CVE-2020-1629
08.04.2020, 20:15
A race condition vulnerability on Juniper Network Junos OS devices may cause the routing protocol daemon (RPD) process to crash and restart while processing a BGP NOTIFICATION message. This issue affects Juniper Networks Junos OS: 16.1 versions prior to 16.1R7-S6; 16.2 versions prior to 16.2R2-S11; 17.1 versions prior to 17.1R2-S11, 17.1R3-S1; 17.2 versions prior to 17.2R1-S9, 17.2R3-S3; 17.2 version 17.2R2 and later versions; 17.2X75 versions prior to 17.2X75-D105, 17.2X75-D110; 17.3 versions prior to 17.3R2-S5, 17.3R3-S6; 17.4 versions prior to 17.4R2-S7, 17.4R3; 18.1 versions prior to 18.1R3-S8; 18.2 versions prior to 18.2R3-S3; 18.2X75 versions prior to 18.2X75-D410, 18.2X75-D420, 18.2X75-D50, 18.2X75-D60; 18.3 versions prior to 18.3R1-S5, 18.3R2-S2, 18.3R3; 18.4 versions prior to 18.4R2-S2, 18.4R3; 19.1 versions prior to 19.1R1-S2, 19.1R2; 19.2 versions prior to 19.2R1-S4, 19.2R2. This issue does not affect Juniper Networks Junos OS prior to version 16.1R1.
| Vendor | Product | Version |
|---|---|---|
| juniper | junos | 16.1 |
| juniper | junos | 16.1:r1 |
| juniper | junos | 16.1:r2 |
| juniper | junos | 16.1:r3 |
| juniper | junos | 16.1:r3-s10 |
| juniper | junos | 16.1:r3-s11 |
| juniper | junos | 16.1:r4 |
| juniper | junos | 16.1:r4-s12 |
| juniper | junos | 16.1:r4-s2 |
| juniper | junos | 16.1:r4-s3 |
| juniper | junos | 16.1:r4-s4 |
| juniper | junos | 16.1:r4-s6 |
| juniper | junos | 16.1:r5 |
| juniper | junos | 16.1:r5-s4 |
| juniper | junos | 16.1:r6-s1 |
| juniper | junos | 16.1:r6-s6 |
| juniper | junos | 16.1:r7 |
| juniper | junos | 16.1:r7-s2 |
| juniper | junos | 16.1:r7-s3 |
| juniper | junos | 16.1:r7-s4 |
| juniper | junos | 16.1:r7-s5 |
| juniper | junos | 16.2 |
| juniper | junos | 16.2:r1 |
| juniper | junos | 16.2:r2 |
| juniper | junos | 16.2:r2-s1 |
| juniper | junos | 16.2:r2-s10 |
| juniper | junos | 16.2:r2-s2 |
| juniper | junos | 16.2:r2-s5 |
| juniper | junos | 16.2:r2-s6 |
| juniper | junos | 16.2:r2-s7 |
| juniper | junos | 16.2:r2-s8 |
| juniper | junos | 16.2:r2-s9 |
| juniper | junos | 17.1 |
| juniper | junos | 17.1:r1 |
| juniper | junos | 17.1:r2 |
| juniper | junos | 17.1:r2-s1 |
| juniper | junos | 17.1:r2-s10 |
| juniper | junos | 17.1:r2-s2 |
| juniper | junos | 17.1:r2-s3 |
| juniper | junos | 17.1:r2-s4 |
| juniper | junos | 17.1:r2-s5 |
| juniper | junos | 17.1:r2-s6 |
| juniper | junos | 17.1:r2-s7 |
| juniper | junos | 17.1:r2-s8 |
| juniper | junos | 17.1:r2-s9 |
| juniper | junos | 17.1:r3 |
| juniper | junos | 17.2 |
| juniper | junos | 17.2:r1 |
| juniper | junos | 17.2:r1-s1 |
| juniper | junos | 17.2:r1-s2 |
| juniper | junos | 17.2:r1-s3 |
| juniper | junos | 17.2:r1-s4 |
| juniper | junos | 17.2:r1-s5 |
| juniper | junos | 17.2:r1-s7 |
| juniper | junos | 17.2:r1-s8 |
| juniper | junos | 17.2:r2 |
| juniper | junos | 17.2:r2-s6 |
| juniper | junos | 17.2:r2-s7 |
| juniper | junos | 17.2:r3 |
| juniper | junos | 17.2:r3-s1 |
| juniper | junos | 17.2:r3-s2 |
| juniper | junos | 17.2x75:x75 |
| juniper | junos | 17.2x75:x75 |
| juniper | junos | 17.2x75:x75 |
| juniper | junos | 17.2x75:x75 |
| juniper | junos | 17.2x75:x75 |
| juniper | junos | 17.3 |
| juniper | junos | 17.3:r1-s1 |
| juniper | junos | 17.3:r2 |
| juniper | junos | 17.3:r2-s1 |
| juniper | junos | 17.3:r2-s2 |
| juniper | junos | 17.3:r2-s3 |
| juniper | junos | 17.3:r2-s4 |
| juniper | junos | 17.3:r3 |
| juniper | junos | 17.3:r3-s1 |
| juniper | junos | 17.3:r3-s2 |
| juniper | junos | 17.3:r3-s3 |
| juniper | junos | 17.3:r3-s4 |
| juniper | junos | 17.3:r3-s5 |
| juniper | junos | 17.4 |
| juniper | junos | 17.4:r1 |
| juniper | junos | 17.4:r1-s1 |
| juniper | junos | 17.4:r1-s2 |
| juniper | junos | 17.4:r1-s4 |
| juniper | junos | 17.4:r1-s5 |
| juniper | junos | 17.4:r1-s6 |
| juniper | junos | 17.4:r1-s7 |
| juniper | junos | 17.4:r2 |
| juniper | junos | 17.4:r2-s1 |
| juniper | junos | 17.4:r2-s2 |
| juniper | junos | 17.4:r2-s3 |
| juniper | junos | 17.4:r2-s4 |
| juniper | junos | 17.4:r2-s5 |
| juniper | junos | 17.4:r2-s6 |
| juniper | junos | 18.1 |
| juniper | junos | 18.1:r2 |
| juniper | junos | 18.1:r2-s1 |
| juniper | junos | 18.1:r2-s2 |
| juniper | junos | 18.1:r2-s4 |
| juniper | junos | 18.1:r3 |
| juniper | junos | 18.1:r3-s1 |
| juniper | junos | 18.1:r3-s2 |
| juniper | junos | 18.1:r3-s3 |
| juniper | junos | 18.1:r3-s4 |
| juniper | junos | 18.1:r3-s6 |
| juniper | junos | 18.1:r3-s7 |
| juniper | junos | 18.2 |
| juniper | junos | 18.2:r1 |
| juniper | junos | 18.2:r1-s3 |
| juniper | junos | 18.2:r1-s5 |
| juniper | junos | 18.2:r2-s1 |
| juniper | junos | 18.2:r2-s2 |
| juniper | junos | 18.2:r2-s3 |
| juniper | junos | 18.2:r2-s4 |
| juniper | junos | 18.2:r2-s5 |
| juniper | junos | 18.2:r2-s6 |
| juniper | junos | 18.2:r3 |
| juniper | junos | 18.2:r3-s1 |
| juniper | junos | 18.2:r3-s2 |
| juniper | junos | 18.2x75:x75 |
| juniper | junos | 18.2x75:x75 |
| juniper | junos | 18.2x75:x75 |
| juniper | junos | 18.2x75:x75 |
| juniper | junos | 18.2x75:x75 |
| juniper | junos | 18.3 |
| juniper | junos | 18.3:r1 |
| juniper | junos | 18.3:r1-s1 |
| juniper | junos | 18.3:r1-s2 |
| juniper | junos | 18.3:r1-s3 |
| juniper | junos | 18.3:r1-s4 |
| juniper | junos | 18.3:r2 |
| juniper | junos | 18.3:r2-s1 |
| juniper | junos | 18.4 |
| juniper | junos | 18.4:r1 |
| juniper | junos | 18.4:r1-s1 |
| juniper | junos | 18.4:r1-s2 |
| juniper | junos | 18.4:r1-s5 |
| juniper | junos | 18.4:r2 |
| juniper | junos | 18.4:r2-s1 |
| juniper | junos | 19.1 |
| juniper | junos | 19.1:r1 |
| juniper | junos | 19.1:r1-s1 |
| juniper | junos | 19.2 |
| juniper | junos | 19.2:r1 |
| juniper | junos | 19.2:r1-s1 |
| juniper | junos | 19.2:r1-s2 |
| juniper | junos | 19.2:r1-s3 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
- CWE-366 - Race Condition within a ThreadIf two threads of execution use a resource simultaneously, there exists the possibility that resources may be used while invalid, in turn making the state of execution undefined.
- CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')The program contains a code sequence that can run concurrently with other code, and the code sequence requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence that is operating concurrently.