Lucene search

CVE-2018-5379

🗓️ 19 Feb 2018 13:00:29Reported by [email protected]Type

Quagga BGP daemon vulnerability double-frees memory on certain UPDATE message

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 79
Check Point Advisories	Quagga BGP Daemon bgp_update_receive Double Free (CVE-2018-5379)	18 Feb 201900:00	–	checkpoint_advisories
Prion	Double free	19 Feb 201813:29	–	prion
OpenVAS	Huawei EulerOS: Security Advisory for quagga (EulerOS-SA-2018-1064)	23 Jan 202000:00	–	openvas
OpenVAS	CentOS Update for quagga CESA-2018:0377 centos7	14 Mar 201800:00	–	openvas
OpenVAS	Huawei EulerOS: Security Advisory for quagga (EulerOS-SA-2018-1065)	23 Jan 202000:00	–	openvas
OpenVAS	Mageia: Security Advisory (MGASA-2018-0133)	28 Jan 202200:00	–	openvas
OpenVAS	Debian: Security Advisory (DSA-4115-1)	14 Feb 201800:00	–	openvas
OpenVAS	Fedora Update for quagga FEDORA-2018-9cd3ff3784	14 Mar 201800:00	–	openvas
OpenVAS	Ubuntu: Security Advisory (USN-3573-1)	16 Feb 201800:00	–	openvas
OpenVAS	Debian: Security Advisory (DLA-1286-1)	20 Feb 201800:00	–	openvas

Nvd

Node

quagga quaggaRange≤1.2.2

Node

debian debian_linuxMatch7.0

debian debian_linuxMatch8.0

debian debian_linuxMatch9.0

Node

canonical ubuntu_linuxMatch14.04lts

canonical ubuntu_linuxMatch16.04lts

canonical ubuntu_linuxMatch17.10

Node

redhat enterprise_linux_serverMatch7.0

redhat enterprise_linux_server_ausMatch7.4

redhat enterprise_linux_server_ausMatch7.6

redhat enterprise_linux_server_eusMatch7.4

redhat enterprise_linux_server_eusMatch7.5

redhat enterprise_linux_server_eusMatch7.6

redhat enterprise_linux_server_tusMatch7.4

redhat enterprise_linux_server_tusMatch7.6

redhat enterprise_linux_workstationMatch7.0

Node

siemens ruggedcom_rox_ii_firmwareRange<2.13.0

AND

siemens ruggedcom_rox_iiMatch-

Source	Link
gogs	www.gogs.quagga.net/Quagga/quagga/src/master/doc/security/Quagga-2018-1114.txt
security	www.security.gentoo.org/glsa/201804-17
access	www.access.redhat.com/errata/RHSA-2018:0377
debian	www.debian.org/security/2018/dsa-4115
savannah	www.savannah.nongnu.org/forum/forum.php
lists	www.lists.debian.org/debian-lts-announce/2018/02/msg00021.html
usn	www.usn.ubuntu.com/3573-1/
securityfocus	www.securityfocus.com/bid/103105
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-451142.pdf
kb	www.kb.cert.org/vuls/id/940439

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

19 Feb 2018 13:29Current

8.3High risk

Vulners AI Score8.3

CVSS27.5

CVSS37.5 - 9.8

EPSS0.21848

CWE-415