CVE-2022-22166

Name of the Vulnerable Software and Affected Versions Juniper Networks Junos OS versions 20.4 prior to 20.4R3-S1 Juniper Networks Junos OS versions 21.1 prior to 21.1R2-S2, 21.1R3

Description The issue is caused by an improper validation of specified quantity in input in the routing protocol daemon (rpd) of Juniper Networks Junos OS, allowing an unauthenticated networked attacker to cause an rpd crash and thereby a Denial of Service (DoS). This can occur when a BGP update message with a malformed BGP SR-TE policy tunnel attribute is received over an established BGP session and the BGP update tracing flag is enabled. The crash happens as soon as the malformed update is received and does not propagate.

Recommendations For Juniper Networks Junos OS versions 20.4 prior to 20.4R3-S1, update to version 20.4R3-S1 or later. For Juniper Networks Junos OS versions 21.1 prior to 21.1R2-S2, update to version 21.1R2-S2 or later. For Juniper Networks Junos OS version 21.1R3, update to a later version that includes the fix for this issue. As a temporary workaround, consider disabling the BGP update tracing flag until a patch is available.