X46-D77 on SRX Series; 12.3 versions prior to 12.3R12-S10; 12.3X48 versions prior to 12.3X48-D70 on SRX Series; 14.1X53 versions prior to 14.1X53-D47 on EX2200/VC, EX3200, EX3300/VC, EX4200, EX4300, EX4550/VC, EX4600, EX6200, EX8200/VC (XRE), QFX3500, QFX3600, QFX5100; 15.1 versions prior to 15.1R3; 15.1F versions prior to 15.1F3; 15.1X49 versions prior to 15.1X49-D140 on SRX Series; 15.1X53 versions prior to 15.1X53-D59 on EX2300/EX3400.

Affected products

2
  • Juniper Networks/Junosllm-fuzzy2 versions
    12.1X46 < 12.1X46-D77, 12.3 < 12.3R12-S10, 12.3X48 < 12.3X48-D70, 14.1X53 < 14.1X53-D47, 15.1 < 15.1R3, 15.1F < 15.1F3, 15.1X49 < 15.1X49-D140, 15.1X53 < 15.1X53-D59+ 1 more
    • (no CPE)range: 12.1X46 < 12.1X46-D77, 12.3 < 12.3R12-S10, 12.3X48 < 12.3X48-D70, 14.1X53 < 14.1X53-D47, 15.1 < 15.1R3, 15.1F < 15.1F3, 15.1X49 < 15.1X49-D140, 15.1X53 < 15.1X53-D59
    • (no CPE)range: 15.1X53

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.