Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2022-37032HistorySep 19, 2022 - 10:15 p.m.
CVE-2022-37032
2022-09-1922:15:11
Debian Security Bug Tracker
security-tracker.debian.org
19
bgp daemon
frrouting
out-of-bounds read
segmentation fault
denial of service
bgpd
bgp_packet.c
unix
CVSS3
9.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
EPSS
0.002
Percentile
59.3%
An out-of-bounds read in the BGP daemon of FRRouting FRR before 8.4 may lead to a segmentation fault and denial of service. This occurs in bgp_capability_msg_parse in bgpd/bgp_packet.c.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | frr | < 8.4.1-1 | frr_8.4.1-1_all.deb |
| Debian | 11 | all | frr | < 7.5.1-1.1+deb11u1 | frr_7.5.1-1.1+deb11u1_all.deb |
| Debian | 999 | all | frr | < 8.4.1-1 | frr_8.4.1-1_all.deb |
| Debian | 13 | all | frr | < 8.4.1-1 | frr_8.4.1-1_all.deb |
Related
nessus
nessus
Oracle Linux 8 : frr (ELSA-2023-2801)
2023-05-24 00:00:00
RHEL 9 : frr (RHSA-2023:2202)
2023-05-12 00:00:00
CentOS 8 : frr (CESA-2023:2801)
2023-05-16 00:00:00
debian
debian
[SECURITY] [DSA 5362-1] frr security update
2023-02-24 12:47:58
[SECURITY] [DLA 3211-1] frr security update
2022-11-28 18:00:29
osv
osv
frr - security update
2023-02-24 00:00:00
CVE-2022-37032
2022-09-19 22:15:11
Moderate: frr security and bug fix update
2023-05-16 00:00:00
ubuntucve
ubuntucve
CVE-2022-37032
2022-09-19 00:00:00
veracode
veracode
Denial Of Service (DoS)
2022-10-12 10:37:48
redhat
redhat
(RHSA-2023:2202) Moderate: frr security, bug fix, and enhancement update
2023-05-09 05:03:17
(RHSA-2023:2801) Moderate: frr security and bug fix update
2023-05-16 05:55:03
oraclelinux
oraclelinux
frr security, bug fix, and enhancement update
2023-05-15 00:00:00
frr security and bug fix update
2023-05-24 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-3211-1)
2022-11-29 00:00:00
Debian: Security Advisory (DSA-5362-1)
2023-02-28 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:3246-1)
2022-09-13 00:00:00
almalinux
almalinux
Moderate: frr security and bug fix update
2023-05-16 00:00:00
Moderate: frr security, bug fix, and enhancement update
2023-05-09 00:00:00
cvelist
cvelist
CVE-2022-37032
2022-09-19 00:00:00
prion
prion
Design/Logic Flaw
2022-09-19 22:15:00
nvd
nvd
CVE-2022-37032
2022-09-19 22:15:11
cve
cve
CVE-2022-37032
2022-09-19 22:15:11
redhatcve
redhatcve
CVE-2022-37032
2022-09-21 13:19:14
ubuntu
ubuntu
FRR vulnerabilities
2022-10-18 00:00:00
Quagga vulnerabilities
2023-11-15 00:00:00
FRR vulnerabilities
2024-06-05 00:00:00
suse
suse
Security update for frr (important)
2022-09-12 00:00:00
redos
redos
ROS-20240607-01
2024-06-07 00:00:00
CVSS3
9.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
EPSS
0.002
Percentile
59.3%
Related for DEBIANCVE:CVE-2022-37032