Cisco has updated its IOS XE software to address a denial of service vulnerability in its implementation of BGP over an Ethernet VPN. The flaw, CVE-2017-12319, is traced to a change in the implementation of RFC 7432, which is the BGP MPLS-based protocol. The vulnerability could be triggered when the router receives a crafted BGP message from a peer on an existing BGP session. An attacker could also inject malicious messages into the victim s BGP network.
Source: https://threatpost.com/cisco-patches-dos-flaw-in-bgp-over-ethernet-vpn-implementation/128780/