An Incorrect Calculation vulnerability in the Layer 2 Control
Protocol
Daemon (l2cpd) of Juniper Networks Junos OS Evolved allows an unauthenticated network-adjacent attacker flapping the management interface to cause the learning of new MACs over label-switched interfaces (LSI) to stop while generating a flood of logs, resulting in high CPU usage.
When the issue is seen, the following log message will be generated:
op:1 flag:0x6 mac:xx:xx:xx:xx:xx:xx bd:2 ifl:13302 reason:0(REASON_NONE) i-op:6(INTRNL_OP_HW_FORCE_DELETE) status:10 lstatus:10 err:26(GETIFBD_VALIDATE_FAILED) err-reason 4(IFBD_VALIDATE_FAIL_EPOCH_MISMATCH) hw_wr:0x4 ctxsync:0 fwdsync:0 rtt-id:51 p_ifl:0 fwd_nh:0 svlbnh:0 event:- smask:0x100000000 dmask:0x0 mplsmask 0x1 act:0x5800 extf:0x0 pfe-id 0 hw-notif-ifl 13302 programmed-ifl 4294967295 pseudo-vtep underlay-ifl-idx 0 stack:GET_MAC, ALLOCATE_MAC, GET_IFL, GET_IFF, GET_IFBD, STOP,
This issue affects Junos OS Evolved:
The product performs a calculation that generates incorrect or unintended results that are later used in security-critical decisions or resource management.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Junos_os_evolved | Juniper | * | 21.4 (excluding) |
| Junos_os_evolved | Juniper | 21.4 (including) | 21.4 (including) |
| Junos_os_evolved | Juniper | 21.4-r1 (including) | 21.4-r1 (including) |
| Junos_os_evolved | Juniper | 21.4-r1-s1 (including) | 21.4-r1-s1 (including) |
| Junos_os_evolved | Juniper | 21.4-r1-s2 (including) | 21.4-r1-s2 (including) |
| Junos_os_evolved | Juniper | 21.4-r2 (including) | 21.4-r2 (including) |
| Junos_os_evolved | Juniper | 21.4-r2-s1 (including) | 21.4-r2-s1 (including) |
| Junos_os_evolved | Juniper | 21.4-r2-s2 (including) | 21.4-r2-s2 (including) |
| Junos_os_evolved | Juniper | 21.4-r3 (including) | 21.4-r3 (including) |
| Junos_os_evolved | Juniper | 21.4-r3-s1 (including) | 21.4-r3-s1 (including) |
| Junos_os_evolved | Juniper | 21.4-r3-s2 (including) | 21.4-r3-s2 (including) |
| Junos_os_evolved | Juniper | 21.4-r3-s3 (including) | 21.4-r3-s3 (including) |
| Junos_os_evolved | Juniper | 21.4-r3-s4 (including) | 21.4-r3-s4 (including) |
| Junos_os_evolved | Juniper | 21.4-r3-s5 (including) | 21.4-r3-s5 (including) |
| Junos_os_evolved | Juniper | 21.4-r3-s6 (including) | 21.4-r3-s6 (including) |
| Junos_os_evolved | Juniper | 22.2 (including) | 22.2 (including) |
| Junos_os_evolved | Juniper | 22.2-r1 (including) | 22.2-r1 (including) |
| Junos_os_evolved | Juniper | 22.2-r1-s1 (including) | 22.2-r1-s1 (including) |
| Junos_os_evolved | Juniper | 22.2-r1-s2 (including) | 22.2-r1-s2 (including) |
| Junos_os_evolved | Juniper | 22.2-r2 (including) | 22.2-r2 (including) |
| Junos_os_evolved | Juniper | 22.2-r2-s1 (including) | 22.2-r2-s1 (including) |
| Junos_os_evolved | Juniper | 22.2-r2-s2 (including) | 22.2-r2-s2 (including) |
| Junos_os_evolved | Juniper | 22.2-r3 (including) | 22.2-r3 (including) |
| Junos_os_evolved | Juniper | 22.2-r3-s1 (including) | 22.2-r3-s1 (including) |
| Junos_os_evolved | Juniper | 22.2-r3-s2 (including) | 22.2-r3-s2 (including) |
| Junos_os_evolved | Juniper | 22.2-r3-s3 (including) | 22.2-r3-s3 (including) |
| Junos_os_evolved | Juniper | 22.3 (including) | 22.3 (including) |
| Junos_os_evolved | Juniper | 22.3-r1 (including) | 22.3-r1 (including) |
| Junos_os_evolved | Juniper | 22.3-r1-s1 (including) | 22.3-r1-s1 (including) |
| Junos_os_evolved | Juniper | 22.3-r1-s2 (including) | 22.3-r1-s2 (including) |
| Junos_os_evolved | Juniper | 22.3-r2 (including) | 22.3-r2 (including) |
| Junos_os_evolved | Juniper | 22.3-r2-s1 (including) | 22.3-r2-s1 (including) |
| Junos_os_evolved | Juniper | 22.3-r2-s2 (including) | 22.3-r2-s2 (including) |
| Junos_os_evolved | Juniper | 22.3-r3 (including) | 22.3-r3 (including) |
| Junos_os_evolved | Juniper | 22.3-r3-s1 (including) | 22.3-r3-s1 (including) |
| Junos_os_evolved | Juniper | 22.3-r3-s2 (including) | 22.3-r3-s2 (including) |
| Junos_os_evolved | Juniper | 22.4 (including) | 22.4 (including) |
| Junos_os_evolved | Juniper | 22.4-r1 (including) | 22.4-r1 (including) |
| Junos_os_evolved | Juniper | 22.4-r1-s1 (including) | 22.4-r1-s1 (including) |
| Junos_os_evolved | Juniper | 22.4-r1-s2 (including) | 22.4-r1-s2 (including) |
| Junos_os_evolved | Juniper | 22.4-r2 (including) | 22.4-r2 (including) |
| Junos_os_evolved | Juniper | 22.4-r2-s1 (including) | 22.4-r2-s1 (including) |
| Junos_os_evolved | Juniper | 22.4-r2-s2 (including) | 22.4-r2-s2 (including) |
| Junos_os_evolved | Juniper | 22.4-r3 (including) | 22.4-r3 (including) |
| Junos_os_evolved | Juniper | 22.4-r3-s1 (including) | 22.4-r3-s1 (including) |
| Junos_os_evolved | Juniper | 23.2 (including) | 23.2 (including) |
| Junos_os_evolved | Juniper | 23.2-r1 (including) | 23.2-r1 (including) |
| Junos_os_evolved | Juniper | 23.2-r1-s1 (including) | 23.2-r1-s1 (including) |
| Junos_os_evolved | Juniper | 23.2-r1-s2 (including) | 23.2-r1-s2 (including) |
| Junos_os_evolved | Juniper | 23.2-r2 (including) | 23.2-r2 (including) |
| Junos_os_evolved | Juniper | 23.4 (including) | 23.4 (including) |
| Junos_os_evolved | Juniper | 23.4-r1 (including) | 23.4-r1 (including) |
| Junos_os_evolved | Juniper | 23.4-r1-s1 (including) | 23.4-r1-s1 (including) |
| Junos_os_evolved | Juniper | 23.4-r2 (including) | 23.4-r2 (including) |