Datasheet
161
Release Notes for Cisco IOS Release 12.1E on the Catalyst 6500 and Cisco 7600 Supervisor Engine and MSFC
OL-2310-11
Caveats
Resolved General Caveats in Release 12.1(23)E2
• A Cisco device running Cisco IOS and enabled for the Border Gateway Protocol (BGP) is
vulnerable to a Denial of Service (DoS) attack from a malformed BGP packet. Only devices with
the command ‘bgp log-neighbor-changes’ configured are vulnerable. The BGP protocol is not
enabled by default, and must be configured in order to accept traffic from an explicitly defined peer.
Unless the malicious traffic appears to be sourced from a configured, trusted peer, it would be
difficult to inject a malformed packet.
If a misformed packet is received and queued up on the interface, this bug may also be triggered by
other means which are not considered remotely exploitable such as the use of the command ‘show
ip bgp neighbors’ or running the command ‘debug ip bgp <neighbor> updates’ for a configured bgp
neighbor.
Cisco has made free software available to address this problem.
For more details, please refer to this advisory, available at
http://www.cisco.com/warp/public/707/cisco-sa-20050126-bgp.shtml
This problem is resolved in Release 12.1(23)E2. (CSCee67450)
• After you enter the squeeze command for a 32-MB bootflash device, you cannot write any files to
the bootflash. This problem is resolved in Release 12.1(23)E2. (CSCef15418)
• Traffic is routed in software when it uses a static ARP entry with an IP route that has a destination
that is a local interface instead of an IP next-hop address. A static ARP entry created after a dynamic
ARP has been learned prevents the updating of the dynamic ARP entry. This problem is resolved in
Release 12.1(23)E2. (CSCee49121)
• A reload might occur if the order-dependent ACL merge (ODM) algorithm fails. This problem is
resolved in Release 12.1(23)E2. (CSCin83455)
• After a reload, or following a switchover to a redundant supervisor engine, service policies that were
attached to Layer 3 VLAN interfaces are missing. This problem is resolved in Release 12.1(23)E2.
(CSCin80578)
• When the number of routing table entries exceeds the capacity of the hardware-forwarding
information base (FIB), the routing table entry for a default route might change so that traffic is
dropped instead of forwarded. This problem is resolved in Release 12.1(23)E2. (CSCin78197)
• Over an SSHv2 connection, the output from a command that displays many lines of text pauses until
you press a key. This problem is resolved in Release 12.1(23)E2. (CSCef61978)
• In rare situations, a reload might occur if you enter the show mls qos ip command. This problem is
resolved in Release 12.1(23)E2. (CSCef50318)
• With a Supervisor Engine 1, copying files with TFTP takes longer than usual because many
corrected errors occur during the copy process. This problem is resolved in Release 12.1(23)E2.
(CSCef26370)
• For QoS filtering, extended ACLs that are configured to match DSCP parse 7 bits of the ToS byte
instead of 6 bits. This problem is resolved in Release 12.1(23)E2. (CSCec86976)
• In rare situations, the MSFC might stop responding to received traffic. This problem is resolved in
Release 12.1(23)E2. (CSCef85654)
• Occasionally, these modules might lose the ability to communicate over the Ethernet Out of Band
Channel (EOBC) and reset:
–
WS-X6416-GBIC
–
WS-X6348-RJ-45
–
WS-X6148-RJ-45