Cisco Cisco IOS Software Release 12.4(23)
377
Caveats for Cisco IOS Release 12.4
OL-7656-15 Rev. J0
Resolved Caveats—Cisco IOS Release 12.4(12b)
This advisory is posted at
•
CSCsf08998
Multiple voice-related vulnerabilities are identified in Cisco IOS software, one of which is also
shared with Cisco Unified Communications Manager. These vulnerabilities pertain to the following
protocols or features:
shared with Cisco Unified Communications Manager. These vulnerabilities pertain to the following
protocols or features:
–
Session Initiation Protocol (SIP)
–
Media Gateway Control Protocol (MGCP)
–
Signaling protocols H.323, H.254
–
Real-time Transport Protocol (RTP)
–
Facsimile reception
Cisco has made free software available to address these vulnerabilities for affected customers. Fixed
Cisco IOS software listed in the Software Versions and Fixes section contains fixes for all
vulnerabilities mentioned in this advisory.
Cisco IOS software listed in the Software Versions and Fixes section contains fixes for all
vulnerabilities mentioned in this advisory.
There are no workarounds available to mitigate the effects of any of the vulnerabilities apart from
disabling the protocol or feature itself.
disabling the protocol or feature itself.
This advisory is posted at
•
CSCsf28509
Symptoms: When you enter the clear ip dhcp binding command to clear DHCP bindings, the
corresponding DHCP-initiated subscriber sessions are not cleared.
corresponding DHCP-initiated subscriber sessions are not cleared.
Conditions: This symptoms is observed on a Cisco router that functions as an Intelligent Service
Gateway (ISG).
Gateway (ISG).
Workaround: Enter the clear ip subscriber command to clear the subscriber sessions.
•
CSCsg21401
Symptoms: Calls may fail on a gatekeeper. When this situation occurs, you may not be able to Telnet
or ping to the gatekeeper, and the logs of the gatekeeper contain several error messages with
tracebacks that indicate "bad id in id_get". In addition, gateways may also unregister from the
gatekeeper.
or ping to the gatekeeper, and the logs of the gatekeeper contain several error messages with
tracebacks that indicate "bad id in id_get". In addition, gateways may also unregister from the
gatekeeper.
The following error message and traceback are generated when the symptom occurs:
%IDMGR-3-INVALID_ID: bad id in id_get (Out of IDs!) (id: 0x6445D720)
-Traceback= 0x6114DA04 0x622C7944 0x610F767C 0x610F8228 0x610F8138 0x6110C854
0x6110CBB8 0x60074F1C 0x60063D74 0x60040B94 0x60052A84 0x6002637C 0x60028AB0
Symptoms: This symptom is observed on a Cisco platform that functions as a gatekeeper in an H.323
environment.
environment.
Workaround: There is no workaround.
•
CSCsg40567
Symptoms: Malformed SSL packets may cause a router to leak multiple memory blocks.
Conditions: This symptom is observed on a Cisco router that has the ip http secure server command
enabled.
enabled.
Workaround: Disable the ip http secure server command.