Thursday, 11 April 2013

Junos Routing, Switching, and Security: Security Advisories Released

Products Affected Various
Platforms Affected
  • JUNOS 12.x
  • Security
  • JUNOS 11.x
  • JUNOS 10.x
  • SIRT Security Advisory
    • Revision Number 1
    Issue Date 2013-04-10

    PSN Issue :
    A new Junos product security advisory bundle has been released. This message contains the link(s) to the new PSN advisories that have been released. In the interest of speeding the delivery process for SIRT Security Announcements, the Juniper SIRT has implemented a small process change. When the Juniper SIRT publishes Security Advisories and/or Security Notices, a single master PSN (this PSN) will be pushed to subscribed customers which briefly lists the IDs, descriptions, and links for all of the individual Security Announcements being released together on that day.

    Solution:
    Please see the following links for more information about the new security advisories:

    1. PSN-2013-04-911: Junos: Specially crafted SIP packet can cause the flowd process to crash
      http://www.juniper.net/alerts/viewalert.jsp?actionBtn=Search&txtAlertNumber=PSN-2013-04-911&viewMode=view

    2. PSN-2013-04-912: Junos: SIP ALG on SRX Series may allow sessions not permitted by policy which can lead to a DoS
      http://www.juniper.net/alerts/viewalert.jsp?actionBtn=Search&txtAlertNumber=PSN-2013-04-912&viewMode=view

    3. PSN-2013-04-913: Junos: Kernel crash while processing certain types of ARP packets
      http://www.juniper.net/alerts/viewalert.jsp?actionBtn=Search&txtAlertNumber=PSN-2013-04-913&viewMode=view

    4. PSN-2013-04-914: Junos: J-Web Sajax remote code execution
      http://www.juniper.net/alerts/viewalert.jsp?actionBtn=Search&txtAlertNumber=PSN-2013-04-914&viewMode=view

    5. PSN-2013-04-915: Junos: MBUF exhaustion with IPv6 egress filter on the loopback interface
      http://www.juniper.net/alerts/viewalert.jsp?actionBtn=Search&txtAlertNumber=PSN-2013-04-915&viewMode=view

    6. PSN-2013-04-916: Junos: Ethernet traffic with invalid Ether-Type can trigger protocol packet drops on Ichip-based FPCs/DPCs
      http://www.juniper.net/alerts/viewalert.jsp?actionBtn=Search&txtAlertNumber=PSN-2013-04-916&viewMode=view

    7. PSN-2013-04-917: Junos: Kernel crash when receiving crafted GRE packet on multicast tunnel interface
      http://www.juniper.net/alerts/viewalert.jsp?actionBtn=Search&txtAlertNumber=PSN-2013-04-917&viewMode=view

    8. PSN-2013-04-918: Junos: DNSSEC validation Denial of Service (CVE-2012-3817)
      http://www.juniper.net/alerts/viewalert.jsp?actionBtn=Search&txtAlertNumber=PSN-2013-04-918&viewMode=view

    at

    No comments:

    Post a Comment

    Subscribe to: Post Comments (Atom)
    loading...