Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2024-31949HistoryApr 07, 2024 - 9:15 p.m.
CVE-2024-31949
2024-04-0721:15:07
Debian Security Bug Tracker
security-tracker.debian.org
7
frrouting
infinite loop
mp/gr capability
dynamic capability
malformed data
pointer advancement
security vulnerability
unix
In FRRouting (FRR) through 9.1, an infinite loop can occur when receiving a MP/GR capability as a dynamic capability because malformed data results in a pointer not advancing.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | frr | <= 8.4.4-1.1~deb12u1 | frr_8.4.4-1.1~deb12u1_all.deb |
| Debian | 11 | all | frr | <= 7.5.1-1.1+deb11u2 | frr_7.5.1-1.1+deb11u2_all.deb |
| Debian | 999 | all | frr | <= 10.0-2 | frr_10.0-2_all.deb |
| Debian | 13 | all | frr | <= 10.0-2 | frr_10.0-2_all.deb |
Related
cve
cve
CVE-2024-31949
2024-04-07 21:15:07
veracode
veracode
Denial Of Service (DoS)
2024-04-19 09:09:08
redhatcve
redhatcve
CVE-2024-31949
2024-04-08 13:52:27
nvd
nvd
CVE-2024-31949
2024-04-07 21:15:07
osv
osv
CVE-2024-31949
2024-04-07 21:15:07
frr - security update
2024-04-28 00:00:00
ubuntucve
ubuntucve
CVE-2024-31949
2024-04-07 00:00:00
cvelist
cvelist
CVE-2024-31949
2024-04-07 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-3797-1)
2024-04-29 00:00:00
nessus
nessus
Debian dla-3797 : frr - security update
2024-04-28 00:00:00
debian
debian
[SECURITY] [DLA 3797-1] frr security update
2024-04-28 06:30:09