Lucene search
K

15 matches found

OSV
OSV
added 2023/09/27 5:34 p.m.8 views

SUSE-SU-2023:3839-1 Security update for quagga

This update for quagga fixes the following issues: - CVE-2023-38802: Fixed bad length handling in BGP attribute handling bsc1213284. - CVE-2023-41358: Fixed possible crash when processing NLRIs if the attribute length is zero bsc1214735...

7.5CVSS7.6AI score0.01437EPSS
Exploits1References5
OSV
OSV
added 2023/09/27 5:26 p.m.9 views

SUSE-SU-2023:3836-1 Security update for quagga

This update for quagga fixes the following issues: - CVE-2023-38802: Fixed bad length handling in BGP attribute handling bsc1213284. - CVE-2023-41358: Fixed possible crash when processing NLRIs if the attribute length is zero bsc1214735...

7.5CVSS7.6AI score0.01437EPSS
Exploits1References5
OSV
OSV
added 2023/09/26 4:5 p.m.7 views

SUSE-SU-2023:3793-1 Security update for quagga

This update for quagga fixes the following issues: - CVE-2023-38802: Fixed bad length handling in BGP attribute handling bsc1213284. - CVE-2023-41358: Fixed possible crash when processing NLRIs if the attribute length is zero bsc1214735...

7.5CVSS7.6AI score0.01437EPSS
Exploits1References5
OSV
OSV
added 2021/11/19 7:15 p.m.6 views

AZL-36984 CVE-2021-44038 affecting package quagga 1.2.4-16

An issue was discovered in Quagga through 1.2.4. Unsafe chown/chmod operations in the suggested spec file allow users with control of the non-root-owned directory /etc/quagga to escalate their privileges to root upon package installation or update...

7.8CVSS7.1AI score0.00761EPSS
Exploits1References1
Cvelist
Cvelist
added 2021/11/19 6:29 p.m.35 views

CVE-2021-44038

An issue was discovered in Quagga through 1.2.4. Unsafe chown/chmod operations in the suggested spec file allow users with control of the non-root-owned directory /etc/quagga to escalate their privileges to root upon package installation or update...

8AI score0.00761EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2012:0706-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.6AI score0.03493EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2019/11/25 1:15 p.m.48 views

CVE-2012-5521

Removed by vendor...

6.5CVSS6.5AI score0.01494EPSS
Exploits0
OSV
OSV
added 2018/02/16 2:45 a.m.6 views

SUSE-SU-2018:0457-1 Security update for quagga

This update for quagga fixes the following issues: - The Quagga BGP daemon contained a bug in the ASPATH size calculation that could have been exploited to facilitate a remote denial-of-service attack via specially crafted BGP UPDATE messages. CVE-2017-16227, bsc1065641 - The Quagga BGP daemon di...

9.8CVSS8.5AI score0.74599EPSS
Exploits0References13
OSV
OSV
added 2018/02/16 1:5 a.m.8 views

SUSE-SU-2018:0456-1 Security update for quagga

This update for quagga fixes the security following issues: - The Quagga BGP daemon contained a bug in the ASPATH size calculation that could have been exploited to facilitate a remote denial-of-service attack via specially crafted BGP UPDATE messages. CVE-2017-16227, bsc1065641 - The Quagga BGP...

9.8CVSS8.4AI score0.74599EPSS
Exploits0References11
OSV
OSV
added 2018/02/16 1:3 a.m.8 views

SUSE-SU-2018:0455-1 Security update for quagga

This update for quagga fixes the following security issues: - The Quagga BGP daemon contained a bug in the ASPATH size calculation that could have been exploited to facilitate a remote denial-of-service attack via specially crafted BGP UPDATE messages. CVE-2017-16227, bsc1065641 - The Quagga BGP...

9.8CVSS8.6AI score0.74599EPSS
Exploits0References13
OSV
OSV
added 2018/02/16 12:0 a.m.35 views

DLA-1286-1 quagga - security update

Bulletin has no description...

9.8CVSS7.1AI score0.39045EPSS
Exploits0
OSV
OSV
added 2017/03/03 10:9 a.m.6 views

MGASA-2017-0071 Updated quagga packages fix security vulnerability

All versions of Quagga, 0.93 through 1.1.0, are vulnerable to an unbounded memory allocation in the telnet 'vty' CLI, leading to a Denial-of-Service of Quagga daemons, or even the entire host CVE-2017-5495...

7.8CVSS8.4AI score0.18803EPSS
Exploits0References4
OSV
OSV
added 2016/04/04 8:33 a.m.7 views

SUSE-SU-2016:0946-1 Security update for quagga

This update for quagga fixes the following security issue: - CVE-2016-2342: Quagga was extended the prefixlen check to ensure it is within the bound of the NLRI packet data and the on-stack prefix structure and the maximum size for the address family bsc970952...

8.1CVSS8AI score0.1211EPSS
Exploits0References3
Oracle linux
Oracle linux
added 2007/05/30 12:0 a.m.37 views

Moderate: quagga security update

0.98.3-2.4.0.1 - rebuild and nvr fix - resolves: 240481: CVE-2007-1995 Quagga bgpd DoS 0.98.3-2.0.1 - resolves: 240481: CVE-2007-1995 Quagga bgpd DoS...

6.3CVSS1.6AI score0.0174EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2003/11/12 2:16 p.m.26 views

Low: Red Hat Security Advisory: quagga security update

Updated Quagga packages that close a locally-exploitable denial of service vulnerability are now available. Quagga is an open source implementation of TCP/IP routing software. Herbert Xu reported that Quagga can accept spoofed messages sent on the kernel netlink interface by other users on the...

2.1CVSS5.8AI score0.00362EPSS
Exploits0References2
Rows per page
Query Builder