Support Support Downloads Knowledge Base Case Manager My Juniper Community

Knowledge Base

Search our Knowledge Base sites to find answers to your questions.

Ask All Knowledge Base Sites All Knowledge Base Sites JunosE Defect (KA)Knowledge BaseSecurity AdvisoriesTechnical BulletinsTechnotes Sign in to display secure content and recently viewed articles

RECALLED 20.1R1-S1: Software Release Notification for JUNOS Software Version 20.1R1-S1

0

0

Article ID: TSB17777 TECHNICAL_BULLETINS Last Updated: 07 May 2020Version: 3.0
Alert Type:
SRN - Software Release Notification
Product Affected:
SRX380
Alert Description:
Junos Software Service Release version 20.1R1-S1 is now available for download from the Junos software download site
Download Junos Software Service Release:
  1. Go to Junos Platforms - Download Software page
  2. Input your product in the "Find a Product" search box
  3. From the Type/OS drop-down menu, select Junos SR
  4. From the Version drop-down menu, select your version
  5. Click the Software tab
  6. Select the Install Package as need and follow the prompts
Solution:

NOTE: SRX380 software previously released with Junos software version 20.1R1-S1(.1) has been recalled and replaced with 20.1R1-S1.2 - See TSB17779 

Junos Software service Release version 20.1R1-S1 is now available.

20.1R1-S1 - List of Fixed issues

PR Number Synopsis Category: Firewall Policy
1492436 TCP-Proxy was mistakenly engaged in Unified-Policies when Web-Filtering was configured in a potential match policies.
Product-Group=junos
TCP-Proxy was mistakenly engaged in Unified-Policies when Web-Filtering was configured in any of the potential policy candidates. For customers who are only utilizing dynamic-applications and EWF in their policy, large performance improvements are seen with this fix.
PR Number Synopsis Category: Security platform jweb support
1499280 Junos OS: Security vulnerability in J-Web and web based (HTTP/HTTPS) services
Product-Group=junos
Junos OS: Security vulnerability in J-Web and web based (HTTP/HTTPS) services (CVE-2020-1631). Refer to https://kb.juniper.net/JSA11021 for more information.
PR Number Synopsis Category: Application specific PRs (cos/snmp/time-sync/routing/BRAS)
1493699 [subscriber_services] [all] JDI_BBE_REGRESSIONS: DHCP subscribers not coming up as expected after deactivating vcp port
Product-Group=junos
In 20.1R1, for MX-VC platforms, setting or deleting a VC port causes other VC ports on the same FPC/MIC slot to bring link state down for a few seconds, possibly interrupting communication with the other member chassis.
PR Number Synopsis Category: Issues related to PKI daemon
1489249 Has the risk of service interruption on all SRX platforms with a dual-stacked CA server
Product-Group=junos
On all SRX products with Online Certificate Status Protocol (OCSP) or Certificate Revocation List (CRL) configured which belongs to a dual-stacked (IPv4/IPv6) Certificate Authority (CA) server, and if one of the IP addresses gets failure, all the services that rely on it might be interrupted, as Junos only selects the first IP from the DNS response message as the IP of the OCSP or CRL.
PR Number Synopsis Category: security-intelligence feature on SRX
1491682 Security Intelligence would mistakenly engage tcp-proxy when ssl-proxy was not engaged, leading to reduced flow performance
Product-Group=junos
Security Intelligence would mistakenly engage tcp-proxy when ssl-proxy was not engaged, leading to reduced flow performance
PR Number Synopsis Category: SRX-1RU HA SW defects
1487951 If a cluster-id of 16 or multiples of 16 is used the cluster might not come up
Product-Group=junos
When using the SRX4600 firewall in a cluster, if a cluster-id of 16 or multiples of 16 is being used, the cluster might not come up.
PR Number Synopsis Category: Trio pfe bridging, learning, stp, oam, irb software
1493650 [evpn_vxlan] [default_switch_instance] After delete / add AE interfaces, noticing BUM loop
Product-Group=junos
If interface is newly added as CE interface, Existing bum traffic can be looped. Loop prevention features is designed to start working whenever new CE interface is added by configuration. But existing bum traffic can be distributed to new CE interface earlier than enabling of loop prevention feature.
Comment on this article > Affected Products Browse the Knowledge Base for more articles related to these product categories. Select a category to begin.

Getting Up and Running with Junos

Getting Up and Running with Junos Security Alerts and Vulnerabilities Product Alerts and Software Release Notices Problem Report (PR) Search Tool EOL Notices and Bulletins JTAC User Guide Customer Care User Guide Pathfinder SRX High Availability Configurator SRX VPN Configurator Training Courses and Videos End User Licence Agreement Global Search