241 matches found
MiracleLinux 8 : frr-7.5.1-13.el8_9.3.ML.1 (AXSA:2024-7415:01)
The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7415:01 advisory. ffr: Flowspec overflow in bgpd/bgpflowspec.c CVE-2023-38406 ffr: Out of bounds read in bgpd/bgplabel.c CVE-2023-38407 frr: crash from specially...
EUVD-2007-6664
Malware in sbrugna...
EUVD-2007-4807
Malware in sbrugna...
EUVD-2010-1695
Malware in sbrugna...
EUVD-2018-17150
Malware in sbrugna...
EUVD-2010-2952
Malware in sbrugna...
EUVD-2012-1830
Malware in sbrugna...
EUVD-2013-5880
Malware in sbrugna...
EUVD-2023-45864
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2024-31948
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In FRRouting FRR through 9.1, an attacker using a malformed Prefix SID attribute in a BGP UPDATE packet can cause the bgpd daemon to crash. CVE-2024-31948 Note...
Linux Distros Unpatched Vulnerability : CVE-2010-2948
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Stack-based buffer overflow in the bgprouterefreshreceive function in bgppacket.c in bgpd in Quagga before 0.99.17 allows remote authenticated users to cause a...
CVE-2024-44070
A flaw was found in FRRouting FRR. Improper input validation in the bgpattrencap function in the bgpd/bgpattr.c file of the remaining stream length before assigning the TLV value can cause the bgpd daemon to crash, resulting in a denial of service. Mitigation Mitigation for this issue is either n...
AZL-47868 CVE-2024-44070 affecting package frr for versions less than 9.1.1-2
An issue was discovered in FRRouting FRR through 10.1. bgpattrencap in bgpd/bgpattr.c does not check the actual remaining stream length before taking the TLV value...
CVE-2024-44070
An issue was discovered in FRRouting FRR through 10.1. bgpattrencap in bgpd/bgpattr.c does not check the actual remaining stream length before taking the TLV value...
CVE-2024-44070
An issue was discovered in FRRouting FRR through 10.1. bgpattrencap in bgpd/bgpattr.c does not check the actual remaining stream length before taking the TLV value...
CVE-2024-44070
An issue was discovered in FRRouting FRR through 10.1. bgpattrencap in bgpd/bgpattr.c does not check the actual remaining stream length before taking the TLV value...
CVE-2024-44070
Summary (CVE-2024-44070) FRRouting/FRR (up to 10.1) contains a bug in bgpd/bgp_attr.c where bgp_attr_encap does not verify the remaining stream length before reading a TLV, potentially enabling a crafted BGP UPDATE to cause abnormal processing. The vulnerability is described with high/critical im...
CVE-2024-44070
An issue was discovered in FRRouting FRR through 10.1. bgpattrencap in bgpd/bgpattr.c does not check the actual remaining stream length before taking the TLV value...
CVE-2024-44070
An issue was discovered in FRRouting FRR through 10.1. bgpattrencap in bgpd/bgpattr.c does not check the actual remaining stream length before taking the TLV value...
RHEL 6 : quagga (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - quagga: Double free vulnerability in bgpd when processing certain forms of UPDATE message allowing to cra...