BugZero | Cisco BugID CSCvk20336 - Ingress ping crash on asr1001x when packet size

BugZero | Cisco BugID CSCvk20336 - Ingress ping crash on asr1001x when packet size > ...

Cisco - Defect ID: CSCvk20336

Ingress ping crash on asr1001x when packet size > 9K

Cisco - Defect ID: CSCvk20336

Ingress ping crash on asr1001x when packet size > 9K

Last updated on October 17th, 2021

BugZero Risk Score
7.8 High

Overall: 7.8

Severity: 8.2

Lifecycle: 9.1

Popularity: 4.6

What is the BugZero Risk Score?

Cisco Integration

Learn more about where this data comes from

Cisco Integration

Learn more

Bug Scrub Advisor

Streamline upgrades with automated vendor bug scrubs

Bug Scrub Advisor

Learn more

BugZero Enterprise

Wish you caught this bug sooner? Get proactive today.

BugZero Enterprise

Learn more

Bug Details

Description

Symptom

This is a modification on the product to adopt new secure code best practices to enhance the security posture and resiliency of the product.

Conditions

Device running with default configuration. Specific Ingress extended ping command must be run on the device itself.

Workaround

limit ingress extended ping usage to 9000 or less

Further Problem Description

This issue was found during the resolution of a TAC case.

PSIRT Evaluation

The Cisco PSIRT has evaluated this issue and does not meet the criteria for PSIRT ownership or involvement. This issue will be addressed via normal resolution channels. If you believe that there is new information that would cause a change in the severity of this issue, please contact psirt@cisco.com for another evaluation. Additional information on Cisco's security vulnerability policy can be found at the following URL: http://www.cisco.com/en/US/products/products_security_vulnerability_policy.html

Change history

2021-10-17 Added: 16.10.1, 16.10.1a, 16.10.2, 16.10.3, 16.11.1a, 16.12.1a, 16.12.2, 16.12.2s, 16.12.3, 16.12.4, 16.12.5, 16.12.6, 16.3.10, 16.3.11, 16.3.8, 16.3.9, 16.6.10, 16.6.5, 16.6.6, 16.6.7, 16.6.8, 16.6.9, 16.8.2, 16.8.3, 16.9.2, 16.9.3, 16.9.4, 16.9.5, 16.9.6, 16.9.7, 16.9.8, 17.1.1, 17.2.1r, 17.2.2, 17.2.3, 17.3.1a, 17.3.2, 17.3.3, 17.3.4a, 17.4.1a, 17.4.1b, 17.4.2, 17.5.1a, 17.6.1a

Links

Original Vendor Announcement

Relevant Products

Click on a version to see all relevant bugs

Affected versions:No known affected versions

Fixed versions: 16.10.1, 16.10.1a, 16.10.2, 16.10.3, 16.11.1a, 16.12.1a, 16.12.2, 16.12.2s, 16.12.3, 16.12.4, 16.12.5, 16.12.6, 16.3.10, 16.3.11, 16.3.8, 16.3.9, 16.6.10, 16.6.5, 16.6.6, 16.6.7, 16.6.8, 16.6.9, 16.8.2, 16.8.3, 16.9.2, 16.9.3, 16.9.4, 16.9.5, 16.9.6, 16.9.7, 16.9.8, 17.1.1, 17.2.1r, 17.2.2, 17.2.3, 17.3.1a, 17.3.2, 17.3.3, 17.3.4a, 17.4.1a, 17.4.1b, 17.4.2, 17.5.1a, 17.6.1a

Relevant Products

Click on a version to see all relevant bugs

Affected versions:No known affected versions

Top Cisco Defects

9.7Defect ID: CSCvd48893
Cisco IOS and IOS XE Software Cluster Management Protocol Remote Code Execution Vulnerability
9.7Defect ID: CSCvv15096
9200L: SYS-3-CPUHOG: Task is running for (2843)msecs, more than (2000)msecs process = SAUtilReport.
9.7Defect ID: CSCwe01579
Cat9800 wncd reload while creating an RRM Client Coverage on large scale setup
9.7Defect ID: CSCwc66646
Unexpected Reload due to Segmentation Fault in the CCSIP_SPI_CONTROL process
9.7Defect ID: CSCwf08698
Cat9k Crashes Unexpectedly due to a Fault in the 'TLSCLIENT_PROCESS'

Ready to prevent the next vendor outage?

Get a demo

Cisco - Defect ID: CSCvk20336

Ingress ping crash on asr1001x when packet size > 9K

Cisco - Defect ID: CSCvk20336

Ingress ping crash on asr1001x when packet size > 9K

Last updated on October 17th, 2021

BugZero Risk Score7.8 High

Bug Details

Symptom

Conditions

Workaround

Further Problem Description

PSIRT Evaluation

Links

Top Cisco Defects

Ready to prevent the next vendor outage?

BugZero Risk Score
7.8 High