Junos OS: Multiple vulnerabilities in libxml2 (JSA10902)
High Nessus Plugin ID 122242
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionAccording to its self-reported version number, the remote Juniper Junos device is affected by a vulnerability. When a specific BGP flowspec configuration is enabled and upon receipt of a specific matching BGP packet meeting a specific term in the flowspec configuration, a reachable assertion failure occurs, causing the routing protocol daemon (rpd) process to crash with a core file being generated.
SolutionApply the relevant Junos software release referenced in Juniper advisory JSA10902.