CVE-2018-0004

Name of the Vulnerable Software and Affected Versions Junos OS versions prior to 12.1X46-D50 Junos OS versions prior to 12.3X48-D30 Junos OS versions prior to 12.3R12-S7 Junos OS versions prior to 14.1R8-S4 Junos OS versions prior to 14.1R9 Junos OS versions prior to 14.1X53-D30 Junos OS versions prior to 14.1X53-D34 Junos OS versions prior to 14.2R8 Junos OS versions prior to 15.1F6 Junos OS versions prior to 15.1R3 Junos OS versions prior to 15.1X49-D40 Junos OS versions prior to 15.1X53-D31 Junos OS versions prior to 15.1X53-D33 Junos OS versions prior to 15.1X53-D60

Description The issue is related to a high CPU consumption denial of service condition in the Junos OS register and schedule software interrupt handler subsystem. This can be triggered by a sustained sequence of different types of normal transit traffic when a specific command is issued to the device, affecting one or more threads and running processes. As a result, the device can become inaccessible and stop forwarding traffic until it is rebooted. The issue may reoccur after reboot upon receiving further transit traffic.

Recommendations For versions prior to 12.1X46-D50, update to 12.1X46-D50 or later. For versions prior to 12.3X48-D30, update to 12.3X48-D30 or later. For versions prior to 12.3R12-S7, update to 12.3R12-S7 or later. For versions prior to 14.1R8-S4, update to 14.1R8-S4 or later. For versions prior to 14.1R9, update to 14.1R9 or later. For versions prior to 14.1X53-D30, update to 14.1X53-D30 or later. For versions prior to 14.1X53-D34, update to 14.1X53-D34 or later. For versions prior to 14.2R8, update to 14.2R8 or later. For versions prior to 15.1F6, update to 15.1F6 or later. For versions prior to 15.1R3, update to 15.1R3 or later. For versions prior to 15.1X49-D40, update to 15.1X49-D40 or later. For versions prior to 15.1X53-D31, update to 15.1X53-D31 or later. For versions prior to 15.1X53-D33, update to 15.1X53-D33 or later. For versions prior to 15.1X53-D60, update to 15.1X53-D60 or later.