CVE-2016-1277

Name of the Vulnerable Software and Affected Versions Juniper Junos OS versions prior to 12.1X46-D50 Juniper Junos OS versions 12.1X47 prior to 12.1X47-D40 Juniper Junos OS versions 12.3X48 prior to 12.3X48-D30 Juniper Junos OS versions 13.3 prior to 13.3R9 Juniper Junos OS versions 14.1 prior to 14.1R8 Juniper Junos OS versions 14.1X53 prior to 14.1X53-D40 Juniper Junos OS versions 14.2 prior to 14.2R6 Juniper Junos OS versions 15.1 prior to 15.1F6 or 15.1R3 Juniper Junos OS versions 15.1X49 prior to 15.1X49-D40

Description The issue allows remote attackers to cause a denial of service, resulting in a kernel panic, via a crafted ICMP packet when the system is configured with a GRE or IPIP tunnel.

Recommendations For versions prior to 12.1X46-D50, update to 12.1X46-D50 or later. For versions 12.1X47 prior to 12.1X47-D40, update to 12.1X47-D40 or later. For versions 12.3X48 prior to 12.3X48-D30, update to 12.3X48-D30 or later. For versions 13.3 prior to 13.3R9, update to 13.3R9 or later. For versions 14.1 prior to 14.1R8, update to 14.1R8 or later. For versions 14.1X53 prior to 14.1X53-D40, update to 14.1X53-D40 or later. For versions 14.2 prior to 14.2R6, update to 14.2R6 or later. For versions 15.1 prior to 15.1F6 or 15.1R3, update to 15.1F6, 15.1R3, or later. For versions 15.1X49 prior to 15.1X49-D40, update to 15.1X49-D40 or later.