First published: Wed Apr 11 2018(Updated: )
Junos OS may be impacted by the receipt of a malformed BGP UPDATE which can lead to a routing process daemon (rpd) crash and restart. Receipt of a repeated malformed BGP UPDATEs can result in an extended denial of service condition for the device. This malformed BGP UPDATE does not propagate to other BGP peers. Affected releases are Juniper Networks Junos OS: 14.1X53 versions prior to 14.1X53-D47; 15.1 versions prior to 15.1F6-S10, 15.1R4-S9, 15.1R6-S6, 15.1R7; 15.1X49 versions prior to 15.1X49-D130 on SRX; 15.1X53 versions prior to 15.1X53-D66 on QFX10K; 15.1X53 versions prior to 15.1X53-D58 on EX2300/EX3400; 15.1X53 versions prior to 15.1X53-D233 on QFX5200/QFX5110; 15.1X53 versions prior to 15.1X53-D471 on NFX; 16.1 versions prior to 16.1R3-S8, 16.1R4-S9, 16.1R5-S3, 16.1R6-S3, 16.1R7; 16.1X65 versions prior to 16.1X65-D47; 16.2 versions prior to 16.2R1-S6, 16.2R2-S5, 16.2R3; 17.1 versions prior to 17.1R2-S3, 17.1R3; 17.2 versions prior to 17.2R1-S3, 17.2R2-S1, 17.2R3; 17.2X75 versions prior to 17.2X75-D70; 13.2 versions above and including 13.2R1. Versions prior to 13.2R1 are not affected. Juniper SIRT is not aware of any malicious exploitation of this vulnerability. No other Juniper Networks products or platforms are affected by this issue.
Credit: sirt@juniper.net
Affected Software | Affected Version | How to fix |
---|---|---|
Juniper JUNOS | =15.1x49 | |
Juniper JUNOS | =15.1x49-d10 | |
Juniper JUNOS | =15.1x49-d100 | |
Juniper JUNOS | =15.1x49-d110 | |
Juniper JUNOS | =15.1x49-d120 | |
Juniper JUNOS | =15.1x49-d20 | |
Juniper JUNOS | =15.1x49-d30 | |
Juniper JUNOS | =15.1x49-d35 | |
Juniper JUNOS | =15.1x49-d40 | |
Juniper JUNOS | =15.1x49-d45 | |
Juniper JUNOS | =15.1x49-d50 | |
Juniper JUNOS | =15.1x49-d55 | |
Juniper JUNOS | =15.1x49-d60 | |
Juniper JUNOS | =15.1x49-d65 | |
Juniper JUNOS | =15.1x49-d70 | |
Juniper JUNOS | =15.1x49-d75 | |
Juniper JUNOS | =15.1x49-d80 | |
Juniper JUNOS | =15.1x49-d90 | |
Juniper Srx100 | ||
Juniper Srx110 | ||
Juniper Srx1400 | ||
Juniper Srx1500 | ||
Juniper Srx210 | ||
Juniper Srx220 | ||
Juniper Srx240 | ||
Juniper Srx300 | ||
Juniper Srx320 | ||
Juniper Srx340 | ||
Juniper Srx3400 | ||
Juniper Srx345 | ||
Juniper Srx3600 | ||
Juniper Srx4100 | ||
Juniper Srx4200 | ||
Juniper Srx4600 | ||
Juniper Srx5400 | ||
Juniper Srx550 | ||
Juniper Srx5600 | ||
Juniper Srx5800 | ||
Juniper Srx650 | ||
Juniper JUNOS | =14.1x53 | |
Juniper JUNOS | =14.1x53-d15 | |
Juniper JUNOS | =14.1x53-d16 | |
Juniper JUNOS | =14.1x53-d25 | |
Juniper JUNOS | =14.1x53-d26 | |
Juniper JUNOS | =14.1x53-d27 | |
Juniper JUNOS | =14.1x53-d30 | |
Juniper JUNOS | =14.1x53-d35 | |
Juniper JUNOS | =14.1x53-d40 | |
Juniper JUNOS | =14.1x53-d42 | |
Juniper JUNOS | =14.1x53-d43 | |
Juniper JUNOS | =14.1x53-d44 | |
Juniper JUNOS | =14.1x53-d45 | |
Juniper JUNOS | =14.1x53-d46 | |
Juniper JUNOS | =15.1x53 | |
Juniper JUNOS | =15.1x53-d10 | |
Juniper JUNOS | =15.1x53-d20 | |
Juniper JUNOS | =15.1x53-d21 | |
Juniper JUNOS | =15.1x53-d30 | |
Juniper JUNOS | =15.1x53-d32 | |
Juniper JUNOS | =15.1x53-d33 | |
Juniper JUNOS | =15.1x53-d34 | |
Juniper JUNOS | =15.1x53-d50 | |
Juniper JUNOS | =15.1x53-d51 | |
Juniper JUNOS | =15.1x53-d52 | |
Juniper JUNOS | =15.1x53-d55 | |
Juniper JUNOS | =15.1x53-d57 | |
Juniper Ex2300 | ||
Juniper Ex3400 | ||
Juniper JUNOS | =16.1-r1 | |
Juniper JUNOS | =16.1-r2 | |
Juniper JUNOS | =16.1-r3 | |
Juniper JUNOS | =16.1-r4 | |
Juniper JUNOS | =16.1-r5 | |
Juniper JUNOS | =16.1-r6 | |
Juniper JUNOS | =16.2-r1 | |
Juniper JUNOS | =16.2-r2 | |
Juniper JUNOS | =16.2-r3 | |
Juniper JUNOS | =17.1-r1 | |
Juniper JUNOS | =17.1-r2 | |
Juniper JUNOS | =17.1-r3 | |
Juniper JUNOS | =15.1 | |
Juniper JUNOS | =15.1-r1 | |
Juniper JUNOS | =15.1-r2 | |
Juniper JUNOS | =15.1-r3 | |
Juniper JUNOS | =15.1-r4 | |
Juniper JUNOS | =15.1-r6 | |
Juniper JUNOS | =15.1-f1 | |
Juniper JUNOS | =15.1-f2 | |
Juniper JUNOS | =15.1-f3 | |
Juniper JUNOS | =15.1-f4 | |
Juniper JUNOS | =15.1-f6 | |
Juniper JUNOS | =15.1x53-d210 | |
Juniper JUNOS | =15.1x53-d230 | |
Juniper JUNOS | =15.1x53-d231 | |
Juniper JUNOS | =15.1x53-d232 | |
Juniper JUNOS | =15.1x53-d58 | |
Juniper JUNOS | =15.1x53-d60 | |
Juniper JUNOS | =15.1x53-d61 | |
Juniper JUNOS | =15.1x53-d62 | |
Juniper JUNOS | =15.1x53-d63 | |
Juniper JUNOS | =15.1x53-d64 | |
Juniper JUNOS | =15.1x53-d65 | |
Juniper JUNOS | =15.1x53-d66 | |
Juniper Qfx5110 | ||
Juniper Qfx5200 | ||
Juniper JUNOS | =15.1x53-d233 | |
Juniper JUNOS | =15.1x53-d470 | |
Juniper Nfx150 | ||
Juniper Nfx250 | ||
Juniper JUNOS | =17.2-r1 | |
Juniper JUNOS | =17.2-r2 | |
Juniper JUNOS | =17.2-r3 | |
Juniper JUNOS | =16.1x65-d30 | |
Juniper JUNOS | =16.1x65-d35 | |
Juniper JUNOS | =16.1x65-d40 | |
Juniper Qfx10k | ||
Juniper JUNOS | =17.2x75 |
The following software releases have been updated to resolve this specific issue: 14.1X53-D47, 15.1F6-S10, 15.1R4-S9, 15.1R6-S6, 15.1R7, 15.1X49-D130, 15.1X53-D233, 15.1X53-D471, 15.1X53-D58, 15.1X53-D66, 16.1R3-S8, 16.1R4-S9, 16.1R5-S3, 16.1R6-S3, 16.1R7, 16.1X65-D47, 16.2R1-S6, 16.2R2-S5, 16.2R3, 17.1R2-S3, 17.1R3, 17.2R1-S3, 17.2R2-S1, 17.2R3, 17.2X75-D70, 17.3R1 and all subsequent releases.
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.