Unrated severityNVD Advisory· Published Oct 9, 2019· Updated Sep 16, 2024
Junos OS: Kernel crash (vmcore) upon receipt of a specific link-local IPv6 packet on devices configured with Multi-Chassis Link Aggregation Group (MC-LAG)
CVE-2019-0067
Description
Receipt of a specific link-local IPv6 packet destined to the RE may cause the system to crash and restart (vmcore). By continuously sending a specially crafted IPv6 packet, an attacker can repeatedly crash the system causing a prolonged Denial of Service (DoS). This issue affects Juniper Networks Junos OS: 16.1 versions prior to 16.1R6-S2, 16.1R7; 16.2 versions prior to 16.2R2-S10; 17.1 versions prior to 17.1R3. This issue does not affect Juniper Networks Junos OS version 15.1 and prior versions.
Affected products
2>=16.1 <16.1R6-S2 || >=16.1R7 <16.2R2-S10 || >=17.1 <17.1R3+ 1 more
- (no CPE)range: >=16.1 <16.1R6-S2 || >=16.1R7 <16.2R2-S10 || >=17.1 <17.1R3
- (no CPE)range: 16.1
Patches
Vulnerability mechanics
References
1- kb.juniper.net/JSA10966mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.