Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2023-41359HistoryAug 29, 2023 - 4:15 a.m.
CVE-2023-41359
2023-08-2904:15:16
Debian Security Bug Tracker
security-tracker.debian.org
4
frrouting bgp_attr_aigp_valid unix
9.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
0.001 Low
EPSS
Percentile
26.1%
An issue was discovered in FRRouting FRR through 9.0. There is an out-of-bounds read in bgp_attr_aigp_valid in bgpd/bgp_attr.c because there is no check for the availability of two bytes during AIGP validation.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | frr | < 8.4.4-1.1~deb12u1 | frr_8.4.4-1.1~deb12u1_all.deb |
| Debian | 11 | all | frr | < 7.5.1-1.1+deb11u2 | frr_7.5.1-1.1+deb11u2_all.deb |
| Debian | 10 | all | frr | < 6.0.2-2+deb10u1 | frr_6.0.2-2+deb10u1_all.deb |
| Debian | 999 | all | frr | < 10.0-2 | frr_10.0-2_all.deb |
| Debian | 13 | all | frr | < 10.0-2 | frr_10.0-2_all.deb |
Related
redhatcve
redhatcve
CVE-2023-41359
2023-08-31 11:12:28
ubuntucve
ubuntucve
CVE-2023-41359
2023-08-29 00:00:00
prion
prion
Out-of-bounds
2023-08-29 04:15:00
cbl_mariner
cbl_mariner
CVE-2023-41359 affecting package frr for versions less than 8.5.3-2
2023-09-27 18:02:50
cvelist
cvelist
CVE-2023-41359
2023-08-29 00:00:00
nvd
nvd
CVE-2023-41359
2023-08-29 04:15:16
cve
cve
CVE-2023-41359
2023-08-29 04:15:16
nessus
nessus
CBL Mariner 2.0 Security Update: frr (CVE-2023-41359)
2023-09-28 00:00:00
Fedora 38 : frr (2023-61abba57d8)
2023-11-14 00:00:00
Fedora 39 : frr (2023-514db5339e)
2023-11-14 00:00:00
veracode
veracode
Out-of-bounds Read
2023-09-01 06:42:34
osv
osv
CVE-2023-41359
2023-08-29 04:15:16
Moderate: frr security update
2024-04-30 00:00:00
oraclelinux
oraclelinux
frr security update
2024-05-02 00:00:00
openvas
openvas
Fedora: Security Advisory for frr (FEDORA-2023-61abba57d8)
2023-11-16 00:00:00
Fedora: Security Advisory for frr (FEDORA-2023-514db5339e)
2023-11-16 00:00:00
Fedora: Security Advisory for frr (FEDORA-2023-ce436d56f8)
2023-11-16 00:00:00
fedora
fedora
[SECURITY] Fedora 37 Update: frr-8.5.3-1.fc37
2023-11-15 02:01:52
[SECURITY] Fedora 39 Update: frr-8.5.3-1.fc39
2023-11-15 01:43:47
[SECURITY] Fedora 38 Update: frr-8.5.3-1.fc38
2023-11-15 02:16:16
redhat
redhat
(RHSA-2024:2156) Moderate: frr security update
2024-04-30 06:14:53
almalinux
almalinux
Moderate: frr security update
2024-04-30 00:00:00
redos
redos
ROS-20240617-02
2024-06-17 00:00:00
9.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
0.001 Low
EPSS
Percentile
26.1%
Related for DEBIANCVE:CVE-2023-41359