CVE-2024-31951

FRRouting FRR in versions up to 9.1 is affected by CVE-2024-31951 due to a bug in the Opaque LSA Extended Link parser (ospf_te_parse_ext_link) that can trigger a buffer overflow and daemon crash while reading Segment Routing Adjacency SID subTLVs because lengths are not validated. Exploitation st...

frr - Multiple vulnerabilities

[email protected] reports: In FRRouting FRR through 9.1, there are multiples vulnerabilities. CVE-2024-31950: buffer overflow and daemon crash in ospfteparseri for OSPF LSA packets CVE-2024-31951: buffer overflow and daemon crash in ospfteparseextlink for OSPF LSA packets...

PT-2024-6032 · Frrouting +5 · Frrouting +5

Name of the Vulnerable Software and Affected Versions: FRRouting versions through 9.1 Description: The issue is related to improper input validation, allowing a remote attacker to cause a denial of service by exploiting the vulnerability. Specifically, an attacker can use a malformed Prefix SID...

PT-2024-6034 · Frrouting +5 · Frrouting +5

Name of the Vulnerable Software and Affected Versions: FRRouting versions through 9.1 Description: The issue is related to a buffer overflow and daemon crash in the ospf te parse ri function for OSPF LSA packets during an attempt to read Segment Routing subTLVs, whose size is not validated. This...

The vulnerability of the bgpattrpsid_sub() function in the networking routing implementation software for Unix-like systems allows a attacker to cause a service failure.

The vulnerability of the bgpattrpsidsub function in the networking routing implementation software for Unix-like systems in FRRouting is related to the lack of measures taken to neutralize special elements. Exploiting this vulnerability can allow a malicious actor to cause service failures remote...

ROS-20240403-09

Vulnerability of the peekforas4capability function of the software tool for implementing network routing on Unix-like systems FRRouting is related to flaws in the use of the assert function. Unix-like systems FRRouting is related to flaws in using assert function. Exploitation The vulnerability...

Infinite Loop

FRRouting is vulnerable to Infinite Loop. The vulnerability is due to a Loop with Unreachable Exit Condition in FRRouting when parsing certain babeld unicast hello messages that are intended to be ignored. An attacker can exploit this by sending specially crafted hello messages with the unicast...

Denial Of Service (DoS)

FRRouting is vulnerable to Denial of Service DoS. The vulnerability is due to an attempted access to a missing attribute field in the ospfteparsete function in ospfd/ospfte.c in FRRouting FRR through version 9.1. Remote attackers can exploit this vulnerability by sending a malformed OSPF LSA...

USN-6679-1: FRR vulnerability

It was discovered that FRR incorrectly handled certain malformed OSPF LSA packets. A remote attacker could possibly use this issue to cause FRR to crash, resulting in a denial of service...

Ubuntu 22.04 LTS / 23.10 : FRR vulnerability (USN-6679-1)

The remote Ubuntu 22.04 LTS / 23.10 host has packages installed that are affected by a vulnerability as referenced in the USN-6679-1 advisory. It was discovered that FRR incorrectly handled certain malformed OSPF LSA packets. A remote attacker could possibly use this issue to cause FRR to crash,...

frr: crash from malformed EOR-containing BGP UPDATE message

An issue was found in FRRouting FRR, where a crash may occur when processing a malformed BGP UPDATE message with an EOR...

Moderate: Red Hat Security Advisory: frr security update

An update for frr is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

Moderate: Red Hat Security Advisory: frr security update

An update for frr is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

Moderate: Red Hat Security Advisory: frr security update

An update for frr is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

frr: crash from malformed EOR-containing BGP UPDATE message

An issue was found in FRRouting FRR, where a crash may occur when processing a malformed BGP UPDATE message with an EOR...

RHEL 9 : frr (RHSA-2024:1093)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:1093 advisory. FRRouting is free software that manages TCP/IP based routing protocols. It supports BGP4, OSPFv2, OSPFv3, ISIS, RIP, RIPng, PIM, NHRP, PBR,...

RHEL 8 : frr (RHSA-2024:1113)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:1113 advisory. FRRouting is free software that manages TCP/IP based routing protocols. It supports BGP4, OSPFv2, OSPFv3, ISIS, RIP, RIPng, PIM, NHRP, PBR,...

RHEL 9 : frr (RHSA-2024:1152)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:1152 advisory. FRRouting is free software that manages TCP/IP based routing protocols. It supports BGP4, OSPFv2, OSPFv3, ISIS, RIP, RIPng, PIM, NHRP, PBR,...

CVE-2024-27913

A flaw was found in FRRouting. A missing check for a NULL attribute in the ospfteparsete in ospfd/ospfte.c file may lead to a crash of the ospfd daemon and a denial of service through a malformed OSPF LSA packet. Mitigation Mitigation for this issue is either not available or the currently...

CVE-2024-27913

ospfteparsete in ospfd/ospfte.c in FRRouting FRR through 9.1 allows remote attackers to cause a denial of service ospfd daemon crash via a malformed OSPF LSA packet, because of an attempted access to a missing attribute field...