CVE-2018-0006

Name of the Vulnerable Software and Affected Versions: Junos OS versions prior to 15.1R6-S2, 15.1R7 Junos OS versions prior to 16.1R5-S1, 16.1R6 Junos OS versions prior to 16.2R2-S2, 16.2R3 Junos OS versions prior to 17.1R2-S5, 17.1R3 Junos OS versions prior to 17.2R2

Description: A high rate of VLAN authentication attempts from an adjacent host can cause high memory utilization by the BBE subscriber management daemon, leading to a denial of service condition. This occurs due to the daemon attempting to process an unbounded number of pending VLAN authentication requests, resulting in excessive memory allocation. The issue affects devices configured for DHCPv4/v6 over AE auto-sensed VLANs in Broadband Edge deployments.

Recommendations: For versions prior to 15.1R6-S2, 15.1R7, update to a fixed version to resolve the issue. For versions prior to 16.1R5-S1, 16.1R6, update to a fixed version to resolve the issue. For versions prior to 16.2R2-S2, 16.2R3, update to a fixed version to resolve the issue. For versions prior to 17.1R2-S5, 17.1R3, update to a fixed version to resolve the issue. For versions prior to 17.2R2, update to a fixed version to resolve the issue.