| |
|
Alert Type: | Updated * |
Bug Id: | CSCuo73682 | Title: | Router locks up after Bing search must be rebooted - No crash dump. |
|
Status: | Fixed |
|
Severity: | 1 Catastrophic |
Description: * | Symptoms:
A vulnerability in the Network Based Application Recognition (NBAR) protocol process of the Cisco 2900 Integrated Services Router could allow an
unauthenticated remote attacker to cause a denial of service.
The vulnerability is due to the Network Based Application Recognition (NBAR) process locking up. An attacker could exploit this by sending
simple IP Version 4 packets through the router. An exploit could allow the attacker to cause a denial of service event that would require a
router restart
Conditions:
NBAR Processes running on Internet Interface.
Workaround:
None.
Further Problem Description:
NBAR running on a 2900 series router interface.
PSIRT Evaluation:
The Cisco PSIRT has assigned this bug the following CVSS version 2 score. The Base and Temporal CVSS scores as of the time of evaluation are 7.1/5.9:
http://tools.cisco.com/security/center/cvssCalculator.x?vector=AV:N/AC:M/Au:N/C:N/I:N/A:C/E:F/RL:OF/RC:C&version=2.0
CVE ID CVE-2015-0586 has been assigned to document this issue.
Additional information on Cisco's security vulnerability policy can be found at the following URL:
http://www.cisco.com/en/US/products/products_security_vulnerability_policy.html
|
|
Last Modified: | 11-AUG-2015 |
|
Known Affected Releases: | 15.3(3)M |
|
Known Fixed Releases: | 15.3(3)M3, 15.3(3)M3.1, 15.3(3)M4, 15.3(3)S, 15.3(3)S1, 15.3(3)S1a, 15.3(3)S2, 15.3(3)S2a, 15.3(3)S3, 15.3(3)S4 |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuv02280 | Title: | Crash seen 2900 with ism with traffic through GRE and cryptomap traffic |
|
Status: | Fixed |
|
Severity: | 1 Catastrophic |
Description: | Symptom:
router crashed while sending traffic through tunnel
Conditions:
bi-directional high rate Ipv4 and Ipv6 traffic through tunnel
Workaround:
nil
Further Problem Description:
|
|
Last Modified: | 09-AUG-2015 |
|
Known Affected Releases: | 15.3(3)M |
|
Known Fixed Releases: * | 15.3(3)M6, 15.5(2.25)M0.6, 15.5(2.25)M0.7, 15.5(3)M, 15.6(0.7)T |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuo08731 | Title: * | Trace backs from CSDB Timer process with IPS, short lived flows |
|
Status: | Fixed |
|
Severity: | 2 Severe |
Description: | Symptom:
Trace backs
Conditions:
Few real time traffics with MMA AVC enabled
Workaround:
Further Problem Description:
|
|
Last Modified: | 27-AUG-2015 |
|
Known Affected Releases: | 15.4(2.8)T, 15.5(1)T |
|
Known Fixed Releases: | 15.3(3)M3.2, 15.3(3)M4, 15.4(1)T1.2, 15.4(1)T2, 15.4(2)T1.1, 15.4(2)T2, 15.4(2.15)PI26a, 15.4(2.15)PI26b, 15.4(2.15)T, 15.4(3)M |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCui82259 | Title: | c2911 Crashes on configuration change via EEM script |
|
Status: | Fixed |
|
Severity: | 2 Severe |
Description: | Symptom: Cisco IOS router reloads, giving a traceback.
Conditions: This symptom occurs when the failover is initiated from the primary link (GX) to the secondary link (BGAN) or from BGAN to GX for multiple VRFs at the same time, using an EEM script.
Workaround: There is no workaround.
|
|
Last Modified: | 02-AUG-2015 |
|
Known Affected Releases: | 15.3(1)T |
|
Known Fixed Releases: * | 15.1(1)ICA4.122, 15.2(1)IC273.6, 15.2(2)E, 15.2(2b)E, 15.2(4.0)ST, 15.2(5.0)ST, 15.4(0.12.6)PIH23, 15.4(0.19)S0.6, 15.4(0.19)T, 15.4(0.20)PI24 |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuv27621 | Title: | Memory Leak AFW_application |
|
Status: | Terminated |
|
Severity: | 2 Severe |
Description: * | Symptom:
2911 router was working fine during 1 day. Suddenly, it start to show memory fragmented errors and it was slower, phones were unable to register and it was unresponsive.
Conditions:
Router running c2900-universalk9-mz.SPA.154-3.M2.bin and with VIC3-4FXS/DID, VIC2-4FXO, PVDM3-64
A ?,? was being used to separate numbers in sequence in the dial-peer.
Router ran out of memory due to AFW_application_ process in a few seconds.
Workaround:
A reload will temporarily free the leaked memory
Further Problem Description:
|
|
Last Modified: | 24-AUG-2015 |
|
Known Affected Releases: | 15.4(3)M2.2 |
|
Known Fixed Releases: | |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuq99888 | Title: | 2900/ISM-VPN: IPv6 Egress ACL Intermittently Misclassifies ESP packets |
|
Status: | Fixed |
|
Severity: | 2 Severe |
Description: | Symptom:
Intermittent misclassification of IPv6 ESP traffic in egress interface access-lists
Conditions:
This issue was seen when running debug images with the fix for CSCuq17550 based on 15.2(4)M_latest
Workaround:
n/a
Further Problem Description:
n/a
|
|
Last Modified: | 09-AUG-2015 |
|
Known Affected Releases: | 15.4(3)M |
|
Known Fixed Releases: * | 15.3(3)M5.2, 15.3(3)M6, 15.4(3)M0.4, 15.4(3)M1, 15.5(1.10.1)GB, 15.5(1.6)T |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCut86321 | Title: | Tx hang on 2951`s GigabitEthernet IF |
|
Status: | Open |
|
Severity: | 2 Severe |
Description: | Symptom:
2951`s Gi interface is hung. the output rate drop to 0 and the output queue got stuck at 40/40.
Conditions:
- hardware is PQ3_TSEC
- with duplex half
- Output queue got 40/40
Workaround:
"shut/no shut" the IF
Further Problem Description:
|
|
Last Modified: | 31-AUG-2015 |
|
Known Affected Releases: * | 15.4(3)M2.2, n/a |
|
Known Fixed Releases: | |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCus95226 | Title: | Compact Flash corruption due to call-home directory being created |
|
Status: | Fixed |
|
Severity: | 2 Severe |
Description: | Symptom:
A cisco 2911 router fails to boot due to a corrupted compact flash. When the problem occurs, the following messages will be displayed on the console:
*Jan 31 09:42:22.419: %SYS-4-CHUNKSIBLINGSEXCEED: Number of siblings in a chunk has gone above the threshold. Threshold:10000 Sibling-Count:15189 Chunk:0x21A03EC4 Name:FDNODE -Process= "Init", ipl= 4, pid= 3
-Traceback= 3051B2C4z 3051B538z 30522B54z 30521E0Cz 3052C320z 305356ECz 3210D498z 3210EC18z 32108E60z 30BC73E8z 30BC94F0z 3069E94Cz 3069FD34z 3067E734z 302F49ACz 3067F430z
Removing the compact flash and reading it on a PC shows a directory called "call-home" that is corrupted (the directory size is 1.2gb even though the actual size of the flash is only 256mb). Manually deleting the "call-home" directory results in the router correctly booting from the flash
Conditions:
Workaround:
Manually delete the call-home directory on the flash then reinstall the flash card in the router.
Further Problem Description:
|
|
Last Modified: | 09-AUG-2015 |
|
Known Affected Releases: | 15.3(3)M4 |
|
Known Fixed Releases: * | 15.3(3)M5.2, 15.3(3)M6, 15.4(3)M2.1, 15.4(3)M3, 15.4(3)M3.1, 15.4(3)S2.10, 15.4(3)S3, 15.5(1)S1.1, 15.5(1)S2, 15.5(1)S2.1 |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuh36583 | Title: | ISRG2 - DSP Crash due to Backplane Switch Lockup During T1 Errors |
|
Status: | Fixed |
|
Severity: | 2 Severe |
Description: | Symptom:
An ISR G2 router using a PVDM3 may experience simultaneous failure on several DSPs. Eg:
DSPRM-3-DSPALARMINFO Device (0/1) Host GIGE ack timeout
DSPRM-3-DSPALARMINFO DSP (0/7) Host keepalive timeout
Conditions:
May be seen when T1 errors cause the router's backplane switch to hang, preventing proper function of the DSPs.
Workaround:
Attempt to fix any T1 clock source misconfig.
Further Problem Description:
|
|
Last Modified: | 09-AUG-2015 |
|
Known Affected Releases: | 15.1(4)M4 |
|
Known Fixed Releases: * | 15.1(4)M10, 15.3(3)M6, 15.4(3)M3, 15.4(3)M3.1, 15.5(2.10)T |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuq36627 | Title: | WAAS Express:Failed to create SSL session. (no available resources) |
|
Status: | Fixed |
|
Severity: | 2 Severe |
Description: | Symptom:
WAAS-X SSL error message seen when SSL-AO is enabled
Failed to create SSL session. (no available resources)
Conditions:
The problem is seen if there are too many Aborts of the SSL session when packets are in flight.
Workaround:
Disable SSL-AO and only use TDL
Further Problem Description:
|
|
Last Modified: | 09-AUG-2015 |
|
Known Affected Releases: | 15.2(4.0.1) |
|
Known Fixed Releases: * | 12.2(33)CX, 12.2(33)IRC, 12.2(33)MRA, 12.2(33)SB14, 12.2(33)SB15, 12.2(33)SB16, 12.2(33)SB17, 12.2(33)SB4, 12.2(33)SB6a, 12.2(33)SB6aa |
|
|
| |
| |
|
Alert Type: | New |
Bug Id: | CSCuv99668 | Title: | Smart licensing feature is not support with 15.6(0.10)T |
|
Status: | Open |
|
Severity: | 2 Severe |
Description: | Symptom:
Smart licensing feature is not supported.
Conditions:
Smart licensing feature is not support with this image 15.6(0.10)T
Workaround:
N/A
Further Problem Description:
N/A
|
|
Last Modified: | 28-AUG-2015 |
|
Known Affected Releases: | 15.6(0.10)T, 15.6(0.12)T |
|
Known Fixed Releases: | |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCur70959 | Title: | Memory leak @ sipContentObjPvtSetBody |
|
Status: | Fixed |
|
Severity: | 2 Severe |
Description: | Symptom:
Memory leak on processor pool occurs when SIP phones register via a register pool (e.g. voice register pool 60) using TCP.
The leak is reflected as the "CCSIP_SPI_CONTROL" and "Dialog Manager" processes:
Head Total(b) Used(b) Free(b) Lowest(b) Largest(b)
Processor 129E0FDC 1844461672 926816936 917644736 695680236 641408232
I/O 3D000000 50331648 32294840 18036808 17988704 15203772
PID TTY Allocated Freed Holding Getbufs Retbufs Process
307 0 635342772 306024464 320536812 0 0 Dialog Manager
384 0 107120680 107902680 221925672 0 0 CCSIP_SPI_CONTRO
0 0 347781848 163431556 176266660 0 0 *Init*
0 0 0 0 142589620 0 0 *MallocLite*
PC Total Count Name
0x0897CE54 198191196 90251 CCSIP_SPI_CONTROL
0x088E2864 81210960 90268 CCSIP_SPI_CONTROL
0x088E2824 81207048 90256 Dialog Manager
0x0469D474 48614232 39588 *Packet Header*
Conditions:
Registration method must be via a voice registration pool with TCP.
Workaround:
Use UDP in the pools to register SIP phones.
Further Problem Description:
|
|
Last Modified: | 09-AUG-2015 |
|
Known Affected Releases: | 15.2(4)M6.1 |
|
Known Fixed Releases: * | 15.2(4)M8, 15.3(3)M5.2, 15.3(3)M6, 15.3(3)S5.8, 15.3(3)S6, 15.4(3)M2.2, 15.4(3)M3, 15.4(3)M3.1, 15.4(3)S2.11, 15.4(3)S3 |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuj91203 | Title: | Call forward all/Blind transfer to Ephone hunt group fails |
|
Status: | Fixed |
|
Severity: | 2 Severe |
Description: * | Symptom: Call Forward all/Blind Transfer to Ephone Hunt group scenarios fail from Cisco IOS Release 15.4(0.21)T.
The issue is seen only when:
1. There is a SIP trunk between two CMEs.(i.e incoming call to the CME is via SIP trunk)
2. There is a call-forward all to ephone hunt-pilot and none of the list members pick up the call and the final number has to pick up the call.(i.e When Incoming call is forwarded to the ephone hunt-pilot and none of the list members picks up the call, the call is not made to the final number rather a 302 response is sent to the caller)
The issue doesn't happen for:
1. The h323 trunk
2. voice hunt groups
3. Direct call to the ephone hunt-pilot
Conditions: This symptom is observed in Cisco IOS Release 15.4(0.21)T & ephone-hunt group.
Workaround: Local handling of 302 with below CLI:
voice service voip
no supplementary-service sip moved-temporarily
|
|
Last Modified: | 20-AUG-2015 |
|
Known Affected Releases: | 15.4(0.21)T, 15.4(0.26)T0.1, 15.4(1.4)T |
|
Known Fixed Releases: * | 12.2(33)XNE, 12.2(33)XNE1, 12.4(20)MR, 12.4(20)T4, 12.4(22)MD1, 12.4(22)MDA1, 12.4(22)MDA2, 12.4(22)MDA3, 12.4(22)T3, 12.4(22)T4 |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCun20989 | Title: | %FLEXDSPRM-5-OUT_OF_RESOURCES: No dsps found either locally or globally |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: | Symptom:
Intermittent DSP resource allocation failure even when the call volume is low
call flow :call comes on 0/0/0 from pstn and going to pbx over E1 Qsig on either 0/0/1 or 0/1/0.
3 E1's
- E1 0/0/0 connected to the PSTN
- E1 0/0/1 connected to a legacy PBX over QSIG
- E1 0/1/0 connected to a legacy PBX over QSIG
NAME: "PVDM3 DSP DIMM with 192 Channels on Slot 0 SubSlot 4", DESCR: "PVDM3 DSP DIMM with 192 Channels"
PID: PVDM3-192 , VID: V01 , SN: FOC16072TR3
DSP firmware version :32.1.2
ios version :c2900-universalk9-mz.SPA.152-4.M3.bin"
Conditions:
na
Workaround:
na
Further Problem Description:
|
|
Last Modified: | 09-AUG-2015 |
|
Known Affected Releases: | 15.2(4.1.1) |
|
Known Fixed Releases: * | 15.2(4)M7.1, 15.2(4)M8, 15.2(4)S7, 15.3(3)M6, 15.3(3)S5.19, 15.3(3)S6, 15.4(3)M1.1, 15.4(3)M2, 15.4(3)S1.8, 15.4(3)S2 |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuv04514 | Title: | Few ISM counters missing in show crypto engine acc stat |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: | Symptom:
Few ISM counters not seen in show output
Conditions:
while executing show crypto engine accelerator stats, few counters are mising
Workaround:
nil
Further Problem Description:
|
|
Last Modified: | 09-AUG-2015 |
|
Known Affected Releases: | 15.3(3)M |
|
Known Fixed Releases: * | 15.3(3)M6 |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCua43156 | Title: | CD6.2: NetworkInterface.getType() returns ONEP_IF_TYPE_ETHERNET for vlan |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: | Symptom:
NetworkInterface.getType returns ONEP_IF_TYPE_ETHERNET for vlan interface instead of existing ONEP_IF_TYPE_VLAN interface type.
Conditions:
The API is called on the interface that is of VLAN type.
Workaround:
None.
|
|
Last Modified: | 10-AUG-2015 |
|
Known Affected Releases: | 15.3(0.8)T, 15.3TPI |
|
Known Fixed Releases: * | 15.1(1)ICA4.122, 15.2(1)E, 15.2(1)E1, 15.2(1)E2, 15.2(1)E3, 15.2(1)EY, 15.2(1)IC273.5, 15.2(1.0.10)IPI2, 15.2(2)E, 15.2(4.0)ST |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCur76601 | Title: | CWS Memory leak ssal_initialise |
|
Status: * | Terminated |
|
Severity: | 3 Moderate |
Description: | Symptom:
Memory leak
Conditions:
CWS configured with ISM VPN
Workaround:
None
Further Problem Description:
|
|
Last Modified: | 11-AUG-2015 |
|
Known Affected Releases: | 15.4(3) |
|
Known Fixed Releases: | |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCum61443 | Title: | switch crash epm_get_iaf_session_from_mac_idb |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: | Symptom:
Switch crash at epm_get_iaf_session_from_mac_idb
Conditions:
The crash is seen as a result of timing issue between the clean up of memory and access of the freed memory. The crash occurs when the memory is being accessed after it is being freed.
Workaround:
No workaround.
Further Problem Description:
|
|
Last Modified: | 12-AUG-2015 |
|
Known Affected Releases: | 15.2(1)S0.9 |
|
Known Fixed Releases: * | 15.2(1)IC273.19, 15.2(2.2.70)ST, 15.2(4.0)ST, 15.2(4.0.64a)E, 15.2(5.0)ST, 15.5(0.17)S, 16.1(0.49) |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuj68747 | Title: | Trace back is seen with 2 and 3-way voice Xgcp calls in NAT environment |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: | Symptom:
Trace back is seen while testing 2 and 3-way voice Xgcp calls in NAT environment
Conditions:
UUT's are running with 15.4(0.26)T0.1
Workaround:
unknown
Further Problem Description:
|
|
Last Modified: | 20-AUG-2015 |
|
Known Affected Releases: | 15.4(0.26)T0.1 |
|
Known Fixed Releases: * | 15.1(4)M8, 15.1(4)M9, 15.2(4)GC1, 15.2(4)GC2, 15.2(4)M6, 15.2(4)M6a, 15.2(4)M6b, 15.2(4)M7, 15.2(4)S6, 15.3(2)T2.1 |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuv61505 | Title: | CME SNR calls get no ringback when active for PRI calls |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: | Symptom:
no ringback when snr is enable. Second call to snr dn gives no ringback until the snr destination is ringing
Conditions:
for sip phones with CME
Workaround:
none
Further Problem Description:
|
|
Last Modified: | 26-AUG-2015 |
|
Known Affected Releases: | 15.4(3.0l)M2 |
|
Known Fixed Releases: * | 15.4(3)S3.12, 15.6(0.11)T, 15.6(0.14)S |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCul53489 | Title: | CCE-DP symbol growth on 2951 |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: * | Symptom:
CCE-DP symbol growth in PI23
Conditions:
on 2951 platform for PI23 15.4(0.26)T0.10 compared with baseline 15.4(0.26)T.
Workaround:
N/A
Further Problem Description:
|
|
Last Modified: | 31-AUG-2015 |
|
Known Affected Releases: | 15.4(0.26)T0.10 |
|
Known Fixed Releases: | 15.4(1)CG, 15.4(1)CG1, 15.4(1)T, 15.4(1)T1, 15.4(1)T2, 15.4(1.13)T, 15.4(2)CG, 15.4(2)T, 15.4(2)T1, 15.4(3)M |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCut13290 | Title: | "P-Associated-URI" handling on CUBE should follow rfc3455 |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: | Symptom:
CUBE not processing "P-Associated-URI" header in the 200 OK message received for Register Message. As a result, the SIP Trunk is unable to register to ITSP.
Conditions:
200 OK message from ITSP contains mulitple entries in the P-Associated-URI header.
eg. P-Associated-URI: ,,
Workaround:
Upgrade the ios to 15.4.2T and use inbound SIP-Profiles.
Further Problem Description:
.
|
|
Last Modified: | 09-AUG-2015 |
|
Known Affected Releases: | 15.3TPI21 |
|
Known Fixed Releases: * | 15.3(3)M5.2, 15.3(3)M6, 15.3(3)S5.18, 15.3(3)S6, 15.4(3)M2.1, 15.4(3)M3, 15.4(3)M3.1, 15.4(3)S2.10, 15.4(3)S3, 15.5(1)S1.1 |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCul85304 | Title: | UDI Compliant SFP not showing up correctly in show inventory |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: | Symptom:
UDI compliant SFPs are not showing the correct PID in the 'show inventory' output after inserted into a HWIC-1GE-SFP or an EHWIC-1GE-SFP-CU
################################
FROM SHOW INVENTORY OUTPUT
################################
NAME: "1000BASE-LX SFP", DESCR: "1000BASE-LX SFP"
PID: SCP6J44-C1-BMH , VID: A , SN: XXXXXXXXXXX
NAME: "1000BASE-SX SFP", DESCR: "1000BASE-SX SFP"
PID: FTLF8519P3BNL-CS , VID: A , SN: XXXXXXXXXXX
Here we see UDI SFPs are showing something like FTLF8519P2BCL-CS under the PID which seems like the manufacturer's data. For UDI compliant SFPs, they need to show the actual PID which is GLC-LH-SMD and GLC-SX-MMD in this case.
Conditions:
This was seen after inserting the SFPs into a HWIC-1GE-SFP on a 2921. The issue is likely the same on any ISR-G2. I have also noticed this issue on a 2811 which is an ISR-G1
Workaround:
None
Further Problem Description:
|
|
Last Modified: | 09-AUG-2015 |
|
Known Affected Releases: | 15.1(4)M6.10, 15.4(1.15)T |
|
Known Fixed Releases: * | 15.3(3)M5.2, 15.3(3)M6, 15.4(3)M1.1, 15.4(3)M2, 15.5(1.11)T |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuo18305 | Title: | New Line interfaces on Routers with EHWIC-4SHDSL-EA running 15.4(1)T IOS |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: | Symptom:
New Line interfaces on Routers with EHWIC-4SHDSL-EA running 15.4(1)T IOS image
Conditions:
Routers with EHWIC-4SHDSL-EA installed
Workaround:
No Workaround available.
Further Problem Description:
These error message logs are not performance impacting.
Moreover we do not see same issue for 15.2(4)M5 IOS release.
|
|
Last Modified: | 09-AUG-2015 |
|
Known Affected Releases: | 15.4(1)T1 |
|
Known Fixed Releases: * | 15.2(4)GC1, 15.2(4)GC2, 15.2(4)M6, 15.2(4)M6a, 15.2(4)M6b, 15.2(4)M7, 15.2(4)M7.1, 15.2(4)M8, 15.3(3)M6, 15.4(1)T2.3 |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCun28239 | Title: | FDL data unable to be retrieved remotely when MLPPP is configured |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: | Symptom:
FDL tests failing at customer site.
Conditions:
HWIC-4T1/E1 connected to FDL equipment
Workaround:
None
Further Problem Description:
|
|
Last Modified: | 09-AUG-2015 |
|
Known Affected Releases: | 15.0(1)M7 |
|
Known Fixed Releases: * | 15.3(3)M5.2, 15.3(3)M6, 15.4(3)M2.1, 15.4(3)M3, 15.4(3)M3.1, 15.5(2.12)T, 15.5(2.14.1)PIH28 |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuq07676 | Title: | ISRG2 ISM GETVPN-decryption stops after removing 2nd crypto map instance |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: | Symptom:
If we attach the same GDOI crypto map to two different WAN uplink sub-interfaces on a GETVPN GM based on the ISR G2 + ISM crypto module and then perform the steps listed below, we will observe that encryption stops.
Conditions:
1. Shut down the secondary WAN to CE sub-interface on the CE side
2. Remove the crypto-map from the secondary WAN sub-interface
3. Encryption stops
Workaround:
Remove and re-apply the crypto-map from primary WAN to CE sub-interface.
Further Problem Description:
|
|
Last Modified: | 09-AUG-2015 |
|
Known Affected Releases: | 15.3(3)M3 |
|
Known Fixed Releases: * | 15.2(4)M8, 15.3(3)M5.2, 15.3(3)M6, 15.4(3)M0.3, 15.4(3)M0.4, 15.4(3)M1, 15.5(1.10.1)GB, 15.5(1.6)T |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCum05834 | Title: | ISM module return incorrect status from SNMP. |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: * | Symptom:
2900 15.2(4)M2 with ISM, ISM return incorrect status by cardOperStatus.
show crypto engine config shows ISM is up and running. SNMP walk on cardOperStatus return 3 which is down state.
Conditions:
n/a
Workaround:
n/a
Further Problem Description:
|
|
Last Modified: | 06-AUG-2015 |
|
Known Affected Releases: | 15.2(4.0.1) |
|
Known Fixed Releases: | 15.2(4)GC1, 15.2(4)GC2, 15.2(4)M5.5, 15.2(4)M6, 15.2(4)M6a, 15.2(4)M6b, 15.2(4)M7, 15.3(3)M2.7, 15.3(3)M3, 15.3(3)M4 |
|
|
| |
| |
|
Alert Type: | New |
Bug Id: | CSCuv58558 | Title: | ISRG2-BFD not working on subint with dot1q 1 or native tag |
|
Status: | Open |
|
Severity: | 3 Moderate |
Description: | Symptom:
BFD remains down when the sub interface is configured with dot1q 1 or native tag.
Conditions:
When the sub interface is configured with dot1q 1 or native tag.
encapsulation dot1Q 1
encapsulation dot1Q 50 native
Workaround:
Don't use sub interface with "encapsulation dot1Q 1" or other vlan with native kw.
Further Problem Description:
|
|
Last Modified: | 04-AUG-2015 |
|
Known Affected Releases: | 15.5(3)M |
|
Known Fixed Releases: | |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCus48930 | Title: | Unable to copy paste a dial-peer with "session server-group" config |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: | Symptom:
Unable to copy paste a dial-peer with "session server-group" configuration. The session-target is define as soon as session protocol SipV2 is place under dial peer. This cause session server-group not to be define under the dial-peer until session-target is removed.
If customer is using new command "session server-group" under the dial-peer which was introduce in IOS 15.4(1)T. Then customer is unable to copy paste the dial-peer configuration due to "session-target" is define as soon as session protocol SipV2 is place under dial peer. This cause session server-group not to be define under the dial-peer until session-target is removed.
Due to the above issue, customer is unable to copy paste the configuration of dial-peer with out negating the session target.
Conditions:
If customer is using new command "session server-group" under the dial-peer which was introduce in IOS 15.4(1)T.
Workaround:
Add extra line in the save configuration to no (negate) the session target before pasting.
Further Problem Description:
|
|
Last Modified: | 03-AUG-2015 |
|
Known Affected Releases: | 15.4(3) |
|
Known Fixed Releases: * | 15.4(3)M2.1, 15.4(3)M3, 15.4(3)M3.1, 15.4(3)S2.10, 15.4(3)S3, 15.5(1.21)PI28a, 15.5(1.21)T, 15.5(2)S, 15.5(2)SN, 15.5(2.8)S |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuc96185 | Title: | Stale Pointer in SipHandler leads to Infinite Loop and CUCM Core |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: | Symptom:
++ Call manager service crashed and generated core dumps.
====================================
backtrace
===================================
#0 0x006fd7a2 in _dl_sysinfo_int80 () from /lib/ld-linux.so.2
#1 0x00988825 in raise () from /lib/tls/libc.so.6
#2 0x0098a289 in abort () from /lib/tls/libc.so.6
#3 0x0a09afa0 in SdlMsgQueueCirc::enqueueSignal (this=0xf75aa60, msg=0x99539168, priority=2) at SdlMsgQueueCirc.cpp:136
#4 0x0a0969fd in SdlThreadedProcess::inputSignal (this=0xf759f90, rSignal=0x99539168) at /view/BLD-cm_su1_8_5_1-cct-ccm-d/vob/ccm/Common/Include/Sdl/SdlMsgQueue.hpp:58
#5 0x0a06c9c4 in SdlRouter::callProcess (this=0xc3b86a0, _sdlSignal=0x99539168, _deleteSignal=@0x3351fa7, _traceType=SdlSystemLog::SignalRouterThread, _hp=0, _np=0, _lp=0, _vlp=0, _lzp=0, _dbp=0) at SdlRouter.cpp:238
#6 0x0a06cf75 in SdlRouter::scheduler (this=0xc3b86a0) at SdlRouter.cpp:155
#7 0x0083cbf3 in ACE_OS_Thread_Adapter::invoke (this=0xf6eb5a0) at OS_Thread_Adapter.cpp:94
#8 0x007fd0a3 in ace_thread_adapter (args=0x0) at Base_Thread_Adapter.cpp:137
#9 0x002d63cc in start_thread () from /lib/tls/libpthread.so.0
#10 0x00a2cf0e in clone () from /lib/tls/libc.so.6
Conditions:
++ One of the subscriber server showing high CPU.
++ Most of the CPU resources being used by ccm service.
++ Most of the IP Phones (SIP) having trouble in registering.
Workaround:
Temporary fix is to restart the server.
Further Problem Description:
|
|
Last Modified: | 03-AUG-2015 |
|
Known Affected Releases: | 15.1(0.0.6)PIL15, 15.1(3.6)T |
|
Known Fixed Releases: * | 15.5(1.21)PI28a, 15.5(1.21)T, 15.5(2)S, 15.5(2)SN, 15.5(2.8)S |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuh93110 | Title: | CISCO2911/K9 : Unable to boot via Net boot |
|
Status: | Terminated |
|
Severity: | 3 Moderate |
Description: | Symptom:
CISCO2911/K9 can't boot via tftp.
Conditions:
Use 15.2(4)M2.2 or later.
Workaround:
Put image into flash, and boot by using the image.
More Info:
|
|
Last Modified: | 03-AUG-2015 |
|
Known Affected Releases: * | 15.2(4)M2.2, 15.4(1.14)T, 15.4(2.20)T, 15.4(3)M0.3 |
|
Known Fixed Releases: | |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCus16908 | Title: | [PI27ST]: After SSO rtp connection showing -1 for media forking |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: | Symptom:
After SSO show voip rtp connection showing -1 for media forking
Conditions:
when Media forking enabled
Workaround:
none
Further Problem Description:
After SSO rtp connection showing -1 for media forking
|
|
Last Modified: | 03-AUG-2015 |
|
Known Affected Releases: | 15.5(1.10)T |
|
Known Fixed Releases: * | 15.5(1)S0.9, 15.5(1)S1, 15.5(1)SN1, 15.5(1)T0.2, 15.5(1.16)T, 15.5(1.18)S0.3, 15.5(1.21)PI28a, 15.5(2)S, 15.5(2)SN, 15.5(2.3)S |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuc53605 | Title: | 2911 PVDM3 crash with E&M Port status not changing to S_TRUNKED |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: | Symptom:
The DSP's crash and E&M ports go to "S_IDLE" Status
Sep 10 00:53:04.322: %FLEXDSPRM-3-TDM_CONNECT: failed to connect voice-port (0/0/1) to dsp_channel(0/1/17)
.Sep 10 01:27:43.078: %FLEXDSPRM-3-TDM_CONNECT: failed to connect voice-port (0/0/0) to dsp_channel(0/1/26)
Conditions:
1> High CPU on Router
Sep 10 07:58:39.886: %IVR-3-LOW_CPU_RESOURCE: IVR: System experiencing high cpu utilization (96/100).
2> Land Mobile Configured
Example:
controller E1 0/3/0
framing NO-CRC4
ds0-group 0 timeslots 1 type e&m-lmr
voice-port 0/3/0:0
auto-cut-through
voice-class permanent 1
no comfort-noise
timeouts call-disconnect 3
connection trunk 30002
dial-peer voice 30002 voip
destination-pattern 30002
session protocol multicast
session target ipv4:239.1.1.1:30002
codec g711ulaw
vad aggressive
Workaround:
Shut/No Shut Controller OR Reload Router
Further Problem Description:
|
|
Last Modified: | 03-AUG-2015 |
|
Known Affected Releases: | 15.0(1.0.3) |
|
Known Fixed Releases: * | 15.4(3)M3.1, 15.4(3)S3.6, 15.5(1.15)T, 15.5(1.18)S0.2, 15.5(1.21)PI28a, 15.5(2)S, 15.5(2)SN, 15.5(2.2)S |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCty03233 | Title: | GETVPN Suiteb support for ISM-VPN |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: * | $$IGNORE
This is a feature development
Symptom:
This enable GETVPN suiteb for ISM-VPN
Conditions:
none
Workaround:
none
Further Problem Description:
|
|
Last Modified: | 01-AUG-2015 |
|
Known Affected Releases: | 15.2T |
|
Known Fixed Releases: | 15.1(2)IC66.3, 15.2(1)IC273.70, 15.2(1)ICA4.30, 15.2(2)DB101.101, 15.2(2)DB101.112, 15.2(2)E, 15.2(2.2.70)ST, 15.2(2b)E, 15.2(4)GC1, 15.2(4)GC2 |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCus00058 | Title: | Invalid ip address is accepted as mta send server |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: | Symptom:
Hardware model: Cisco CISCO2911/K9
IOS: c2900-universalk9-mz.SPA.154-2.T1.bin
mta send server 10.180.1.179 port 25
mta send with-subject both
mta send filename fax.tif
mta send mail-from hostname vid.gov.lv
mta send mail-from username $s$
- When gaeteway is reloaded the command " mta send server 10.180.1.179 port 25" is erased from configuration and it's necessary to put back manually.
Conditions:
The following conditions have been found:
1- Configuring fax on ramp
2- adding following configuration:
mta send server 10.180.1.179 port 25
mta send with-subject both
mta send filename fax.tif
mta send mail-from hostname vid.gov.lv
mta send mail-from username $s$
Workaround:
Need to add commands manually:
mta send server 10.180.1.179 port 25
mta send with-subject both
mta send filename fax.tif
mta send mail-from hostname vid.gov.lv
mta send mail-from username $s$
also IOS has been deployed and are working properly now c2900-universalk9-mz.SSA.630870481
Further Problem Description:
|
|
Last Modified: | 09-AUG-2015 |
|
Known Affected Releases: | 15.2(0.6)PI16, 15.2(1.6)T |
|
Known Fixed Releases: * | 15.3(3)M5.2, 15.3(3)M6, 15.3(3)S5.8, 15.3(3)S6, 15.4(3)M1.1, 15.4(3)M2, 15.4(3)S1.8, 15.4(3)S2, 15.5(1)S0.7, 15.5(1)S1 |
|
|
| |
:
2013 Cisco and/or its affiliates. All rights reserved. 
没有评论:
发表评论