CVE-2018-0029

Name of the Vulnerable Software and Affected Versions: Junos OS versions 15.1 through 17.4

Description: The system can crash and restart when the fxp0 interface is placed into promiscuous mode via the 'monitor traffic interface fxp0' command during a broadcast storm. This issue affects both single core and multi-core REs.

Recommendations: For Junos OS versions 15.1 through 17.4, update to a fixed release, such as 15.1F6-S11, 15.1R4-S9, 15.1R6-S6, 15.1R7, or later versions, to resolve the issue. For 15.1X49, update to 15.1X49-D140 or later. For 15.1X53 on EX2300/EX3400, update to 15.1X53-D59 or later. For 15.1X53 on QFX10K, update to 15.1X53-D67 or later. For 15.1X53 on QFX5200/QFX5110, update to 15.1X53-D233 or later. For 15.1X53 on NFX, update to 15.1X53-D471, 15.1X53-D490 or later. For 16.1, update to 16.1R3-S8, 16.1R5-S4, 16.1R6-S1, 16.1R7 or later. For 16.2, update to 16.2R1-S6, 16.2R2-S5, 16.2R3 or later. For 17.1, update to 17.1R1-S7, 17.1R2-S7, 17.1R3 or later. For 17.2, update to 17.2R1-S6, 17.2R2-S4, 17.2R3 or later. For 17.2X75, update to 17.2X75-D90, 17.2X75-D110 or later. For 17.3, update to 17.3R1-S4, 17.3R2 or later. For 17.4, update to 17.4R1-S3, 17.4R2 or later.