Vulnerability Data

CVE-2019-0019

Track security vulnerabilities

When BGP tracing is enabled an incoming BGP message may cause the Junos OS routing protocol daemon (rpd) process to crash and restart. While rpd restarts after a crash, repeated crashes can result in an extended DoS condition. Affected releases are Juniper Networks Junos OS: 16.1 versions prior to 16.1R7-S4, 16.1R7-S5; 16.2 versions prior to 16.2R2-S9, 16.2R3; 17.1 versions prior to 17.1R3; 17.2 versions prior to 17.2R3-S1; 17.3 versions prior to 17.3R3-S3, 17.3R3-S4, 17.3R4; 17.4 versions prior to 17.4R1-S7, 17.4R2-S3, 17.4R2-S4, 17.4R3; 18.1 versions prior to 18.1R2-S4, 18.1R3-S4, 18.1R4; 18.2 versions prior to 18.2R2-S2, 18.2R2-S3, 18.2R3; 18.2X75 versions prior to 18.2X75-D40; 18.3 versions prior to 18.3R1-S3, 18.3R2; 18.4 versions prior to 18.4R1-S2, 18.4R2. This issue does not affect Junos releases prior to 16.1R1.

Published at
2019-04-10
1012 days ago
Modified
2019-04-15
1007 days ago
2019
Year
The year of the turtle

http://www.securityfocus.com/bid/107893

BID:107893

Read More about itMore info

https://kb.juniper.net/JSA10931

CONFIRM:https://kb.juniper.net/JSA10931

Read More about itMore info

Vulnerability RAW

{
	"Title": {
		"_text": "CVE-2019-0019"
	},
	"Notes": {
		"Note": [
			{
				"_text": "When BGP tracing is enabled an incoming BGP message may cause the Junos OS routing protocol daemon (rpd) process to crash and restart. While rpd restarts after a crash, repeated crashes can result in an extended DoS condition. Affected releases are Juniper Networks Junos OS: 16.1 versions prior to 16.1R7-S4, 16.1R7-S5; 16.2 versions prior to 16.2R2-S9, 16.2R3; 17.1 versions prior to 17.1R3; 17.2 versions prior to 17.2R3-S1; 17.3 versions prior to 17.3R3-S3, 17.3R3-S4, 17.3R4; 17.4 versions prior to 17.4R1-S7, 17.4R2-S3, 17.4R2-S4, 17.4R3; 18.1 versions prior to 18.1R2-S4, 18.1R3-S4, 18.1R4; 18.2 versions prior to 18.2R2-S2, 18.2R2-S3, 18.2R3; 18.2X75 versions prior to 18.2X75-D40; 18.3 versions prior to 18.3R1-S3, 18.3R2; 18.4 versions prior to 18.4R1-S2, 18.4R2. This issue does not affect Junos releases prior to 16.1R1."
			},
			{
				"_text": "2019-04-10"
			},
			{
				"_text": "2019-04-15"
			}
		]
	},
	"CVE": {
		"_text": "CVE-2019-0019"
	},
	"References": {
		"Reference": [
			{
				"URL": {
					"_text": "http://www.securityfocus.com/bid/107893"
				},
				"Description": {
					"_text": "BID:107893"
				}
			},
			{
				"URL": {
					"_text": "https://kb.juniper.net/JSA10931"
				},
				"Description": {
					"_text": "CONFIRM:https://kb.juniper.net/JSA10931"
				}
			}
		]
	}
}