Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2023-41909HistorySep 05, 2023 - 7:15 a.m.
CVE-2023-41909
2023-09-0507:15:14
Debian Security Bug Tracker
security-tracker.debian.org
8
frrouting
frr
9.0
null pointer
bgp_nlri_parse_flowspec
bgpd
bgp_flowspec.
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.0005 Low
EPSS
Percentile
18.2%
An issue was discovered in FRRouting FRR through 9.0. bgp_nlri_parse_flowspec in bgpd/bgp_flowspec.c processes malformed requests with no attributes, leading to a NULL pointer dereference.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | frr | < 8.4.4-1 | frr_8.4.4-1_all.deb |
| Debian | 11 | all | frr | <= 7.5.1-1.1+deb11u2 | frr_7.5.1-1.1+deb11u2_all.deb |
| Debian | 10 | all | frr | < 7.5.1-1.1+deb10u1 | frr_7.5.1-1.1+deb10u1_all.deb |
| Debian | 999 | all | frr | < 8.4.4-1 | frr_8.4.4-1_all.deb |
| Debian | 13 | all | frr | < 8.4.4-1 | frr_8.4.4-1_all.deb |
Related
ubuntucve
ubuntucve
CVE-2023-41909
2023-09-05 00:00:00
nvd
nvd
CVE-2023-41909
2023-09-05 07:15:14
prion
prion
Null pointer dereference
2023-09-05 07:15:00
cvelist
cvelist
CVE-2023-41909
2023-09-05 00:00:00
osv
osv
CVE-2023-41909
2023-09-05 07:15:14
frr vulnerabilities
2023-10-18 04:43:51
Moderate: frr security update
2024-05-22 00:00:00
cve
cve
CVE-2023-41909
2023-09-05 07:15:14
redhatcve
redhatcve
CVE-2023-41909
2023-09-11 18:05:36
veracode
veracode
Denial Of Service (DoS)
2023-09-08 08:13:18
openvas
openvas
Ubuntu: Security Advisory (USN-6436-1)
2023-10-18 00:00:00
openSUSE: Security Advisory for frr (SUSE-SU-2023:3762-1)
2024-03-04 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:3762-1)
2023-09-26 00:00:00
ubuntu
ubuntu
FRR vulnerabilities
2023-10-18 00:00:00
nessus
nessus
SUSE SLES15 / openSUSE 15 Security Update : frr (SUSE-SU-2023:3762-1)
2023-09-26 00:00:00
Ubuntu 20.04 ESM / 22.04 LTS / 23.04 : FRR vulnerabilities (USN-6436-1)
2023-10-18 00:00:00
SUSE SLES15 / openSUSE 15 Security Update : frr (SUSE-SU-2023:3709-1)
2023-09-21 00:00:00
almalinux
almalinux
Moderate: frr security update
2024-05-22 00:00:00
Moderate: frr security update
2024-04-30 00:00:00
oraclelinux
oraclelinux
frr security update
2024-05-23 00:00:00
frr security update
2024-05-02 00:00:00
redhat
redhat
(RHSA-2024:2981) Moderate: frr security update
2024-05-22 06:35:15
(RHSA-2024:2156) Moderate: frr security update
2024-04-30 06:14:53
fedora
fedora
[SECURITY] Fedora 37 Update: frr-8.5.3-1.fc37
2023-11-15 02:01:52
[SECURITY] Fedora 39 Update: frr-8.5.3-1.fc39
2023-11-15 01:43:47
[SECURITY] Fedora 38 Update: frr-8.5.3-1.fc38
2023-11-15 02:16:16
debian
debian
[SECURITY] [DLA 3573-1] frr security update
2023-09-19 19:41:22
redos
redos
ROS-20240617-02
2024-06-17 00:00:00
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.0005 Low
EPSS
Percentile
18.2%
Related for DEBIANCVE:CVE-2023-41909