CVE-2019-0002

Name of the Vulnerable Software and Affected Versions Junos OS on EX2300 and EX3400 series versions prior to 15.1X53-D590 Junos OS on EX2300 and EX3400 series versions 18.1 prior to 18.1R3 Junos OS on EX2300 and EX3400 series versions 18.2 prior to 18.2R2

Description The issue is related to a stateless firewall filter configuration that uses the action 'policer' in combination with other actions, which might not take effect. This affects both IPv4 and IPv6 firewall filters. When the issue occurs, the output of the command "show pfe filter hw summary" will not show the entry for the RACL group.

Recommendations For versions prior to 15.1X53-D590, update to version 15.1X53-D590 or later. For versions 18.1 prior to 18.1R3, update to version 18.1R3 or later. For versions 18.2 prior to 18.2R2, update to version 18.2R2 or later.