Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2007-1995HistoryApr 12, 2007 - 10:19 a.m.
CVE-2007-1995
2007-04-1210:19:00
Debian Security Bug Tracker
security-tracker.debian.org
7
6.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:S/C:N/I:N/A:C
0.024 Low
EPSS
Percentile
89.8%
bgpd/bgp_attr.c in Quagga 0.98.6 and earlier, and 0.99.6 and earlier 0.99 versions, does not validate length values in the MP_REACH_NLRI and MP_UNREACH_NLRI attributes, which allows remote attackers to cause a denial of service (daemon crash or exit) via crafted UPDATE messages that trigger an assertion error or out of bounds read.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 10 | all | quagga | < 0.99.6-5 | quagga_0.99.6-5_all.deb |
Related
fedora
fedora
[SECURITY] Fedora Core 6 Update: quagga-0.99.7-1.fc6
2007-06-06 17:27:02
[SECURITY] Fedora 7 Update: quagga-0.99.7-1.fc7
2007-07-03 16:24:25
[SECURITY] Fedora 7 Update: quagga-0.99.9-1.fc7
2007-09-18 19:21:48
openvas
openvas
Fedora Update for quagga FEDORA-2007-0838
2009-02-27 00:00:00
Fedora Update for quagga FEDORA-2007-0838
2009-02-27 00:00:00
SLES9: Security update for quagga
2009-10-10 00:00:00
nessus
nessus
Fedora 7 : quagga-0.99.7-1.fc7 (2007-0838)
2007-11-06 00:00:00
SuSE 10 Security Update : quagga (ZYPP Patch Number 3230)
2007-12-13 00:00:00
Quagga < 0.98.7 / 0.99.7 BGPD Denial of Service Vulnerability
2012-06-29 00:00:00
ubuntucve
ubuntucve
CVE-2007-1995
2007-04-12 00:00:00
cve
cve
CVE-2007-1995
2007-04-12 10:19:00
ubuntu
ubuntu
Quagga vulnerability
2007-05-17 00:00:00
oraclelinux
oraclelinux
Moderate: quagga security update
2007-05-30 00:00:00
securityvulns
securityvulns
Quagga bgpd BGP service DoS
2007-04-16 00:00:00
redhat
redhat
(RHSA-2007:0389) Moderate: quagga security update
2007-05-30 00:00:00
debian
debian
[SECURITY] [DSA 1293-1] New quagga packages fix denial of service
2007-05-17 08:15:59
centos
centos
quagga security update
2007-05-30 18:29:44
prion
prion
Out-of-bounds
2007-04-12 10:19:00
osv
osv
quagga
2007-05-17 00:00:00
gentoo
gentoo
Quagga: Denial of service
2007-05-02 00:00:00
6.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:S/C:N/I:N/A:C
0.024 Low
EPSS
Percentile
89.8%
Related for DEBIANCVE:CVE-2007-1995