Search CVE reports
1 – 10 of 34 results
CVE-2024-44070
Medium prioritySome fixes available 3 of 6
An issue was discovered in FRRouting (FRR) through 10.1. bgp_attr_encap in bgpd/bgp_attr.c does not check the actual remaining stream length before taking the TLV value.
2 affected packages
frr, quagga
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
frr | Fixed | Fixed | Needs evaluation | — | — |
quagga | Not in release | Not in release | Fixed | Needs evaluation | Needs evaluation |
CVE-2024-34088
Medium priorityIn FRRouting (FRR) through 9.1, it is possible for the get_edge() function in ospf_te.c in the OSPF daemon to return a NULL pointer. In cases where calling functions do not handle the returned NULL value, the OSPF daemon crashes,...
2 affected packages
frr, quagga
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
frr | Fixed | Fixed | Not affected | — | — |
quagga | Not in release | Not in release | Not affected | Not affected | Not affected |
CVE-2024-31951
Medium priorityIn the Opaque LSA Extended Link parser in FRRouting (FRR) through 9.1, there can be a buffer overflow and daemon crash in ospf_te_parse_ext_link for OSPF LSA packets during an attempt to read Segment Routing Adjacency SID subTLVs...
2 affected packages
frr, quagga
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
frr | Fixed | Fixed | Not affected | — | — |
quagga | Not in release | Not in release | Not affected | Not affected | Not affected |
CVE-2024-31950
Medium priorityIn FRRouting (FRR) through 9.1, there can be a buffer overflow and daemon crash in ospf_te_parse_ri for OSPF LSA packets during an attempt to read Segment Routing subTLVs (their size is not validated).
2 affected packages
frr, quagga
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
frr | Fixed | Fixed | Not affected | — | — |
quagga | Not in release | Not in release | Not affected | Not affected | Not affected |
CVE-2024-31949
Medium priorityIn FRRouting (FRR) through 9.1, an infinite loop can occur when receiving a MP/GR capability as a dynamic capability because malformed data results in a pointer not advancing.
2 affected packages
frr, quagga
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
frr | Not affected | Not affected | Not affected | — | — |
quagga | Not in release | Not in release | Not affected | Not affected | Not affected |
CVE-2024-31948
Medium priorityIn FRRouting (FRR) through 9.1, an attacker using a malformed Prefix SID attribute in a BGP UPDATE packet can cause the bgpd daemon to crash.
2 affected packages
frr, quagga
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
frr | Fixed | Fixed | Fixed | — | — |
quagga | Not in release | Not in release | Not affected | Not affected | Not affected |
CVE-2024-27913
Medium priorityospf_te_parse_te in ospfd/ospf_te.c in FRRouting (FRR) through 9.1 allows remote attackers to cause a denial of service (ospfd daemon crash) via a malformed OSPF LSA packet, because of an attempted access to a missing attribute field.
2 affected packages
frr, quagga
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
frr | Fixed | Fixed | Not affected | Not in release | Not in release |
quagga | Not in release | Not in release | Not affected | Not affected | Not affected |
CVE-2023-38407
Medium prioritybgpd/bgp_label.c in FRRouting (FRR) before 8.5 attempts to read beyond the end of the stream during labeled unicast parsing.
2 affected packages
frr, quagga
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
frr | Fixed | Fixed | Fixed | Ignored | Ignored |
quagga | Not in release | Not in release | Not affected | Not affected | Not affected |
CVE-2023-38406
Medium prioritybgpd/bgp_flowspec.c in FRRouting (FRR) before 8.4.3 mishandles an nlri length of zero, aka a "flowspec overflow."
2 affected packages
frr, quagga
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
frr | Not affected | Fixed | Fixed | Ignored | Ignored |
quagga | Not in release | Not in release | Not affected | Not affected | Not affected |
CVE-2023-47235
Medium priorityAn issue was discovered in FRRouting FRR through 9.0.1. A crash can occur when a malformed BGP UPDATE message with an EOR is processed, because the presence of EOR does not lead to a treat-as-withdraw outcome.
2 affected packages
frr, quagga
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
frr | Fixed | Fixed | Fixed | Ignored | Ignored |
quagga | Not in release | Not in release | Not affected | Not affected | Not affected |