CVE-2021-0272

Name of the Vulnerable Software and Affected Versions: Junos OS versions prior to 17.3R3-S9 Junos OS versions 17.4 prior to 17.4R3-S2 Junos OS versions 18.1 prior to 18.1R3-S11 Junos OS versions 18.2 prior to 18.2R3-S5 Junos OS versions 18.3 prior to 18.3R3-S3 Junos OS versions 18.4 prior to 18.4R2-S5, 18.4R3-S4 Junos OS versions 19.1 prior to 19.1R3-S2 Junos OS versions 19.2 prior to 19.2R3 Junos OS versions 19.3 prior to 19.3R3 Junos OS versions 19.4 prior to 19.4R3 Junos OS versions 20.1 prior to 20.1R2

Description: A kernel memory leak in Juniper Networks Junos OS allows an attacker to send genuine packets destined to the device to cause a Denial of Service (DoS) to the device. The device will crash and restart on QFX10002-32Q, QFX10002-60C, QFX10002-72Q devices. On QFX10008, QFX10016 devices, one or more FPCs may crash and traffic through the device may be degraded until the attack traffic stops. A reboot is required to restore service and clear the kernel memory. An indicator of compromise may be the existence of DCPFE core files. Monitoring PFE memory utilization for incremental growth can also indicate the issue.

Recommendations: For Junos OS versions prior to 17.3R3-S9, update to version 17.3R3-S9 or later. For Junos OS versions 17.4 prior to 17.4R3-S2, update to version 17.4R3-S2 or later. For Junos OS versions 18.1 prior to 18.1R3-S11, update to version 18.1R3-S11 or later. For Junos OS versions 18.2 prior to 18.2R3-S5, update to version 18.2R3-S5 or later. For Junos OS versions 18.3 prior to 18.3R3-S3, update to version 18.3R3-S3 or later. For Junos OS versions 18.4 prior to 18.4R2-S5, 18.4R3-S4, update to version 18.4R2-S5, 18.4R3-S4 or later. For Junos OS versions 19.1 prior to 19.1R3-S2, update to version 19.1R3-S2 or later. For Junos OS versions 19.2 prior to 19.2R3, update to version 19.2R3 or later. For Junos OS versions 19.3 prior to 19.3R3, update to version 19.3R3 or later. For Junos OS versions 19.4 prior to 19.4R3, update to version 19.4R3 or later. For Junos OS versions 20.1 prior to 20.1R2, update to version 20.1R2 or later.