Cisco Cisco IOS XR Software Release 3.9
36
Release Notes for Cisco ASR 9000 Series Aggregation Services Routers for Cisco IOS XR Software Release 3.9.1
OL-22786-01
Upgrading Cisco IOS XR Software
Symptom:
Cisco IOS XR Software contains a vulnerability in the Border Gateway Protocol (BGP) feature. The
vulnerability manifests itself when a BGP peer announces a prefix with a specific, valid but
unrecognized transitive attribute. On receipt of this prefix, the Cisco IOS XR device will corrupt the
attribute before sending it to the neighboring devices. Neighboring devices that receive this
corrupted update may reset the BGP peering session.
vulnerability manifests itself when a BGP peer announces a prefix with a specific, valid but
unrecognized transitive attribute. On receipt of this prefix, the Cisco IOS XR device will corrupt the
attribute before sending it to the neighboring devices. Neighboring devices that receive this
corrupted update may reset the BGP peering session.
Conditions:
Affected devices running Cisco IOS XR Software corrupt the unrecognized attribute before sending
to neighboring devices, but neighboring devices may be running operating systems other than Cisco
IOS XR Software and may still reset the BGP peering session after receiving the corrupted update.
This is per standards defining the operation of BGP.
to neighboring devices, but neighboring devices may be running operating systems other than Cisco
IOS XR Software and may still reset the BGP peering session after receiving the corrupted update.
This is per standards defining the operation of BGP.
Workaround:
No workaround. Cisco developed a fix that addresses this vulnerability and will be releasing free
software maintenance upgrades (SMUs) progressively starting 28 August 2010.
software maintenance upgrades (SMUs) progressively starting 28 August 2010.
http://www.cisco.com/warp/public/707/cisco-sa-20100827-bgp.shtml
Upgrading Cisco IOS XR Software
Cisco IOS XR software is installed and activated from modular packages, allowing specific features or
software patches to be installed, upgraded, or downgraded without affecting unrelated processes.
Software packages can be upgraded or downgraded on all supported card types, or on a single card
(node).
software patches to be installed, upgraded, or downgraded without affecting unrelated processes.
Software packages can be upgraded or downgraded on all supported card types, or on a single card
(node).
Software packages are installed from package installation envelope (PIE) files that contain one or more
software components. Refer to
software components. Refer to
Table 1
for a list of the Cisco ASR 9000 Series Router software feature
set matrix (PIE files) and associated filenames available for the Cisco IOS XR Software Release 3.9.1
supported on the Cisco ASR 9000 Series Router.
supported on the Cisco ASR 9000 Series Router.
The following URL contains links to information about how to upgrade Cisco IOS XR software:
For information on troubleshooting Cisco IOS XR software, see the
Cisco ASR 9000 Series Aggregation Services Routers Getting Started Guide and the Cisco ASR 9000
Series Router Troubleshooting Feature Module.
Cisco ASR 9000 Series Aggregation Services Routers Getting Started Guide and the Cisco ASR 9000
Series Router Troubleshooting Feature Module.