Support Support Downloads Knowledge Base Case Manager My Juniper Community

Knowledge Base

Search our Knowledge Base sites to find answers to your questions.

Ask All Knowledge Base Sites All Knowledge Base Sites JunosE Defect (KA)Knowledge BaseSecurity AdvisoriesTechnical BulletinsTechnotes Sign in to display secure content and recently viewed articles

17.4R3-S5: Software Release Notification for JUNOS Software Version 17.4R3-S5

0

0

Article ID: TSB18100 TECHNICAL_BULLETINS Last Updated: 06 Jul 2021Version: 1.0
Alert Type:
SRN - Software Release Notification
Product Affected:
ACX, EX, MX, PTX, QFX, NFX, SRX, VRR, vMX, vSRX
Alert Description:
Junos Software Service Release version 17.4R3-S5 is now available for download from the Junos software download site
Download Junos Software Service Release:
  1. Go to Junos Platforms - Download Software page
  2. Input your product in the "Find a Product" search box
  3. From the Type/OS drop-down menu, select Junos SR
  4. From the Version drop-down menu, select your version
  5. Click the Software tab
  6. Select the Install Package as need and follow the prompts
Solution:

Junos Software service Release version 17.4R3-S5 is now available.

17.4R3-S5 - List of Fixed issues
PR Number Synopsis Category: QFX L3 data-plane/forwarding
1416025 The QFX and EX switch may not install all IRB MAC addresses in the initialization
Product-Group=junos
On QFX5100/QFX5110/QFX5120/QFX5200/EX4600 which is configured as a layer 3 gateway in an EVPN topology, it may not install all MAC-addresses for the integrated bridging and routing (IRB) interface in the TCAM table. Even though the MAC-address for the IRB gets installed by removing and reconfiguration, but the MAC-address is missed again in the TCAM table after reboot.
1573411 The GRE egress traffic might not be forwarded between the different routing-instances.
Product-Group=junos
In the GRE tunnel with the routing-instances scenario, if the next-hop of GRE tunnel destination is learned from the different routing-instance (e.g. the next-hop is learned via leaked route), it might be rejected to be installed into the routing table. Then, the egress GRE traffic will not be forwarded via the egress physical interface, the GRE traffic across the different routing-instances might not be forwarded.
PR Number Synopsis Category: QFX PFE MPLS
1528409 Junos OS: EX4300-MP/EX4600/EX4650/QFX5K Series: Packet Forwarding Engine manager (FXPC) process crashes when deployed in a Virtual Chassis (VC) configuration (CVE-2021-0237)
Product-Group=junos
On Juniper Networks EX4300-MP Series, EX4600 Series, EX4650 Series, QFX5K Series deployed as a Virtual Chassis with a specific Layer 2 circuit configuration, Packet Forwarding Engine manager (FXPC) process may crash and restart upon receipt of specific layer 2 frames. Refer to https://kb.juniper.net/JSA11132 for more information.
PR Number Synopsis Category: Accounting Profile
1509114 The pfed might crash when running 'show pfe fpc x'.
Product-Group=junos
When the pfed is running on a 64 bit machine, it might crash after issuing the command "show pfe fpc x".
PR Number Synopsis Category: ACX GE, 10GE, PoE, IDT framers
1530862 Packets drops might be seen after configuring the PTP transparent clock.
Product-Group=junos
On ACX1k, ACX2k, and ACX4k platforms, configuring PTP (Precision Time Protocol) transparent clock (set protocols ptp e2e-transparent/transparent-clock) on a port that uses Broadcom "BCM54640" results in the port going down or Tx/Rx failing.
PR Number Synopsis Category: MIBs related to BBE
1455667 The SmiHelperd process is not initialized in the Junos OS PPC Releases.
Product-Group=junos
After Software Upgrade, SNMP MIB Walk does not Poll/Fetch any Information
PR Number Synopsis Category: Border Gateway Protocol
1437837 The rpd might crash in case multipath is enabled, as BGP multipath teardown is called for secondary route even though secondary routes are considered for multipath.
Product-Group=junos
This issue applies to Junos platforms with BGP multipath configured under a routing-instance and a RIB group is deployed to leak routes from that routing-instance to another routing table. "rpd" may restarts unexpectedly when performing multipath calculation operations for the secondary routes - (such as, removing the rib-groups/bouncing BGP neighbor under routing-instance.) The secondary routes refer to the second RIB in a RIB (Routing Information Base) group.
1446383 The BGP route prefixes are not being advertised to the peer.
Product-Group=junos
In the graceful-restart and delay-route-advertisements are configured scenario, when a BGP router is waiting for the End-Of-Rib message from the upstream BGP peer, the received corresponding set of NLRI (network layer reachability information) might be held in the Rib-Out and not being sent to the downstream BGP peers. This issue will cause the route update failure.
1492743 The BGP route-target family might prevent the route reflector from reflecting Layer 2 VPN and Layer 3 VPN routes.
Product-Group=junos
If the user only sets protocols bgp local-as <> without configuring routing-options autonomous-system <> or having a different autonomous-system number than local-as, the iBGP Route-Reflector (RR) will treat the route-target (RT) routes from iBGP neighbor PEs as an external prefix, and by default, the external peer number is limited to one for a given Route Target, in this case, the Route-Reflector might not reflect L2VPN and L3VPN prefixes to some iBGP clients advertised the same RT prefixes.
PR Number Synopsis Category: MX Platform SW - Power Management
1545838 FPC(s) may not boot-up on MX960/EX9214 in a certain condition
Product-Group=junos
On MX960/EX9214 platforms with high-capacity/normal-capacity power supplies, FPC(s) may fail to come online when the corresponding power is restored afterward but not present during the power-up stage.
PR Number Synopsis Category: Channelized 4xOC3/1xOC-12 Mic Software
1375348 Input resource errors increasing with TCP traffic on MX channelized MIC interface
Product-Group=junos
When TCP packets are received on an interface belonging to MIC-4COC3-2COC12-G,MIC-8COC3-4COC12-G or MIC-3D-8DS3-E3 on MX series router, input "Resource errors" counter on the interface may increase. This does not have any impact on traffic and the TCP packets are still forwarded successfully.
PR Number Synopsis Category: MX-ELM l2ng stormcontrol
1552815 The action-shutdown command of storm control does not work for the ARP broadcast packets.
Product-Group=junos
With knob 'action-shutdown' configured in storm control scenario, the interface will not go to shutdown state if ARP storm exceeds the configured limit. The excess packets will be dropped normally.
PR Number Synopsis Category: Layer 3 forwarding, both v4+v6
1477261 Junos OS: ACX5448, ACX710: BFD sessions might flap due to high rate of transit ARP packets (CVE-2021-0216)
Product-Group=junos
A vulnerability in Juniper Networks Junos OS running on the ACX5448 and ACX710 platforms may cause BFD sessions to flap when a high rate of transit ARP packets are received. This, in turn, may impact routing protocols and network stability, leading to a Denial of Service (DoS) condition. Please refer to https://kb.juniper.net/JSA11118 for more information.
PR Number Synopsis Category: Kernel software for AE/AS/Container
1528605 Junos OS: Memory leak when querying Aggregated Ethernet (AE) interface statistics (CVE-2021-0230)
Product-Group=junos
On Juniper Networks Junos OS platforms with link aggregation (lag) configured, executing any operation that fetches Aggregated Ethernet (AE) interface statistics, including but not limited to SNMP GET requests, causes a slow kernel memory leak. Refer to https://kb.juniper.net/JSA11125 for more information.
PR Number Synopsis Category: Optical Transport Interface
1475777 The interface on MIC3-100G-DWDM might go down after performing an interface flap.
Product-Group=junos
On MX with MIC3-100G-DWDM installed, after performing an interface flap, the interface on 100G DWDM MIC might be going down.
PR Number Synopsis Category: ISIS routing protocol
1338448 RPd core seen during changes
Product-Group=junos
Core occur when freeing sensor which is already freed. Spring interface sensor store sensor id in gencfg. while deleting this sensor, it is sometime possible that IPC to gencfg failed result gencfg still present which will be read when again interface come up. This gencfg sensor might allocated to autobw hence 2 time allocated so while freeing same sensor again it result in core.
PR Number Synopsis Category: jdhcpd daemon
1564434 Junos OS: Receipt of malformed DHCPv6 packets causes jdhcpd to crash and restart. (CVE-2021-0240)
Product-Group=junos
On Juniper Networks Junos OS platforms configured as DHCPv6 local server or DHCPv6 Relay Agent, the Juniper Networks Dynamic Host Configuration Protocol Daemon (JDHCPD) process might crash if a malformed DHCPv6 packet is received, resulting in a restart of the daemon. The daemon automatically restarts without intervention, but continued receipt and processing of this packet will create a sustained Denial of Service (DoS) condition. Please refer to https://kb.juniper.net/JSA11168 for more information.
PR Number Synopsis Category: Layer 2 Control Module
1561235 The l2cpd process might generate a core file on reboot.
Product-Group=junos
When xSTP is used, the l2cpd core might be seen on reboot. This will be a one-time core and will not impact on functionality.
PR Number Synopsis Category: lacp protocol
1551925 AE interface flap might be seen during NSSU
Product-Group=junos
On the EX2300/EX3400/EX4400 platforms, AE (Aggregate Ethernet) interface flap might be seen during NSSU (Nonstop Software Upgrade) for AE with LACP (Link Aggregation Control Protocol) configured. The issue results in traffic outage and flaps in other protocols (e.g. OSPF) running over this AE.
PR Number Synopsis Category: Label Distribution Protocol
1538124 The rpd process might crash when the LDP route with indirect next hop is deleted on the aggregated Ethernet interface.
Product-Group=junos
If the Label Distribution Protocol (LDP) route with indirect next-hop exists (e.g. LDP egress-policy is used to advertise BGP route into LDP), the rpd might crash when the LDP route is deleted from the AE interface.
PR Number Synopsis Category: Kernel Composite Next Hop (composite / l3vpn) Infrastructure
1548545 The kernel crash with core file might be seen if churn happens for a flood composite next hop.
Product-Group=junos
After continuous churn happens for a flood composite next hop, the kernel crash might be seen.
PR Number Synopsis Category: TCP/UDP transport layer
1552603 The BGP session replication might fail to start after the session crashes on the backup Routing Engine.
Product-Group=junos
On certain Junos platforms with Dual-REs (platforms capable of installing Junos packages with name format as "junos*install"), BGP replication may fail to start under GRES/NSR setup after a crash on backup Routing Engine. NSR starts un-replicating the socket since backup Routing Engine is no longer present. Massive unreplicated request leads to memory buffer getting full with multiple BGP sessions (e.g., 20 BGP peers). Hence BGP unreplicated request returned with an error. Besides, the kernel is left with stale data. It does not allow the JSR (Juniper Socket Replication, BGP in this case) when backup RE comes up due to the stale data. BGP-NSR (Nonstop Routing) is broke under the conditions. Traffic outage will be observed after performing GRES.
PR Number Synopsis Category: analyzer on QFX 5100,5200, 5110
1557274 Traffic storm might be caused by the analyzer due to the flapping of the link.
Product-Group=junos
On all Junos platforms with port mirroring analyzers configured, if multiple paths for the Analyzer IP configured and default route flaps then a traffic storm might be observed due to mirroring of traffic on the wrong port and analyzer might not work as expected.
PR Number Synopsis Category: QFX L2 PFE
1535555 The following Packet Forwarding Engine error message is observed in the BRCM-VIRTUAL: brcm_virtual_tunnel_port_create() ,489: Failed NW vxlan port token(45) hw-id(7026) status(Entry not found).
Product-Group=junos
On a QFX5110 or QFX5120, when the Type 5 tunnels are destroyed, sometime we can see error messages "brcm_virtual_tunnel_port_create() ,489:Failed NW vxlan port token(45) hw-id(7026) status(Entry not found)". There is no functionality impact due to this.
PR Number Synopsis Category: RPD route tables, resolver, routing instances, static routes
1482112 The rpd process might crash when deactivating logical systems.
Product-Group=junos
On all Junos platforms running with logical systems, if the logical systems get deactivated either by manually restarting the rpd process or by the deletion of the logical system configurations, the rpd process might crash in a race condition. It is a timing issue.
PR Number Synopsis Category: SNMP Infrastructure (snmpd, mib2d)
1458057 Junos OS: SNMP fails to properly perform authorization checks on incoming received SNMP requests (CVE-2021-0260)
Product-Group=junos
An improper authorization vulnerability in the Simple Network Management Protocol daemon (snmpd) service of Juniper Networks Junos OS leads an unauthenticated attacker being able to perform SNMP read actions, an Exposure of System Data to an Unauthorized Control Sphere, or write actions to OIDs that support write operations, against the device without authentication. Please refer to https://kb.juniper.net/JSA11151 for more information.
PR Number Synopsis Category: Generic platform and infra issues for MS-MIC and MS-MPC(XLP)
1453811 Delay in freeing processed defragment buffers lead to prolonged flow control and might crash.
Product-Group=junos
On Juniper Networks Junos MX Series with service card configured, receipt of a stream of specific packets may crash the MS-PIC component on MS-MIC or MS-MPC. Refer to https://kb.juniper.net/JSA11037 for more information.
PR Number Synopsis Category: Trio pfe qos software
1479240 Some error logs might be reported every 2 minutes due to SRAM single bit ECC error which is a transient hardware issue on Trio-based line card with queuing chip
Product-Group=junos
Upon parity error while retrieving the max-queue depth information a syslog error is reported every 2 minutes. The severity of this syslog is moved from error to info level and which interface is affected. There is no operational impact due to this issue.
PR Number Synopsis Category: Trio pfe bridging, learning, stp, oam, irb software
1542211 Trio-based FPC might crash when the underlying Layer 2 interface for ARP over IRB interface is changed from the physical interface to the LSI interface.
Product-Group=junos
This issue applies to a Trio-based FPC using the integrated routing and bridging (IRB) interface with a VPLS instance using the label-switched interface (LSI) to provide VPLS functionality. The FPC may restart unexpectedly. The restart is triggered when the underlying layer-2 interface for ARP over IRB interface changes from the physical interface to the LSI interface.
PR Number Synopsis Category: DDos Support on MX
1562474 The DHCPv4 request packets might be wrongly dropped when DDoS attack occurs.
Product-Group=junos
On MX platform, T4000 platform and EX9200 platform, end-users or end-hosts might not get an IPv4 address from Dynamic Host Configuration Protocol (DHCP) server when Distributed Denial-of-Service (DDOS) attack is happened on DHCP rebind packets or renew packets. In the end, end-users or end-hosts could not access into network after lease time of the IPv4 address expired.
PR Number Synopsis Category: Configuration mgmt, ffp, load-action, commit processing
1468119 Daemons might not be started if commit is executed after commit check.
Product-Group=junos
On Junos OS Release from 16.2R1 onwards, if commit is executed after commit check, the daemon (for example, dhcpd and sampled) might not get started even after the related configuration is successfully committed.
 

17.4R3-S5 - List of Known issues
PR Number Synopsis Category: EX4300 PFE
1595797 The Egress RACL Firewall filter might not get programmed correctly on EX4300 platforms
Product-Group=junos
On EX4300 platforms, the Egress RACL(Routed ACLs) Firewall filter might not get programmed correctly, if there is any modification made in the filter which is already attached to an interface and it is the only filter in the group. The traffic through the interface will be impacted.
PR Number Synopsis Category: JUNOS kernel/ukernel changes for ACX
1483959 On the ACX5048 router, traffic loss is observed during the unified ISSU upgrade.
Product-Group=junos
On ACX5048/ACX5096 platforms, there might be issues with packet processing on the interfaces post ISSU. The upgrade happens without any issue, however, after the upgrade, the ports does not get enabled in PFE (Packet Forwarding Engine) which might result in traffic loss. This issue is seen when an internal register value gets reset to 0 during ISSU.
PR Number Synopsis Category: ACX L2 related features
1565642 MAC aging might not work when there is active traffic destined to the MAC address on ACX platforms
Product-Group=junos
On certain ACX platforms, MAC address entries might not be deleted from the MAC table at the end of 'mac-table-aging-time' timer when there is active traffic destined to that MAC address. When the issue happens, it might reduce the number of new MAC addresses that can be learned. If the ethernet-switching table overflows, no new MAC addresses will be learned, which might cause traffic flooding.
PR Number Synopsis Category: Control Plane and Infrastructure for the Junos Fusion Enterprise
1188254 Junos Fusion Enterprise: LLDP might stop working if manually deactivated and reactivated
Product-Group=junos
On a Junos Fusion Enterprise, LLDP might stop working if it is reenabled after being manually disabled.
PR Number Synopsis Category: Border Gateway Protocol
1483097 The BGP RPKI ROA withdrawal might lead to an unexpected BGP route flap.
Product-Group=junos
Originally, when an RPKI RTR server or an RPKI Validator withdraws ROAs they are marked as "stale" and then flushed when the garbage collection timer runs out. For the short period of time, this might result in incorrect validation status. If there's an ingress BGP policy which suppresses routes with validation status of invalid, the affected routes are deleted locally (as well as withdrawn from its neighbors). Later, when the withdrawn ROA is flushed, the validation state of the routes are corrected to unknown and the routes are re-installed and re-advertised. With this fix, the withdrawn ROAs are deleted from the validation database immediately, so that the affected routes transition to unknown state directly resulting in no route flaps.
PR Number Synopsis Category: build and packaging related PRs and features using WRL Yocto
1368059 VM HOST Routing Engine with file resources exhaustion causes the device to reboot or become unresponsive
Product-Group=junos
After a series of Junos upgrade procedures are processed on the VMHOST based Routing Engine, system file leaking issue might happen which could result in system reboot or system becomes unresponsive. System upgrade or downgrade FROM 'ANY Junos release without the fix of PR1368059 ' TO 'ANY Junos release without the fix of PR1368059 ' can potentially introduce the mentioned issue. Please refer to TSB17999 (https://kb.juniper.net/TSB17999) for more details.
PR Number Synopsis Category: JUNOS Dynamic Profile Configuration Infrastructure
1424607 A stuck lock in shared memory might prevent subscribers from logging in again after deamon crash
Product-Group=junos
On all Junos platforms with subscriber scenario, if a daemon (e.g. jpppd or jl2tpd) crash happens when it was doing activities with the shared memory, for example, dealing with dynamic profile requests, a stuck lock in shared memory might happen and it will prevent the impacted subscribers from logging in again after the daemon crash. It's a rare timing issue.
PR Number Synopsis Category: idp flow creation, deletion,notification, session mgr intfce
1455125 IDP database file format or convention has changed in Junos OS Release 15.1X49 and later releases. So, if the IDP configuration contains some predefined attacks or attack-groups related configurations, then the system will go to amnesiac mode after upgrade. This is due to the failure in IDP configuration commit.
Product-Group=junos
IDP db file format or convention has changed in Junos OS Release 15.1X49 and later releases. So, if the IDP configuration contains some predefined attacks or attack-groups related configurations, then the system will go to amnesiac mode after upgrade. This is due to the failure in IDP configuration commit.
PR Number Synopsis Category: jdhcpd daemon
1534814 Junos OS: Receipt of a crafted DHCP packet will cause the jdhcpd DHCP service to core (CVE-2021-0267)
Product-Group=junos
An Improper Input Validation vulnerability in the active-lease query portion in JDHCPD's DHCP Relay Agent of Juniper Networks Junos OS allows an attacker to cause a Denial of Service (DoS) by sending a crafted DHCP packet to the device thereby crashing the jdhcpd DHCP service. This is typically configured for Broadband Subscriber Sessions. Please refer to https://kb.juniper.net/JSA11158 for more information.
PR Number Synopsis Category: QFX EVPN / VxLAN
1561588 Dcpfe process might crash on after committing EVPN-VXLAN profile configuration and ARP resolution may fail causing traffic issues.
Product-Group=junos
Dcpfe process might crash on after committing EVPN-VXLAN profile configuration and ARP resolution may fail causing traffic issues.
PR Number Synopsis Category: Generic platform and infra issues for MS-MIC and MS-MPC(XLP)
1358019 Traffic might be blocked on MX with MS-MPC/MS-MIC
Product-Group=junos
On MX Series platforms with MS-MPC or MS-MIC, if a large sum of similar packets (for example, thousands of packets) are received, because of the flaw in the method to process these packets, data/management path was completely blocked and dead locked. Eventually, traffic might be blocked.
PR Number Synopsis Category: Trio pfe stateless firewall software
1438367 Arrival rates are not seen at the system level when the global-disable FPC is configured.
Product-Group=junos
Arrival rates are not seen at system level when global-disable fpc is configured on qfx
 
Modification History:
First publication 2021-07-06
Comment on this article > Affected Products Browse the Knowledge Base for more articles related to these product categories. Select a category to begin.

Getting Up and Running with Junos

Getting Up and Running with Junos Security Alerts and Vulnerabilities Product Alerts and Software Release Notices Problem Report (PR) Search Tool EOL Notices and Bulletins JTAC User Guide Customer Care User Guide Pathfinder SRX High Availability Configurator SRX VPN Configurator Training Courses and Videos End User Licence Agreement Global Search