SUSE: Security Advisory (SUSE-SU-2012:0706-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

quagga security and bug fix update

0.99.15-14 - Resolves: 1416013 - CVE-2017-5495 quagga: Telnet interface input buffer allocates unbounded amounts of memory 0.99.15-13 - fix path of ripd pid file 842308 0.99.15-12 - fix start function in watchqugga initscript 862826, 1208617 0.99.15-11 - fix for CVE-2013-2236 1391918 - fix for...

Oracle: Security Advisory (ELSA-2012-1259)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

GLSA-201310-08 : Quagga: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201310-08 Quagga: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Quagga. Please review the CVE identifiers referenced below for details. Impact : A remote attacker may be able to cause arbitrary code...

Amazon Linux AMI : quagga (ALAS-2012-90)

The bgpcapabilityorf function in bgpd in Quagga 0.99.20.1 and earlier allows remote attackers to cause a denial of service assertion failure and daemon exit by leveraging a BGP peering relationship and sending a malformed Outbound Route Filtering ORF capability TLV in an OPEN message. C Tenable...

Oracle Linux 6 : quagga (ELSA-2012-1259)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2012-1259 advisory. - improve fix for CVE-2011-3325 - fix CVE-2011-3323 - fix CVE-2011-3324 - fix CVE-2011-3325 - fix CVE-2011-3326 - fix CVE-2011-3327 - fix CVE-2012-0255...

CentOS Update for quagga CESA-2012:1259 centos6

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Scientific Linux Security Update : quagga on SL6.x i386/x86_64 (20120912)

A heap-based buffer overflow flaw was found in the way the bgpd daemon processed malformed Extended Communities path attributes. An attacker could send a specially crafted BGP message, causing bgpd on a target system to crash or, possibly, execute arbitrary code with the privileges of the user...

quagga security update

CentOS Errata and Security Advisory CESA-2012:1259 Updated quagga packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base...

Quagga < 0.99.21 BGP Denial of Service Vulnerability

According to its self-reported version number, the installation of Quagga's BGP daemon listening on the remote host is affected by a denial of service vulnerability. Unauthenticated attackers on the local network can trigger this issue by leveraging a BGP peering relationship and sending a...

[SECURITY] [DSA 2497-1] quagga security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2497-1 [email protected] http://www.debian.org/security/ Florian Weimer June 20, 2012 http://www.debian.org/security/faq -...

Fedora 15 : quagga-0.99.20.1-2.fc15 (2012-9117)

This update fixes CVE-2012-1820. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...

Fedora 17 : quagga-0.99.21-2.fc17 (2012-9103)

Update to the 0.99.21 which fixes various issues. In addition, this update fixes following CVE : CVE-2012-1820: quagga bgpd: Assertion failure by processing BGP OPEN message with malformed ORF capability TLV Note that Tenable Network Security has extracted the preceding description block directly...

Fedora 16 : quagga-0.99.21-2.fc16 (2012-9116)

Update to the 0.99.21 which fixes various issues. In addition, this update fixes following CVE : CVE-2012-1820: quagga bgpd: Assertion failure by processing BGP OPEN message with malformed ORF capability TLV Note that Tenable Network Security has extracted the preceding description block directly...

CVE-2012-1820

Summary of CVE-2012-1820 : In Quagga, the bgpd daemon (versions up to 0.99.20.1 and earlier) incorrectly processes the BGP ORF capability in OPEN messages, allowing a remote attacker with a configured BGP peer to trigger an assertion failure and crash bgpd, causing a denial of service. The root c...

CVE-2012-1820

The bgpcapabilityorf function in bgpd in Quagga 0.99.20.1 and earlier allows remote attackers to cause a denial of service assertion failure and daemon exit by leveraging a BGP peering relationship and sending a malformed Outbound Route Filtering ORF capability TLV in an OPEN message...