CVE-2019-0013

Name of the Vulnerable Software and Affected Versions Junos OS versions prior to 12.1X46-D77 Junos OS versions prior to 12.3X48-D77 Junos OS versions prior to 15.1F6-S10 Junos OS versions prior to 15.1R6-S6 Junos OS versions prior to 15.1R7 Junos OS versions prior to 15.1X49-D150 Junos OS versions prior to 15.1X53-D233 Junos OS versions prior to 15.1X53-D59 Junos OS versions prior to 16.1R3-S8 Junos OS versions prior to 16.1R4-S8 Junos OS versions prior to 16.1R7 Junos OS versions prior to 16.2R2-S6 Junos OS versions prior to 17.1R2-S6 Junos OS versions prior to 17.1R3 Junos OS versions prior to 17.2R2-S3 Junos OS versions prior to 17.2R3 Junos OS versions prior to 17.3R2-S4 Junos OS versions prior to 17.3R3 Junos OS versions prior to 17.4R2

Description The routing protocol daemon (RPD) process will crash and restart when a specific invalid IPv4 PIM Join packet is received. This can result in an extended Denial of Service (DoS) condition due to repeated crashes. The issue only affects IPv4 PIM, and IPv6 PIM is unaffected.

Recommendations For versions prior to 12.1X46-D77, update to 12.1X46-D77 or later. For versions prior to 12.3X48-D77, update to 12.3X48-D77 or later. For versions prior to 15.1F6-S10, update to 15.1F6-S10 or later. For versions prior to 15.1R6-S6, update to 15.1R6-S6 or later. For versions prior to 15.1R7, update to 15.1R7 or later. For versions prior to 15.1X49-D150, update to 15.1X49-D150 or later. For versions prior to 15.1X53-D233, update to 15.1X53-D233 or later. For versions prior to 15.1X53-D59, update to 15.1X53-D59 or later. For versions prior to 16.1R3-S8, update to 16.1R3-S8 or later. For versions prior to 16.1R4-S8, update to 16.1R4-S8 or later. For versions prior to 16.1R7, update to 16.1R7 or later. For versions prior to 16.2R2-S6, update to 16.2R2-S6 or later. For versions prior to 17.1R2-S6, update to 17.1R2-S6 or later. For versions prior to 17.1R3, update to 17.1R3 or later. For versions prior to 17.2R2-S3, update to 17.2R2-S3 or later. For versions prior to 17.2R3, update to 17.2R3 or later. For versions prior to 17.3R2-S4, update to 17.3R2-S4 or later. For versions prior to 17.3R3, update to 17.3R3 or later. For versions prior to 17.4R2, update to 17.4R2 or later.