CVE-2020-1608

Name of the Vulnerable Software and Affected Versions Junos OS versions 17.2R2-S6 through 17.2R3-S3 Junos OS versions 17.3R2-S4 through 17.3R3-S5 Junos OS versions 17.4R2 through 17.4R2-S7 Junos OS versions 18.1R2-S3 through 18.1R3-S6 Junos OS versions 18.2R1-S1 through 18.2R3-S2 Junos OS versions 18.2X75-D51 through 18.2X75-D60 Junos OS version 18.3R3 and earlier Junos OS version 18.4R2 and earlier Junos OS versions 19.1R1-S3 and earlier, 19.1R2 and earlier Junos OS versions 19.2R1-S2 and earlier, 19.2R2 and earlier

Description The issue is caused by insufficient input validation in the Broadband Edge (BBE) service of Junos OS on MX Series devices. Receipt of a specific MPLS or IPv6 packet on the core facing interface may trigger a kernel crash, causing the device to reboot. This issue is specific to the processing of packets destined to BBE clients connected to MX Series subscriber management platforms. The estimated number of potentially affected devices is not provided.

Recommendations For Junos OS versions 17.2R2-S6 through 17.2R3-S3, update to version 17.2R3-S3 or later. For Junos OS versions 17.3R2-S4 through 17.3R3-S5, update to version 17.3R3-S5 or later. For Junos OS versions 17.4R2 through 17.4R2-S7, update to version 17.4R2-S7 or later. For Junos OS versions 18.1R2-S3 through 18.1R3-S6, update to version 18.1R3-S6 or later. For Junos OS versions 18.2R1-S1 through 18.2R3-S2, update to version 18.2R3-S2 or later. For Junos OS versions 18.2X75-D51 through 18.2X75-D60, update to version 18.2X75-D60 or later. For Junos OS version 18.3R3 and earlier, update to version 18.3R3 or later. For Junos OS version 18.4R2 and earlier, update to version 18.4R2 or later. For Junos OS versions 19.1R1-S3 and earlier, 19.1R2 and earlier, update to version 19.1R1-S3 or later, 19.1R2 or later. For Junos OS versions 19.2R1-S2 and earlier, 19.2R2 and earlier, update to version 19.2R1-S2 or later, 19.2R2 or later.