frr: denial of service via crafted BGP UPDATE message

A flaw was found in FRRouting FRR. An unauthenticated remote attacker can exploit an integer underflow vulnerability by supplying a specially crafted BGP Border Gateway Protocol UPDATE message. This issue can lead to a Denial of Service DoS...

SUSE CVE-2026-37458

Missing input validation in the MPREACHNLRI component of FRRouting FRR stable/10.0 to stable/10.6 allows authenticated attackers to cause a Denial of Service DoS via supplying a crafted UPDATE message...

EUVD-2026-26916

A vulnerability was determined in osrg GoBGP up to 4.3.0. Affected by this vulnerability is the function parseRibEntry of the file pkg/packet/mrt/mrt.go. Executing a manipulation can lead to integer underflow. It is possible to launch the attack remotely. Upgrading to version 4.4.0 addresses this...

CVE-2026-37458

CVE-2026-37458 involves FRRouting (FRR) with a missing input validation in the MP_REACH_NLRI component, affecting FRR stable/10.0 to stable/10.6. An authenticated attacker can cause a Denial of Service by sending a crafted UPDATE message. The available connected documents confirm the affected sof...

CVE-2026-5107

A vulnerability has been found in FRRouting FRR up to 10.5.1. This affects the function processtype2route of the file bgpd/bgpevpn.c of the component EVPN Type-2 Route Handler. The manipulation leads to improper access controls. The attack can be initiated remotely. The attack is considered to ha...

USN-8046-1 frr vulnerabilities

It was discovered that FRR incorrectly handled certain malformed OSPF and update packets. A remote attacker could possibly use these issues to cause FRR to crash, resulting in a denial of service...

FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_unknown_tlv function at ospf_ext.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted OSPF packet.

...

SUSE CVE-2025-61107

FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the showvtyextprefprefsid function at ospfext.c. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted LSA Update packet...

AZL-69455 CVE-2025-61107 affecting package frr for versions less than 9.1.1-5

FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the showvtyextprefprefsid function at ospfext.c. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted LSA Update packet...

CVE-2025-61100

FRRouting/frr from v2.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the ospfopaquelsadump function at ospfopaque.c. This vulnerability allows attackers to cause a Denial of Service DoS under specific malformed LSA conditions...

The vulnerability of the microprogrammed routing software of I-O Data Device UD-LT1 and UD-LT1/EX arises from the lack of measures to neutralize specific elements, allowing attackers to circumvent existing security restrictions.

The vulnerability of the microprogrammed routing software of I-O Data Device UD-LT1 and UD-LT1/EX exists due to the lack of measures to neutralize specific elements. Exploiting this vulnerability allows a malicious actor to bypass existing security restrictions and execute arbitrary commands...

The vulnerability of the Dynamic Capability Handler component of the networking routing implementation software on Unix-like systems allows a attacker to cause a service failure.

The vulnerability of the Dynamic Capability Handler component in the software implementation for network routing on Unix-like systems is related to the execution of a loop with an unavailable exit condition. Exploiting this vulnerability can allow a malicious actor to cause service failures...

The vulnerability of the software for implementing network routing on Unix-like systems is related to improper validation of the specified data type. This allows a malicious actor to cause service failures.

The vulnerability of the FRRouting software implementation for Unix-like systems is related to improper validation of the specified data type. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

The vulnerability of the bgpd/bgp_open.c file in the software for implementing routing on Unix-like systems allows a hacker to cause a service failure by copying buffers without checking the input size.

The vulnerability of the bgpd/bgpopen.c file of the networking routing implementation software on Unix-like systems is related to the lack of checks for the length of the software’s rcv version. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

The vulnerability of the bgpd/bgp_flowspec.c file in the software for implementing routing on Unix-like systems allows a hacker to cause a service failure.

The vulnerability of the bgpd/bgpflowspec.c file in the software implementation for network routing on Unix-like systems is related to the handling of incorrect requests without attributes. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

frr: incorrect length check in bgp_capability_llgr() can lead do DoS

A flaw was found in frr that may allow a remote attacker to cause a denial of service via the bgpcapabilityllgr function...

FRRouting 安全漏洞

FRRouting is an open source network routing software suite from the FRRouting Project that runs on Unix-like platforms. A security vulnerability exists in FRRouting FRR versions 9.1 and earlier, which originates from a buffer overflow vulnerability in the ospfteparseextLink of an ospf LSA packet...

frr: crash from specially crafted MP_UNREACH_NLRI-containing BGP UPDATE message

A flaw was found in frr. A crash can occur when processing a crafted BGP UPDATE message with a MPUNREACHNLRI attribute and additional NLRI data that lacks mandatory path attributes...

frr: crash from malformed EOR-containing BGP UPDATE message

An issue was found in FRRouting FRR, where a crash may occur when processing a malformed BGP UPDATE message with an EOR...

The vulnerability of the FRRouting software implementation for networking routing on Unix-like systems lies in its uncontrolled resource consumption, which allows a hacker to cause service interruptions.

The vulnerability of the FRRouting software implementation for Unix-like systems is related to uncontrolled resource consumption. Exploiting this vulnerability can allow a malicious actor to cause service interruptions using a specially created file...