Guest

Preview Tool

Cisco Bug: CSCup47885 - ASA: Page fault traceback in DATAPATH when DNS inspection is enabled

Last Modified

Apr 16, 2020

Products (1)

  • Cisco ASA 5500-X Series Firewalls

Known Affected Releases

9.1(5.7) 9.2(2)

Description (partial)

Symptom:
An ASA may generate a traceback and reload in the DATAPATH thread while processing DNS traffic when DNS inspection is enabled.

Conditions:
The ASA must be running 9.1.5.7 or higher.
This issue will trigger when we do DNS reverse loop up with DNS inspection  enabled.

When a customer do reverse look up on IP addresses and receives a PTR Reply with more number of records  they will  hit this issue.
This issue will not be seen without reverse loop up
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.