Datasheet
215
Release Notes for Cisco IOS Release 12.1E on the Catalyst 6500 and Cisco 7600 Supervisor Engine and MSFC
OL-2310-11
Caveats
• Cisco routers and switches running Cisco IOS software and configured to process Internet Protocol
version 4 (IPv4) packets are vulnerable to a Denial of Service (DoS) attack. A rare sequence of
crafted IPv4 packets sent directly to the device may cause the input interface to stop processing
traffic once the input queue is full. No authentication is required to process the inbound packet.
Processing of IPv4 packets is enabled by default. Devices running only IP version 6 (IPv6) are not
affected. A workaround is available.
Cisco has made software available, free of charge, to correct the problem.
This advisory is available at:
http://www.cisco.com/warp/public/707/cisco-sa-20030717-blocked.shtml
This problem is resolved in Release 12.1(19)E. (CSCdz71127)
• Cisco routers and switches running Cisco IOS software and configured to process Internet Protocol
version 4 (IPv4) packets are vulnerable to a Denial of Service (DoS) attack. A rare sequence of
crafted IPv4 packets sent directly to the device may cause the input interface to stop processing
traffic once the input queue is full. No authentication is required to process the inbound packet.
Processing of IPv4 packets is enabled by default. Devices running only IP version 6 (IPv6) are not
affected. A workaround is available.
Cisco has made software available, free of charge, to correct the problem.
This advisory is available at:
http://www.cisco.com/warp/public/707/cisco-sa-20030717-blocked.shtml
This problem is resolved in Release 12.1(19)E. (CSCea02355)
• Incorrect flooding might occur in a 13-slot chassis with DFCs. This problem is resolved in
Release 12.1(19)E. (CSCeb11577)
• You can incorrectly configure a less-specific flowmask when you have features configured that
require a more-specific flowmask. This problem is resolved in Release 12.1(19)E. (CSCea86541)
• In a topology that uses VLAN interfaces for intermediate router connections, PIM register and PIM
register stop messages might loop between the intermediate routers until the TTL count expires.
This problem is resolved in Release 12.1(19)E. (CSCea82353)
• Hardware failures on the WS-X6548-RJ-45 module are not detected. This problem is resolved in
Release 12.1(19)E. (CSCea73615)
• With the fastest aging time configured and the highest flow creation rates configured, the statistics
exported by NetFlow data export are not accurate. The inaccuracy is reduced in Release 12.1(19)E.
(CSCea72771)
• When using stateful Cisco IOS SLB and with the standby preempt command configured on some
interfaces, a switchover to the redundant supervisor engine might cause high CPU utilization. This
problem is resolved in Release 12.1(19)E. (CSCea54756)
• With IP inspection configured, a reload might occur following an “%ALIGN-1-FATAL” message.
This problem is resolved in Release 12.1(19)E. (CSCea51320)
• Hardware-supported ACLs without any ACEs do not implicitly deny all traffic. This problem is
resolved in Release 12.1(19)E. (CSCea17192)
• A reload might occur if you configure an IP address that is a duplicate of an IP address configured
on a redistributed BGP peer. This problem is resolved in Release 12.1(19)E. (CSCdz30644)
• Following loss of the link to the PBR next hop, the new next hop information is not programmed
into hardware immediately. This problem is resolved in Release 12.1(19)E. (CSCdy28888)