CVE-2020-26070 | Cisco IOS XR»Ø¾ø·þÎñ·ì϶¹«¸æ

°ä²¼¹¦·ò 2020-11-11

0x00 ·ì϶¸ÅÊö

CNVD   ID

CVE-2020-26070

ʱ      ¼ä

2020-11-11

Àà     ÐÍ

»Ø¾ø·þÎñ

µÈ      ¼¶

¸ßΣ

Ô¶³ÌÀûÓÃ

ÊÇ

Ó°ÏìÁìÓò

Cisco IOS XR < 6.7.2µÄ Cisco ASR 9000ϵÁÐ

Cisco IOS XR < 7.1.2µÄCisco ASR 9000ϵÁÐ

 

0x01 ·ì϶ÏêÇé

 image.png


2020Äê11ÔÂ10ÈÕ£¬Cisco°ä²¼°²È«¹«¸æ£¬ÆäºÏÓÃÓÚCisco ASR 9000ϵÁеÄCisco IOS XRϵͳµÄÊý¾Ý°ü´¦ÖÃÖ°ÄÜÖдæÔÚÒ»¸ö»Ø¾ø·þÎñ·ì϶£¨CVE-2020-26070£©£¬¸Ã·ì϶CVSSÆÀ·Ö8.6¡£

¸Ã·ì϶ÊÇÉ豸ÔÚswitching mode (punted)Ï´¦ÖÃÍøÂçÁ÷Á¿Ê±×ÊÔ´·ÖÅä²»µ±µ¼ÖµÄ¡£¹¥»÷ÕßÄܹ»Í¨¹ý·¢ËͶñÒâµÄ2²ã»ò3²ãºÍ̸Êý¾Ýµ¥Ôª£¨PDU£©À´ÀûÓô˷ì϶¡£³É¹¦ÀûÓô˷ì϶½«Ê¹µÃÉ豸»º³åÇø×ÊÔ´ºÄ¾¡£¬×îÖÕµ¼Ö»ؾø·þÎñ¡£É豸±ØÒª³ÁÐÂÆô¶¯ÄÜÁ¦Õý³£ÔËÐС£

µ±É豸»º³åÇø×ÊÔ´ºÄ¾¡Ê±£¬¿ÉÄÜÔÚϵͳÈÕÖ¾Öп´µ½ÒÔÏÂÐÂÎÅ£º

%PKT_INFRA-spp-4-PKT_ALLOC_FAIL : Failed to allocate n packets for sending

µ«»º³åÇø×ÊÔ´ºÄ¾¡Ò²¿ÉÄÜÊÇ·ì϶ÀûÓÃÖ®±íµÄÆäËûÔ­Òòµ¼ÖµÄ£¬Ðè¾ßÌåÇé¿ö¾ßÌå·ÖÎö¡£


0x02 ´ëÖý¨Òé

Ä¿Ç°CiscoÒѾ­½¨¸´ÁË´Ë·ì϶¡£½¨ÒéÉý¼¶ÖÁ£º

Cisco IOS XR 6.7.2¼°¸ü¸ß°æ±¾

Cisco IOS XR 7.1.2¼°¸ü¸ß°æ±¾

ÏÂÔصØÖ·£º

https://software.cisco.com/download/find


0x03 ²Î¿¼Á´½Ó

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-xr-cp-dos-ej8VB9QY

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26070


0x04 ¹¦·òÏß

2020-11-10  Cisco°ä²¼°²È«²¼¸æ

2020-11-11  VSRC°ä²¼°²È«¹«¸æ

 

0x05 ¸½Â¼

 

CVSSÆÀ·Ö³ß¶È¹ÙÍø£ºhttp://www.first.org/cvss/

 

image.png