CVE-2019-0012: Junos OS: rpd crash on VPLS PE upon receipt of specific BGP message
First published: Tue Jan 15 2019(Updated: )
A Denial of Service (DoS) vulnerability in BGP in Juniper Networks Junos OS configured as a VPLS PE allows an attacker to craft a specific BGP message to cause the routing protocol daemon (rpd) process to crash and restart. While rpd restarts after a crash, repeated crashes can result in an extended DoS condition. This issue only affects PE routers configured with BGP Auto discovery for LDP VPLS. Other BGP configurations are unaffected by this vulnerability. Affected releases are Juniper Networks Junos OS: 12.1X46 versions prior to 12.1X46-D81; 12.3 versions prior to 12.3R12-S12; 12.3X48 versions prior to 12.3X48-D76; 14.1X53 versions prior to 14.1X53-D48; 15.1 versions prior to 15.1F6-S12, 15.1R7-S2; 15.1X49 versions prior to 15.1X49-D150; 15.1X53 versions prior to 15.1X53-D235, 15.1X53-D495, 15.1X53-D590, 15.1X53-D68; 16.1 versions prior to 16.1R3-S10, 16.1R4-S12, 16.1R6-S6, 16.1R7-S1; 16.2 versions prior to 16.2R2-S7; 17.1 versions prior to 17.1R2-S9, 17.1R3; 17.2 versions prior to 17.2R1-S7, 17.2R2-S6, 17.2R3; 17.3 versions prior to 17.3R2-S4, 17.3R3; 17.4 versions prior to 17.4R1-S5, 17.4R2; 18.1 versions prior to 18.1R2-S3, 18.1R3.
Credit: sirt@juniper.net
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Juniper Junos | =12.1x46 | |
| Juniper Junos | =12.1x46-d10 | |
| Juniper Junos | =12.1x46-d15 | |
| Juniper Junos | =12.1x46-d20 | |
| Juniper Junos | =12.1x46-d25 | |
| Juniper Junos | =12.1x46-d30 | |
| Juniper Junos | =12.1x46-d35 | |
| Juniper Junos | =12.1x46-d40 | |
| Juniper Junos | =12.1x46-d45 | |
| Juniper Junos | =12.1x46-d50 | |
| Juniper Junos | =12.1x46-d55 | |
| Juniper Junos | =12.1x46-d60 | |
| Juniper Junos | =12.1x46-d65 | |
| Juniper Junos | =12.1x46-d66 | |
| Juniper Junos | =12.1x46-d67 | |
| Juniper Junos | =12.1x46-d71 | |
| Juniper Junos | =12.1x46-d72 | |
| Juniper Junos | =12.1x46-d76 | |
| Juniper Junos | =12.1x46-d77 | |
| Juniper Junos | =12.3 | |
| Juniper Junos | =12.3-r1 | |
| Juniper Junos | =12.3-r11 | |
| Juniper Junos | =12.3-r12 | |
| Juniper Junos | =12.3-r2 | |
| Juniper Junos | =12.3-r3 | |
| Juniper Junos | =12.3-r4 | |
| Juniper Junos | =12.3-r5 | |
| Juniper Junos | =12.3-r6 | |
| Juniper Junos | =12.3-r7 | |
| Juniper Junos | =12.3-r8 | |
| Juniper Junos | =12.3-r9 | |
| Juniper Junos | =12.3x48-d10 | |
| Juniper Junos | =12.3x48-d15 | |
| Juniper Junos | =12.3x48-d20 | |
| Juniper Junos | =12.3x48-d25 | |
| Juniper Junos | =12.3x48-d30 | |
| Juniper Junos | =12.3x48-d35 | |
| Juniper Junos | =12.3x48-d40 | |
| Juniper Junos | =12.3x48-d45 | |
| Juniper Junos | =12.3x48-d50 | |
| Juniper Junos | =12.3x48-d55 | |
| Juniper Junos | =12.3x48-d60 | |
| Juniper Junos | =12.3x48-d65 | |
| Juniper Junos | =12.3x48-d70 | |
| Juniper Junos | =12.3x48-d75 | |
| Juniper Junos | =14.1x53 | |
| Juniper Junos | =14.1x53-d10 | |
| Juniper Junos | =14.1x53-d121 | |
| Juniper Junos | =14.1x53-d15 | |
| Juniper Junos | =14.1x53-d16 | |
| Juniper Junos | =14.1x53-d25 | |
| Juniper Junos | =14.1x53-d26 | |
| Juniper Junos | =14.1x53-d27 | |
| Juniper Junos | =14.1x53-d30 | |
| Juniper Junos | =14.1x53-d35 | |
| Juniper Junos | =14.1x53-d40 | |
| Juniper Junos | =14.1x53-d45 | |
| Juniper Junos | =14.1x53-d46 | |
| Juniper Junos | =14.1x53-d47 | |
| Juniper Junos | =15.1 | |
| Juniper Junos | =15.1-f1 | |
| Juniper Junos | =15.1-f2 | |
| Juniper Junos | =15.1-f2-s1 | |
| Juniper Junos | =15.1-f2-s2 | |
| Juniper Junos | =15.1-f2-s3 | |
| Juniper Junos | =15.1-f2-s4 | |
| Juniper Junos | =15.1-f3 | |
| Juniper Junos | =15.1-f4 | |
| Juniper Junos | =15.1-f5 | |
| Juniper Junos | =15.1-f6 | |
| Juniper Junos | =15.1x49-d10 | |
| Juniper Junos | =15.1x49-d100 | |
| Juniper Junos | =15.1x49-d110 | |
| Juniper Junos | =15.1x49-d120 | |
| Juniper Junos | =15.1x49-d130 | |
| Juniper Junos | =15.1x49-d140 | |
| Juniper Junos | =15.1x49-d20 | |
| Juniper Junos | =15.1x49-d30 | |
| Juniper Junos | =15.1x49-d35 | |
| Juniper Junos | =15.1x49-d40 | |
| Juniper Junos | =15.1x49-d45 | |
| Juniper Junos | =15.1x49-d50 | |
| Juniper Junos | =15.1x49-d55 | |
| Juniper Junos | =15.1x49-d60 | |
| Juniper Junos | =15.1x49-d65 | |
| Juniper Junos | =15.1x49-d70 | |
| Juniper Junos | =15.1x49-d75 | |
| Juniper Junos | =15.1x49-d80 | |
| Juniper Junos | =15.1x49-d90 | |
| Juniper Junos | =15.1x53-d10 | |
| Juniper Junos | =15.1x53-d20 | |
| Juniper Junos | =15.1x53-d21 | |
| Juniper Junos | =15.1x53-d210 | |
| Juniper Junos | =15.1x53-d230 | |
| Juniper Junos | =15.1x53-d231 | |
| Juniper Junos | =15.1x53-d232 | |
| Juniper Junos | =15.1x53-d233 | |
| Juniper Junos | =15.1x53-d25 | |
| Juniper Junos | =15.1x53-d30 | |
| Juniper Junos | =15.1x53-d32 | |
| Juniper Junos | =15.1x53-d33 | |
| Juniper Junos | =15.1x53-d34 | |
| Juniper Junos | =15.1x53-d40 | |
| Juniper Junos | =15.1x53-d45 | |
| Juniper Junos | =15.1x53-d52 | |
| Juniper Junos | =15.1x53-d55 | |
| Juniper Junos | =15.1x53-d56 | |
| Juniper Junos | =15.1x53-d59 | |
| Juniper Junos | =15.1x53-d590 | |
| Juniper Junos | =15.1x53-d60 | |
| Juniper Junos | =15.1x53-d61 | |
| Juniper Junos | =15.1x53-d62 | |
| Juniper Junos | =15.1x53-d63 | |
| Juniper Junos | =15.1x53-d64 | |
| Juniper Junos | =15.1x53-d65 | |
| Juniper Junos | =15.1x53-d66 | |
| Juniper Junos | =15.1x53-d67 | |
| Juniper Junos | =15.1x53-d68 | |
| Juniper Junos | =15.1x53-d70 | |
| Juniper Junos | =16.1 | |
| Juniper Junos | =16.1-r1 | |
| Juniper Junos | =16.1-r2 | |
| Juniper Junos | =16.1-r3 | |
| Juniper Junos | =16.1-r3-s10 | |
| Juniper Junos | =16.1-r4 | |
| Juniper Junos | =16.1-r6-s1 | |
| Juniper Junos | =16.2 | |
| Juniper Junos | =16.2-r1 | |
| Juniper Junos | =16.2-r2 | |
| Juniper Junos | =16.2-r2-s5 | |
| Juniper Junos | =17.1-r1 | |
| Juniper Junos | =17.1-r2 | |
| Juniper Junos | =17.1-r2-s7 | |
| Juniper Junos | =17.2-r1 | |
| Juniper Junos | =17.2-r1-s7 | |
| Juniper Junos | =17.2-r2 | |
| Juniper Junos | =17.3-r1 | |
| Juniper Junos | =17.3-r2 | |
| Juniper Junos | =17.4 | |
| Juniper Junos | =17.4-r1 | |
| Juniper Junos | =17.4-r2 | |
| Juniper Junos | =17.4-r2-s2 | |
| Juniper Junos | =18.1 | |
| Juniper Junos | =18.1-r1 | |
| Juniper Junos | =18.1-r2 | |
| Juniper Junos | =18.1-r2-s1 | |
| Juniper Junos | =18.1-r2-s2 |
Remedy
The following software releases have been updated to resolve this specific issue: Junos OS 12.1X46-D81, 12.3R12-S12*, 12.3X48-D76, 12.3X48-D80, 15.1F6-S12, 15.1R7-S2, 15.1X49-D150, 15.1X53-D235, 15.1X53-D495, 15.1X53-D590, 15.1X53-D68, 16.1R3-S10, 16.1R4-S12, 16.1R6-S6, 16.1R7-S1, 16.2R2-S7, 17.1R2-S9, 17.1R3, 17.2R1-S7, 17.2R2-S6, 17.2R3, 17.3R2-S4, 17.3R3, 17.4R1-S5, 17.4R2, 18.1R2-S3, 18.1R3, 18.2R1, 18.2X75-D10, and all subsequent releases. *Future release
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2019-0012?
CVE-2019-0012 is classified as a Denial of Service (DoS) vulnerability.
What systems are affected by CVE-2019-0012?
CVE-2019-0012 affects Juniper Networks Junos OS versions 12.1x46 and higher, including specific designations up to 18.1.
What is the impact of CVE-2019-0012?
CVE-2019-0012 can cause the routing protocol daemon (rpd) process to crash and restart, potentially leading to network downtime.
How do I fix CVE-2019-0012?
To fix CVE-2019-0012, apply the recommended patches or upgrades provided by Juniper for affected Junos OS versions.
Is there a workaround for CVE-2019-0012?
There are no known workarounds for CVE-2019-0012; applying the appropriate updates is required to mitigate the risk.
- agent/references
- agent/type
- agent/softwarecombine
- agent/remedy
- agent/severity
- agent/title
- agent/author
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/juniper
- canonical/juniper junos
- version/juniper junos/12.1x46
- version/juniper junos/12.1x46-d10
- version/juniper junos/12.1x46-d15
- version/juniper junos/12.1x46-d20
- version/juniper junos/12.1x46-d25
- version/juniper junos/12.1x46-d30
- version/juniper junos/12.1x46-d35
- version/juniper junos/12.1x46-d40
- version/juniper junos/12.1x46-d45
- version/juniper junos/12.1x46-d50
- version/juniper junos/12.1x46-d55
- version/juniper junos/12.1x46-d60
- version/juniper junos/12.1x46-d65
- version/juniper junos/12.1x46-d66
- version/juniper junos/12.1x46-d67
- version/juniper junos/12.1x46-d71
- version/juniper junos/12.1x46-d72
- version/juniper junos/12.1x46-d76
- version/juniper junos/12.1x46-d77
- version/juniper junos/12.3
- version/juniper junos/12.3-r1
- version/juniper junos/12.3-r11
- version/juniper junos/12.3-r12
- version/juniper junos/12.3-r2
- version/juniper junos/12.3-r3
- version/juniper junos/12.3-r4
- version/juniper junos/12.3-r5
- version/juniper junos/12.3-r6
- version/juniper junos/12.3-r7
- version/juniper junos/12.3-r8
- version/juniper junos/12.3-r9
- version/juniper junos/12.3x48-d10
- version/juniper junos/12.3x48-d15
- version/juniper junos/12.3x48-d20
- version/juniper junos/12.3x48-d25
- version/juniper junos/12.3x48-d30
- version/juniper junos/12.3x48-d35
- version/juniper junos/12.3x48-d40
- version/juniper junos/12.3x48-d45
- version/juniper junos/12.3x48-d50
- version/juniper junos/12.3x48-d55
- version/juniper junos/12.3x48-d60
- version/juniper junos/12.3x48-d65
- version/juniper junos/12.3x48-d70
- version/juniper junos/12.3x48-d75
- version/juniper junos/14.1x53
- version/juniper junos/14.1x53-d10
- version/juniper junos/14.1x53-d121
- version/juniper junos/14.1x53-d15
- version/juniper junos/14.1x53-d16
- version/juniper junos/14.1x53-d25
- version/juniper junos/14.1x53-d26
- version/juniper junos/14.1x53-d27
- version/juniper junos/14.1x53-d30
- version/juniper junos/14.1x53-d35
- version/juniper junos/14.1x53-d40
- version/juniper junos/14.1x53-d45
- version/juniper junos/14.1x53-d46
- version/juniper junos/14.1x53-d47
- version/juniper junos/15.1
- version/juniper junos/15.1-f1
- version/juniper junos/15.1-f2
- version/juniper junos/15.1-f2-s1
- version/juniper junos/15.1-f2-s2
- version/juniper junos/15.1-f2-s3
- version/juniper junos/15.1-f2-s4
- version/juniper junos/15.1-f3
- version/juniper junos/15.1-f4
- version/juniper junos/15.1-f5
- version/juniper junos/15.1-f6
- version/juniper junos/15.1x49-d10
- version/juniper junos/15.1x49-d100
- version/juniper junos/15.1x49-d110
- version/juniper junos/15.1x49-d120
- version/juniper junos/15.1x49-d130
- version/juniper junos/15.1x49-d140
- version/juniper junos/15.1x49-d20
- version/juniper junos/15.1x49-d30
- version/juniper junos/15.1x49-d35
- version/juniper junos/15.1x49-d40
- version/juniper junos/15.1x49-d45
- version/juniper junos/15.1x49-d50
- version/juniper junos/15.1x49-d55
- version/juniper junos/15.1x49-d60
- version/juniper junos/15.1x49-d65
- version/juniper junos/15.1x49-d70
- version/juniper junos/15.1x49-d75
- version/juniper junos/15.1x49-d80
- version/juniper junos/15.1x49-d90
- version/juniper junos/15.1x53-d10
- version/juniper junos/15.1x53-d20
- version/juniper junos/15.1x53-d21
- version/juniper junos/15.1x53-d210
- version/juniper junos/15.1x53-d230
- version/juniper junos/15.1x53-d231
- version/juniper junos/15.1x53-d232
- version/juniper junos/15.1x53-d233
- version/juniper junos/15.1x53-d25
- version/juniper junos/15.1x53-d30
- version/juniper junos/15.1x53-d32
- version/juniper junos/15.1x53-d33
- version/juniper junos/15.1x53-d34
- version/juniper junos/15.1x53-d40
- version/juniper junos/15.1x53-d45
- version/juniper junos/15.1x53-d52
- version/juniper junos/15.1x53-d55
- version/juniper junos/15.1x53-d56
- version/juniper junos/15.1x53-d59
- version/juniper junos/15.1x53-d590
- version/juniper junos/15.1x53-d60
- version/juniper junos/15.1x53-d61
- version/juniper junos/15.1x53-d62
- version/juniper junos/15.1x53-d63
- version/juniper junos/15.1x53-d64
- version/juniper junos/15.1x53-d65
- version/juniper junos/15.1x53-d66
- version/juniper junos/15.1x53-d67
- version/juniper junos/15.1x53-d68
- version/juniper junos/15.1x53-d70
- version/juniper junos/16.1
- version/juniper junos/16.1-r1
- version/juniper junos/16.1-r2
- version/juniper junos/16.1-r3
- version/juniper junos/16.1-r3-s10
- version/juniper junos/16.1-r4
- version/juniper junos/16.1-r6-s1
- version/juniper junos/16.2
- version/juniper junos/16.2-r1
- version/juniper junos/16.2-r2
- version/juniper junos/16.2-r2-s5
- version/juniper junos/17.1-r1
- version/juniper junos/17.1-r2
- version/juniper junos/17.1-r2-s7
- version/juniper junos/17.2-r1
- version/juniper junos/17.2-r1-s7
- version/juniper junos/17.2-r2
- version/juniper junos/17.3-r1
- version/juniper junos/17.3-r2
- version/juniper junos/17.4
- version/juniper junos/17.4-r1
- version/juniper junos/17.4-r2
- version/juniper junos/17.4-r2-s2
- version/juniper junos/18.1
- version/juniper junos/18.1-r1
- version/juniper junos/18.1-r2
- version/juniper junos/18.1-r2-s1
- version/juniper junos/18.1-r2-s2