CVE-2019-0012

Name of the Vulnerable Software and Affected Versions: Junos versions prior to 12.1X46-D81 Junos versions prior to 12.3R12-S12 Junos versions prior to 12.3X48-D76 Junos versions prior to 14.1X53-D48 Junos versions prior to 15.1F6-S12 Junos versions prior to 15.1R7-S2 Junos versions prior to 15.1X49-D150 Junos versions prior to 15.1X53-D235 Junos versions prior to 15.1X53-D495 Junos versions prior to 15.1X53-D590 Junos versions prior to 15.1X53-D68 Junos versions prior to 16.1R3-S10 Junos versions prior to 16.1R4-S12 Junos versions prior to 16.1R6-S6 Junos versions prior to 16.1R7-S1 Junos versions prior to 16.2R2-S7 Junos versions prior to 17.1R2-S9 Junos versions prior to 17.1R3 Junos versions prior to 17.2R1-S7 Junos versions prior to 17.2R2-S6 Junos versions prior to 17.2R3 Junos versions prior to 17.3R2-S4 Junos versions prior to 17.3R3 Junos versions prior to 17.4R1-S5 Junos versions prior to 17.4R2 Junos versions prior to 18.1R2-S3 Junos versions prior to 18.1R3

Description: The issue is related to insufficient input validation in the Junos operating system, which can be exploited by a remote attacker to cause a denial of service due to the crash of the routing protocol daemon (rpd) process. This can result in an extended denial of service condition if the crashes are repeated. The issue specifically affects PE routers configured with BGP Auto discovery for LDP VPLS.

Recommendations: For Junos versions prior to 12.1X46-D81, update to 12.1X46-D81 or later. For Junos versions prior to 12.3R12-S12, update to 12.3R12-S12 or later. For Junos versions prior to 12.3X48-D76, update to 12.3X48-D76 or later. For Junos versions prior to 14.1X53-D48, update to 14.1X53-D48 or later. For Junos versions prior to 15.1F6-S12, update to 15.1F6-S12 or later. For Junos versions prior to 15.1R7-S2, update to 15.1R7-S2 or later. For Junos versions prior to 15.1X49-D150, update to 15.1X49-D150 or later. For Junos versions prior to 15.1X53-D235, update to 15.1X53-D235 or later. For Junos versions prior to 15.1X53-D495, update to 15.1X53-D495 or later. For Junos versions prior to 15.1X53-D590, update to 15.1X53-D590 or later. For Junos versions prior to 15.1X53-D68, update to 15.1X53-D68 or later. For Junos versions prior to 16.1R3-S10, update to 16.1R3-S10 or later. For Junos versions prior to 16.1R4-S12, update to 16.1R4-S12 or later. For Junos versions prior to 16.1R6-S6, update to 16.1R6-S6 or later. For Junos versions prior to 16.1R7-S1, update to 16.1R7-S1 or later. For Junos versions prior to 16.2R2-S7, update to 16.2R2-S7 or later. For Junos versions prior to 17.1R2-S9, update to 17.1R2-S9 or later. For Junos versions prior to 17.1R3, update to 17.1R3 or later. For Junos versions prior to 17.2R1-S7, update to 17.2R1-S7 or later. For Junos versions prior to 17.2R2-S6, update to 17.2R2-S6 or later. For Junos versions prior to 17.2R3, update to 17.2R3 or later. For Junos versions prior to 17.3R2-S4, update to 17.3R2-S4 or later. For Junos versions prior to 17.3R3, update to 17.3R3 or later. For Junos versions prior to 17.4R1-S5, update to 17.4R1-S5 or later. For Junos versions prior to 17.4R2, update to 17.4R2 or later. For Junos versions prior to 18.1R2-S3, update to 18.1R2-S3 or later. For Junos versions prior to 18.1R3, update to 18.1R3 or later.