CVE-2021-31367: Junos OS: PTX Series: An FPC heap memory leak will be triggered by certain Flowspec route operations which can lead to an FPC crash

First published: Wed Oct 13 2021(Updated: )

A Missing Release of Memory after Effective Lifetime vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on PTX Series allows an adjacent attacker to cause a Denial of Service (DoS) by sending genuine BGP flowspec packets which cause an FPC heap memory leak. Once having run out of memory the FPC will crash and restart along with a core dump. Continued receipted of these packets will create a sustained Denial of Service (DoS) condition. This issue affects: Juniper Networks Junos OS All versions prior to 18.4R3-S9; 19.1 versions prior to 19.1R3-S7; 19.2 versions prior to 19.2R1-S7, 19.2R3-S3; 19.3 versions prior to 19.3R2-S6, 19.3R3-S3; 19.4 versions prior to 19.4R1-S4, 19.4R3-S6; 20.1 versions prior to 20.1R2-S2, 20.1R3; 20.2 versions prior to 20.2R3-S1; 20.3 versions prior to 20.3R3; 20.4 versions prior to 20.4R3; 21.1 versions prior to 21.1R2. Juniper Networks Junos Evolved is not affected.

Credit: sirt@juniper.net

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• collector/nvd-index
• agent/type
• agent/softwarecombine
• collector/mitre-cve
• source/MITRE
• agent/last-modified-date
• agent/author
• agent/weakness
• agent/references
• agent/title
• agent/severity
• agent/remedy
• agent/tags
• agent/description
• agent/first-publish-date
• agent/event
• vendor/juniper
• canonical/juniper junos
• version/juniper junos/18.4
• version/juniper junos/18.4-r1
• version/juniper junos/18.4-r1-s1
• version/juniper junos/18.4-r1-s2
• version/juniper junos/18.4-r1-s3
• version/juniper junos/18.4-r1-s4
• version/juniper junos/18.4-r1-s5
• version/juniper junos/18.4-r1-s6
• version/juniper junos/18.4-r1-s7
• version/juniper junos/18.4-r2
• version/juniper junos/18.4-r2-s1
• version/juniper junos/18.4-r2-s2
• version/juniper junos/18.4-r2-s3
• version/juniper junos/18.4-r2-s4
• version/juniper junos/18.4-r2-s5
• version/juniper junos/18.4-r2-s6
• version/juniper junos/18.4-r2-s7
• version/juniper junos/18.4-r2-s8
• version/juniper junos/18.4-r3
• version/juniper junos/18.4-r3-s1
• version/juniper junos/18.4-r3-s2
• version/juniper junos/18.4-r3-s3
• version/juniper junos/18.4-r3-s4
• version/juniper junos/18.4-r3-s5
• version/juniper junos/18.4-r3-s6
• version/juniper junos/18.4-r3-s7
• version/juniper junos/18.4-r3-s8
• version/juniper junos/19.1
• version/juniper junos/19.1-r1
• version/juniper junos/19.1-r1-s1
• version/juniper junos/19.1-r1-s2
• version/juniper junos/19.1-r1-s3
• version/juniper junos/19.1-r1-s4
• version/juniper junos/19.1-r1-s5
• version/juniper junos/19.1-r1-s6
• version/juniper junos/19.1-r2
• version/juniper junos/19.1-r2-s1
• version/juniper junos/19.1-r2-s2
• version/juniper junos/19.1-r3
• version/juniper junos/19.1-r3-s1
• version/juniper junos/19.1-r3-s2
• version/juniper junos/19.1-r3-s3
• version/juniper junos/19.1-r3-s4
• version/juniper junos/19.1-r3-s5
• version/juniper junos/19.1-r3-s6
• version/juniper junos/19.2
• version/juniper junos/19.2-r1
• version/juniper junos/19.2-r1-s1
• version/juniper junos/19.2-r1-s2
• version/juniper junos/19.2-r1-s3
• version/juniper junos/19.2-r1-s4
• version/juniper junos/19.2-r1-s5
• version/juniper junos/19.2-r1-s6
• version/juniper junos/19.2-r2
• version/juniper junos/19.2-r2-s1
• version/juniper junos/19.2-r3
• version/juniper junos/19.2-r3-s1
• version/juniper junos/19.2-r3-s2
• version/juniper junos/19.3
• version/juniper junos/19.3-r1
• version/juniper junos/19.3-r1-s1
• version/juniper junos/19.3-r2
• version/juniper junos/19.3-r2-s1
• version/juniper junos/19.3-r2-s2
• version/juniper junos/19.3-r2-s3
• version/juniper junos/19.3-r2-s4
• version/juniper junos/19.3-r2-s5
• version/juniper junos/19.3-r3
• version/juniper junos/19.3-r3-s1
• version/juniper junos/19.3-r3-s2
• version/juniper junos/19.4-r1
• version/juniper junos/19.4-r1-s1
• version/juniper junos/19.4-r1-s2
• version/juniper junos/19.4-r1-s3
• version/juniper junos/19.4-r3
• version/juniper junos/19.4-r3-s1
• version/juniper junos/19.4-r3-s2
• version/juniper junos/19.4-r3-s3
• version/juniper junos/19.4-r3-s4
• version/juniper junos/19.4-r3-s5
• version/juniper junos/20.1-r1
• version/juniper junos/20.1-r1-s1
• version/juniper junos/20.1-r1-s2
• version/juniper junos/20.1-r1-s3
• version/juniper junos/20.1-r1-s4
• version/juniper junos/20.1-r2
• version/juniper junos/20.1-r2-s1
• version/juniper junos/20.2-r1
• version/juniper junos/20.2-r1-s1
• version/juniper junos/20.2-r1-s2
• version/juniper junos/20.2-r1-s3
• version/juniper junos/20.2-r2
• version/juniper junos/20.2-r2-s1
• version/juniper junos/20.2-r2-s2
• version/juniper junos/20.2-r2-s3
• version/juniper junos/20.2-r3
• version/juniper junos/20.3-r1
• version/juniper junos/20.3-r1-s1
• version/juniper junos/20.3-r2
• version/juniper junos/20.3-r2-s1
• version/juniper junos/20.4-r1
• version/juniper junos/20.4-r1-s1
• version/juniper junos/20.4-r2
• version/juniper junos/20.4-r2-s1
• version/juniper junos/21.1-r1
• version/juniper junos/21.1-r1-s1
• canonical/juniper ptx1000
• canonical/juniper ptx10001-36mr
• canonical/juniper ptx10002
• canonical/juniper ptx10003
• canonical/juniper ptx10004
• canonical/juniper ptx10008
• canonical/juniper ptx10016
• canonical/juniper ptx3000
• canonical/juniper ptx5000