Datasheet
164
Release Notes for Cisco IOS Release 12.1E on the Catalyst 6500 and Cisco 7600 Supervisor Engine and MSFC
OL-2310-11
Caveats
resources and reload. Repeated exploitation of these vulnerabilities can result in a Denial of Service
(DoS) condition. Use of SSH with Remote Authentication Dial In User Service (RADIUS) is not
affected by these vulnerabilities.
Cisco has made free software available to address these vulnerabilities for all affected customers.
There are workarounds available to mitigate the effects of the vulnerability (see the “Workarounds”
section of the full advisory for details.)
This advisory will be posted at
http://www.cisco.com/warp/public/707/cisco-sa-20050406-ssh.shtml.
This problem is resolved in Release 12.1(23)E. (CSCed65285)
• A reload might occur if you apply egress WAN QoS features to an ingress WAN interface. This
problem is resolved in Release 12.1(23)E. (CSCin77116)
• If you create a new SNMP probe (for example, index $PROBE_ID) in the CREATE_AND_WAIT
state, SNMP probes that have index numbers that are greater than $PROBE_ID are not shown in the
output of the show rtr configuration and show rtr operation-state commands. This problem is
resolved in Release 12.1(23)E. (CSCin63066)
• If you configure the RPR redundancy mode and Cisco IOS SLB, switchover to a redundant
supervisor engine might fail and you might not be able to access the active supervisor engine. This
problem is resolved in Release 12.1(23)E. (CSCee70320)
• When an ARP entry is internally rearranged during the ARP table lookup process and when a race
condition occurs between the ARP table lookup process and other processes, a reload might occur
when the ARP entry ages out. This problem is resolved in Release 12.1(23)E. (CSCea70296)
• UDP port 1985 is open. This problem is resolved in Release 12.1(23)E. (CSCdt64533)
• In rare situations, a reload might occur when the FIB TCAM goes in and out of the FIB TCAM
exception condition. This problem is resolved in Release 12.1(23)E. (CSCin75706)
• Traffic loss might occur if you configure a loopback interface with an IP address that is already in
use elsewhere in the network and there are multiple paths to the prefix. This problem is resolved in
Release 12.1(23)E. (CSCee85152)
• Boot failure might occur when there are more than 256 different policy maps attached as service
policies. This problem is resolved in Release 12.1(23)E. (CSCee24349)
• A small (approximately 180 bytes) memory leak occurs when you delete a logical interface. This
problem is resolved in Release 12.1(23)E. (CSCee05413)
• Receiving CDP packets with a host name that is 256 or more characters long might cause a memory
leak in the CDP process. This problem is resolved in Release 12.1(23)E. (CSCin67568)
• Following switchover to a redundant supervisor engine, any EtherChannels on the newly active
supervisor engine are not active and the newly redundant supervisor engine does not enter the
standby state. This problem is resolved in Release 12.1(23)E. (CSCee44248)
• Traffic through a port-channel interface that has a Cisco IOS ACL configured might be dropped or
switched in software after a reload or after switchover to a redundant supervisor engine or after you
enter shutdown and no shutdown interface commands on a member port. This problem is resolved
in Release 12.1(23)E. (CSCee21772)
• After you configure a tunnel to support DECnet with assigned DECnet cost and then delete the
tunnel configuration, a reload might occur if you disable DECnet routing. This problem is resolved
in Release 12.1(23)E. (CSCed88563)
• If you change the STP root bridge, a Layer 2 loop might exist very briefly. This problem is resolved
in Release 12.1(23)E. (CSCed85411)