CVE-2019-0063

Name of the Vulnerable Software and Affected Versions Junos OS versions prior to 15.1R7-S5 on MX Series Junos OS versions prior to 16.1R7-S5 on MX Series Junos OS versions prior to 16.2R2-S10 on MX Series Junos OS versions prior to 17.1R3-S1 on MX Series Junos OS versions prior to 17.2R3-S2 on MX Series Junos OS versions prior to 17.3R3-S6 on MX Series Junos OS versions prior to 17.4R2-S5, 17.4R3 on MX Series Junos OS versions prior to 18.1R3-S6 on MX Series Junos OS versions prior to 18.2R2-S4, 18.2R3 on MX Series Junos OS versions prior to 18.2X75-D50 on MX Series Junos OS versions prior to 18.3R1-S5, 18.3R3 on MX Series Junos OS versions prior to 18.4R2 on MX Series Junos OS versions prior to 19.1R1-S2, 19.1R2 on MX Series

Description The issue is related to the jdhcpd daemon in Junos OS on MX Series devices, which can crash when receiving specific crafted DHCP response messages on a subscriber interface when DHCPv6 is enabled. This can lead to an extended Denial of Service (DoS) condition. The daemon automatically restarts without intervention, but continuous receipt of specific crafted DHCP messages will repeatedly crash jdhcpd. This issue only affects systems configured with DHCPv6 enabled, and DHCPv4 is unaffected.

Recommendations For Junos OS versions prior to 15.1R7-S5 on MX Series, update to 15.1R7-S5 or later. For Junos OS versions prior to 16.1R7-S5 on MX Series, update to 16.1R7-S5 or later. For Junos OS versions prior to 16.2R2-S10 on MX Series, update to 16.2R2-S10 or later. For Junos OS versions prior to 17.1R3-S1 on MX Series, update to 17.1R3-S1 or later. For Junos OS versions prior to 17.2R3-S2 on MX Series, update to 17.2R3-S2 or later. For Junos OS versions prior to 17.3R3-S6 on MX Series, update to 17.3R3-S6 or later. For Junos OS versions prior to 17.4R2-S5, 17.4R3 on MX Series, update to 17.4R2-S5, 17.4R3 or later. For Junos OS versions prior to 18.1R3-S6 on MX Series, update to 18.1R3-S6 or later. For Junos OS versions prior to 18.2R2-S4, 18.2R3 on MX Series, update to 18.2R2-S4, 18.2R3 or later. For Junos OS versions prior to 18.2X75-D50 on MX Series, update to 18.2X75-D50 or later. For Junos OS versions prior to 18.3R1-S5, 18.3R3 on MX Series, update to 18.3R1-S5, 18.3R3 or later. For Junos OS versions prior to 18.4R2 on MX Series, update to 18.4R2 or later. For Junos OS versions prior to 19.1R1-S2, 19.1R2 on MX Series, update to 19.1R1-S2, 19.1R2 or later.