CVE-2021-31383
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
In Point to MultiPoint (P2MP) scenarios within established sessions between network or adjacent neighbors the improper use of a source to destination copy write operation combined with a Stack-based Buffer Overflow on certain specific packets processed by the routing protocol daemon (RPD) of Juniper Networks Junos OS and Junos OS Evolved sent by a remote unauthenticated network attacker causes the RPD to crash causing a Denial of Service (DoS). Continued receipt and processing of these packets will create a sustained Denial of Service (DoS) condition. This issue affects: Juniper Networks Junos OS 19.2 versions prior to 19.2R3-S2; 19.3 versions prior to 19.3R2-S6, 19.3R3-S2; 19.4 versions prior to 19.4R1-S4, 19.4R2-S4, 19.4R3-S3; 20.1 versions prior to 20.1R2-S2, 20.1R3; 20.2 versions prior to 20.2R2-S3, 20.2R3; 20.3 versions prior to 20.3R2. This issue does not affect Juniper Networks Junos OS versions prior to 19.2R1. Juniper Networks Junos OS Evolved 20.1 versions prior to 20.1R3-EVO; 20.2 versions prior to 20.2R3-EVO; 20.3 versions prior to 20.3R2-EVO.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Juniper Networks | Junos OS | unspecified < 19.2R1 | unaffected |
| Juniper Networks | Junos OS | 19.2 < 19.2R3-S2 | affected |
| Juniper Networks | Junos OS | 19.3 < 19.3R2-S6, 19.3R3-S2 | affected |
| Juniper Networks | Junos OS | 19.4 < 19.4R1-S4, 19.4R2-S4, 19.4R3-S3 | affected |
| Juniper Networks | Junos OS | 20.1 < 20.1R2-S2, 20.1R3 | affected |
| Juniper Networks | Junos OS | 20.2 < 20.2R2-S3, 20.2R3 | affected |
| Juniper Networks | Junos OS | 20.3 < 20.3R2 | affected |
| Juniper Networks | Junos OS Evolved | 20.1 < 20.1R3-EVO | affected |
| Juniper Networks | Junos OS Evolved | 20.2 < 20.2R3-EVO | affected |
| Juniper Networks | Junos OS Evolved | 20.3 < 20.3R2-EVO | affected |
Weaknesses
- improper usage of a source to destination copy write operation
- Denial of Service (DoS)
- CWE-121: CWE-121 Stack-based Buffer Overflow
Workarounds
For Junos OS you can remove the traffic-statistics from the configuration to work around this issue.
[protoccols ldp traffic-statistics {sensor-based-stats;}]
For Junos OS Evolved there are no viable workarounds for this issue.
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.