CVE-2021-0299: Junos OS: Kernel crash (vmcore) upon receipt of a malformed IPv6 packet

First published: Wed Oct 13 2021(Updated: )

An Improper Handling of Exceptional Conditions vulnerability in the processing of a transit or directly received malformed IPv6 packet in Juniper Networks Junos OS results in a kernel crash, causing the device to restart, leading to a Denial of Service (DoS). Continued receipt and processing of this packet will create a sustained Denial of Service (DoS) condition. This issue only affects systems with IPv6 configured. Devices with only IPv4 configured are not vulnerable to this issue. This issue affects Juniper Networks Junos OS: 19.4 versions prior to 19.4R3; 20.1 versions prior to 20.1R2; 20.2 versions prior to 20.2R1-S1, 20.2R2. This issue does not affect Juniper Networks Junos OS versions prior to 19.4R1.

Credit: sirt@juniper.net

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• collector/nvd-index
• agent/type
• agent/softwarecombine
• collector/mitre-cve
• source/MITRE
• agent/remedy
• agent/author
• agent/severity
• agent/weakness
• agent/last-modified-date
• agent/title
• agent/references
• agent/tags
• agent/description
• agent/first-publish-date
• agent/event
• vendor/juniper
• canonical/juniper junos
• version/juniper junos/19.4
• version/juniper junos/19.4-r1
• version/juniper junos/19.4-r1-s1
• version/juniper junos/19.4-r1-s2
• version/juniper junos/19.4-r1-s3
• version/juniper junos/19.4-r1-s4
• version/juniper junos/19.4-r2
• version/juniper junos/19.4-r2-s1
• version/juniper junos/19.4-r2-s2
• version/juniper junos/19.4-r2-s3
• version/juniper junos/19.4-r2-s4
• version/juniper junos/19.4-r2-s5
• version/juniper junos/20.1-r1
• version/juniper junos/20.1-r1-s1
• version/juniper junos/20.1-r1-s2
• version/juniper junos/20.1-r1-s3
• version/juniper junos/20.1-r1-s4
• version/juniper junos/20.2-r1