CVE-2018-0002

Name of the Vulnerable Software and Affected Versions: Junos OS versions prior to 12.1X46-D60 on SRX series Junos OS versions prior to 12.3X48-D35 on SRX series Junos OS versions prior to 14.1R9 on MX series Junos OS versions prior to 14.2R8 on MX series Junos OS versions prior to 15.1X49-D60 on SRX series Junos OS versions prior to 15.1R5-S8 on MX series Junos OS versions prior to 15.1F6-S9 on MX series Junos OS versions prior to 15.1R6-S4 on MX series Junos OS versions prior to 15.1R7 on MX series Junos OS versions prior to 16.1R6 on MX series Junos OS versions prior to 16.2R3 on MX series Junos OS versions prior to 17.1R2-S4 on MX series Junos OS versions prior to 17.1R3 on MX series

Description: A crafted TCP/IP response packet processed through the device results in memory corruption leading to a flowd daemon crash. Sustained crafted response packets lead to repeated crashes of the flowd daemon, which results in an extended Denial of Service condition.

Recommendations: For Junos OS versions prior to 12.1X46-D60 on SRX series, update to 12.1X46-D60 or later. For Junos OS versions prior to 12.3X48-D35 on SRX series, update to 12.3X48-D35 or later. For Junos OS versions prior to 14.1R9 on MX series, update to 14.1R9 or later. For Junos OS versions prior to 14.2R8 on MX series, update to 14.2R8 or later. For Junos OS versions prior to 15.1X49-D60 on SRX series, update to 15.1X49-D60 or later. For Junos OS versions prior to 15.1R5-S8 on MX series, update to 15.1R5-S8 or later. For Junos OS versions prior to 15.1F6-S9 on MX series, update to 15.1F6-S9 or later. For Junos OS versions prior to 15.1R6-S4 on MX series, update to 15.1R6-S4 or later. For Junos OS versions prior to 15.1R7 on MX series, update to 15.1R7 or later. For Junos OS versions prior to 16.1R6 on MX series, update to 16.1R6 or later. For Junos OS versions prior to 16.2R3 on MX series, update to 16.2R3 or later. For Junos OS versions prior to 17.1R2-S4 on MX series, update to 17.1R2-S4 or later. For Junos OS versions prior to 17.1R3 on MX series, update to 17.1R3 or later.