quagga -- Denial of Service

2009-05-04T00:00:00
ID 2748FDDE-3A3C-11DE-BBC5-00E0815B8DA8
Type freebsd
Reporter FreeBSD
Modified 2009-05-07T00:00:00

Description

Debian Security Team reports:

It was discovered that Quagga, an IP routing daemon, could no longer process the Internet routing table due to broken handling of multiple 4-byte AS numbers in an AS path. If such a prefix is received, the BGP daemon crashes with an assert failure leading to a denial of service.