CVE-2020-1678

Name of the Vulnerable Software and Affected Versions Juniper Networks Junos OS versions prior to 19.4R2 Juniper Networks Junos OS versions 20.1 prior to 20.1R1-S4, 20.1R2 Juniper Networks Junos OS Evolved versions 19.4 Juniper Networks Junos OS Evolved versions 20.1 prior to 20.1R1-S4-EVO, 20.1R2-EVO Juniper Networks Junos OS Evolved versions 20.2 prior to 20.2R1-EVO

Description The issue is caused by the receipt of specific BGP packets on Juniper Networks Junos OS and Junos OS Evolved platforms with EVPN configured, leading to a slow memory leak. If the memory is exhausted, the rpd process might crash. The memory leak can be detected by executing the "show task memory detail | match policy | match evpn" command multiple times to check if memory (Alloc Blocks value) is increasing.

Recommendations For Juniper Networks Junos OS version 19.4, update to 19.4R2 or later. For Juniper Networks Junos OS version 20.1, update to 20.1R1-S4, 20.1R2 or later. For Juniper Networks Junos OS Evolved version 19.4, update to a version later than 19.4. For Juniper Networks Junos OS Evolved version 20.1, update to 20.1R1-S4-EVO, 20.1R2-EVO or later. For Juniper Networks Junos OS Evolved version 20.2, update to 20.2R1-EVO or later.