openSUSE Security Update : quagga (openSUSE-SU-2011:0274-2)

This security update of quagga fixes : - CVE-2010-1674: Direct BGP peers can send malformed extended communities which lead to a NULL pointer dereference. - CVE-2010-1675: A malformed ASPATHLIMIT path attribute will cause a session reset in Quagga. This malformed package is forwarded by other...

SuSE 10 Security Update : quagga (ZYPP Patch Number 7406)

This security update of quagga fixes : - Direct BGP peers can send malformed extended communities which lead to a NULL pointer dereference. CVE-2010-1674 - A malformed ASPATHLIMIT path attribute will cause a session reset in Quagga. This malformed package is forwarded by other routers and can be...

openSUSE Security Update : quagga (openSUSE-SU-2011:0274-1)

This security update of quagga fixes : - CVE-2010-1674: Direct BGP peers can send malformed extended communities which lead to a NULL pointer dereference. - CVE-2010-1675: A malformed ASPATHLIMIT path attribute will cause a session reset in Quagga. This malformed package is forwarded by other...

SuSE 11.1 Security Update : quagga (SAT Patch Number 4023)

This security update of quagga fixes : - Direct BGP peers can send malformed extended communities which lead to a NULL pointer dereference. CVE-2010-1674 - A malformed ASPATHLIMIT path attribute will cause a session reset in Quagga. This malformed package is forwarded by other routers and can be...

Ubuntu 6.06 LTS / 8.04 LTS / 9.10 / 10.04 LTS / 10.10 : quagga vulnerabilities (USN-1095-1)

It was discovered that Quagga incorrectly parsed certain malformed extended communities. A remote attacker could use this flaw to cause Quagga to crash, resulting in a denial of service. CVE-2010-1674 It was discovered that Quagga resets BGP sessions when encountering malformed ASPATHLIMIT...

CVE-2010-1675

bgpd in Quagga before 0.99.18 allows remote attackers to cause a denial of service session reset via a malformed ASPATHLIMIT path attribute...

Design/Logic Flaw

bgpd in Quagga before 0.99.18 allows remote attackers to cause a denial of service session reset via a malformed ASPATHLIMIT path attribute...

CVE-2010-1675

bgpd in Quagga before 0.99.18 allows remote attackers to cause a denial of service session reset via a malformed ASPATHLIMIT path attribute...

CVE-2010-1675

CVE-2010-1675 concerns bgpd (Quagga) prior to 0.99.18. A malformed AS_PATHLIMIT path attribute enables remote attackers to trigger a session reset/Denial of Service. Public feeds in the connected advisories (e.g., MiracleLinux, openSUSE/SUSE/NASL entries) confirm Quagga 0.99.18+ fixes are require...

CVE-2010-1675

Removed by vendor...

USN-1095-1: Quagga vulnerabilities

It was discovered that Quagga incorrectly parsed certain malformed extended communities. A remote attacker could use this flaw to cause Quagga to crash, resulting in a denial of service. CVE-2010-1674 It was discovered that Quagga resets BGP sessions when encountering malformed ASPATHLIMIT...

Debian DSA-2197-1 : quagga - denial of service

It has been discovered that the Quagga routing daemon contains two denial-of-service vulnerabilities in its BGP implementation : - CVE-2010-1674 A crafted Extended Communities attribute triggers a NULL pointer dereference which causes the BGP daemon to crash. The crafted attributes are not...

DSA-2197-1 quagga - denial of service

Bulletin has no description...

CVE-2010-1675

bgpd in Quagga before 0.99.18 allows remote attackers to cause a denial of service session reset via a malformed ASPATHLIMIT path attribute...