CBL Mariner 2.0 Security Update: frr (CVE-2023-41359)

The version of frr installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-41359 advisory. - An issue was discovered in FRRouting FRR through 9.0. There is an out-of-bounds read in bgpattraigpvalid in...

Out-of-bounds Read

libfrr.so is vulnerable to Out-of-bounds Reads. The vulnerability exists in the bgpattraigpvalid function at bgpattr.c because it does not properly validate the availability of two bytes during AIGP validation, which allows an attacker to cause an application crash...

CVE-2023-41359

A flaw was found in FRRouting that involves a heap-based buffer overflow in the bgpattraigpvalid function within bgpd/bgpattr.c. This flaw allows a remote attacker to send specially crafted data to the application, initiating an out-of-bounds read error and executing a denial of service DoS attac...

CVE-2023-41359

An issue was discovered in FRRouting FRR through 9.0. There is an out-of-bounds read in bgpattraigpvalid in bgpd/bgpattr.c because there is no check for the availability of two bytes during AIGP validation...

CVE-2023-41359

An issue was discovered in FRRouting FRR through 9.0. There is an out-of-bounds read in bgpattraigpvalid in bgpd/bgpattr.c because there is no check for the availability of two bytes during AIGP validation...

CVE-2023-41359

An issue was discovered in FRRouting FRR through 9.0. There is an out-of-bounds read in bgpattraigpvalid in bgpd/bgpattr.c because there is no check for the availability of two bytes during AIGP validation...