Lucene search

K

RedhatCVELIST:CVE-2022-26126

HistoryMar 03, 2022 - 12:00 a.m.

CVE-2022-26126

2022-03-0300:00:00

CWE-119

redhat

www.cve.org

4

8.1 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

51.1%

Buffer overflow vulnerabilities exist in FRRouting through 8.1.0 due to the use of strdup with a non-zero-terminated binary string in isis_nb_notifications.c.

CNA Affected

[
  {
    "vendor": "n/a",
    "product": "FRRouting",
    "versions": [
      {
        "version": "through 8.1.0",
        "status": "affected"
      }
    ]
  }
]

References

github.com/FRRouting/frr/issues/10505

lists.debian.org/debian-lts-announce/2024/04/msg00019.html

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MIEQNIWUSBQTFR65HM2LLIB7PH27CZUZ/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VTYSAL4QCE4XWMMBKUB7LSLPAFLWUML4/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XUCZR6RYQVZ35BFUV7OLIUEHZW2433I2/

8.1 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

51.1%

Related for CVELIST:CVE-2022-26126

prion1 osv3 nvd1 alpinelinux1 veracode1 ubuntucve1 nessus8 cve1 redhatcve1 debiancve1 openvas7 fedora3 suse1 ubuntu1 debian1