Lucene search
OracleLinuxELSA-2024-2156HistoryMay 02, 2024 - 12:00 a.m.
frr security update
2024-05-0200:00:00
linux.oracle.com
3
frr
security update
unix
9.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
7.3 High
AI Score
Confidence
Low
0.005 Low
EPSS
Percentile
76.1%
[8.5.3-4]
- Resolves: RHEL-14825 - crafted BGP UPDATE message leading to a crash
[8.5.3-3] - Resolves: RHEL-14822 - mishandled malformed data leading to a crash
[8.5.3-2] - Resolves: RHEL-15915 - crash from specially crafted MP_UNREACH_NLRI-containing BGP UPDATE message
- Resolves: RHEL-15918 - crash from malformed EOR-containing BGP UPDATE message
[8.5.3-1] - Resolves: RHEL-15291 - Rebase FRR to version 8.5.3 in RHEL9
[8.3.1-12] - Resolves: RHEL-3541 - Incorrect handling of a error in parsing of an invalid section of a BGP update can de-peer a router
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 9 | src | frr | < 8.5.3-4.el9 | frr-8.5.3-4.el9.src.rpm |
| oracle linux | 9 | aarch64 | frr | < 8.5.3-4.el9 | frr-8.5.3-4.el9.aarch64.rpm |
| oracle linux | 9 | noarch | frr-selinux | < 8.5.3-4.el9 | frr-selinux-8.5.3-4.el9.noarch.rpm |
| oracle linux | 9 | src | frr | < 8.5.3-4.el9 | frr-8.5.3-4.el9.src.rpm |
| oracle linux | 9 | x86_64 | frr | < 8.5.3-4.el9 | frr-8.5.3-4.el9.x86_64.rpm |
| oracle linux | 9 | noarch | frr-selinux | < 8.5.3-4.el9 | frr-selinux-8.5.3-4.el9.noarch.rpm |
Related
osv
osv
Moderate: frr security update
2024-04-30 00:00:00
Moderate: frr security update
2024-05-22 00:00:00
frr vulnerabilities
2023-10-18 04:43:51
nessus
nessus
RHEL 9 : frr (RHSA-2024:2156)
2024-04-30 00:00:00
Oracle Linux 9 : frr (ELSA-2024-2156)
2024-05-06 00:00:00
CentOS 8 : frr (CESA-2024:2981)
2024-05-22 00:00:00
redhat
redhat
(RHSA-2024:2156) Moderate: frr security update
2024-04-30 06:14:53
(RHSA-2024:2981) Moderate: frr security update
2024-05-22 06:35:15
almalinux
almalinux
Moderate: frr security update
2024-04-30 00:00:00
Moderate: frr security update
2024-05-22 00:00:00
openvas
openvas
Fedora: Security Advisory for frr (FEDORA-2023-61abba57d8)
2023-11-16 00:00:00
Fedora: Security Advisory for frr (FEDORA-2023-514db5339e)
2023-11-16 00:00:00
Fedora: Security Advisory for frr (FEDORA-2023-ce436d56f8)
2023-11-16 00:00:00
fedora
fedora
[SECURITY] Fedora 37 Update: frr-8.5.3-1.fc37
2023-11-15 02:01:52
[SECURITY] Fedora 39 Update: frr-8.5.3-1.fc39
2023-11-15 01:43:47
[SECURITY] Fedora 38 Update: frr-8.5.3-1.fc38
2023-11-15 02:16:16
oraclelinux
oraclelinux
frr security update
2024-05-23 00:00:00
ubuntu
ubuntu
FRR vulnerabilities
2023-10-18 00:00:00
FRR vulnerabilities
2023-06-05 00:00:00
FRR vulnerabilities
2023-11-15 00:00:00
cloudlinux
cloudlinux
quagga: Fix of 2 CVEs
2023-10-20 15:53:24
redos
redos
ROS-20240617-02
2024-06-17 00:00:00
ROS-20240403-09
2024-04-03 00:00:00
debian
debian
[SECURITY] [DLA 3573-1] frr security update
2023-09-19 19:41:22
[SECURITY] [DSA 5495-1] frr security update
2023-09-11 07:14:35
[SECURITY] [DLA 3797-1] frr security update
2024-04-28 06:30:09
redhatcve
redhatcve
ubuntucve
ubuntucve
prion
prion
Out-of-bounds
2023-08-29 04:15:00
Design/Logic Flaw
2023-05-09 16:15:00
Design/Logic Flaw
2023-05-09 16:15:00
cvelist
cvelist
cbl_mariner
cbl_mariner
CVE-2023-46753 affecting package frr for versions less than 8.5.3-3
2023-11-10 17:45:58
CVE-2023-46752 affecting package frr for versions less than 8.5.3-3
2023-11-10 17:45:58
CVE-2023-46752 affecting package frr for versions less than 9.1-2
2024-05-17 21:38:35
nvd
nvd
veracode
veracode
Denial Of Service (DoS)
2023-10-27 07:53:52
Denial Of Service (DoS)
2023-10-27 08:06:35
Denial Of Service
2023-10-12 08:57:20
cve
cve
debiancve
debiancve
ics
ics
Siemens SCALANCE XCM-/XRM-300
2024-02-15 12:00:00
9.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
7.3 High
AI Score
Confidence
Low
0.005 Low
EPSS
Percentile
76.1%
Related for ELSA-2024-2156