quagga security and bug fix update

2017-03-27T00:00:00
ID ELSA-2017-0794
Type oraclelinux
Reporter Oracle
Modified 2017-03-27T00:00:00

Description

[0.99.15-14] - Resolves: #1416013 - CVE-2017-5495 quagga: Telnet interface input buffer allocates unbounded amounts of memory [0.99.15-13] - fix path of ripd pid file (#842308) [0.99.15-12] - fix start() function in watchqugga initscript (#862826, #1208617) [0.99.15-11] - fix for CVE-2013-2236 (#1391918) - fix for CVE-2016-1245 (#1391914) - fix for CVE-2016-2342 (#1391916) - fix for CVE-2016-4049 (#1391919) [0.99.15-11] - ospf6d: Fix crash when '[no] ipv6 ospf6 advertise prefix-list' is in startup-config (#770731) [0.99.15-10] - add watchquagga initscript (#862826, #1208617) - remove pidfile when service is stopped (#842308) - use QCONFDIR correctly in initscripts (#839620) - include watchquagga and ospfclient manpages (#674862) [0.99.15-9] - improve fix for CVE-2011-3325 [0.99.15-8] - fix CVE-2011-3323 - fix CVE-2011-3324 - fix CVE-2011-3325 - fix CVE-2011-3326 - fix CVE-2011-3327 - fix CVE-2012-0255 - fix CVE-2012-0249 and CVE-2012-0250 - fix CVE-2012-1820