Lucene search
K

24 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2018-5381

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Quagga BGP daemon bgpd prior to version 1.2.3 has a bug in its parsing of Capabilities in BGP OPEN messages, in the bgppacket.c:bgpcapabilitymsgparse...

7.5CVSS7.5AI score0.30665EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/09/25 12:0 a.m.16 views

SUSE: Security Advisory (SUSE-SU-2024:3426-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8AI score0.74599EPSS
Exploits1References11
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.21 views

Mageia: Security Advisory (MGASA-2018-0133)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7AI score0.39045EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2018:0457-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.3AI score0.74599EPSS
Exploits0References9
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2018:0455-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.3AI score0.74599EPSS
Exploits0References9
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.33 views

Huawei EulerOS: Security Advisory for quagga (EulerOS-SA-2019-2408)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7AI score0.30665EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.34 views

Huawei EulerOS: Security Advisory for quagga (EulerOS-SA-2019-2657)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7AI score0.30665EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/12/10 12:0 a.m.40 views

EulerOS 2.0 SP2 : quagga (EulerOS-SA-2019-2408)

According to the versions of the quagga package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Open Shortest Path First OSPF protocol implementations may improperly determine Link State Advertisement LSA recency for LSAs with...

9.8CVSS7.9AI score0.30665EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2019/04/10 12:0 a.m.28 views

Siemens RuggedCom Server < v2.13.0 Multiple Vulnerabilities

Binary data 700524.prm...

9.8CVSS7.6AI score0.39045EPSS
Exploits0References5
Mageia
Mageia
added 2018/02/22 7:49 p.m.42 views

Updated quagga packages fix security vulnerability

This is an update to fix several security issues. 1. CVE-2018-5379: Fix double free of unknown attribute 2. CVE-2018-5380: debug print of received NOTIFY data can over-read msg array 3. CVE-2018-5381: fix infinite loop on certain invalid OPEN messages...

9.8CVSS2.4AI score0.39045EPSS
Exploits0References8
OSV
OSV
added 2018/02/22 7:49 p.m.8 views

MGASA-2018-0133 Updated quagga packages fix security vulnerability

This is an update to fix several security issues. 1. CVE-2018-5379: Fix double free of unknown attribute 2. CVE-2018-5380: debug print of received NOTIFY data can over-read msg array 3. CVE-2018-5381: fix infinite loop on certain invalid OPEN messages...

9.8CVSS9.5AI score0.39045EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2018/02/22 12:0 a.m.42 views

Amazon Linux AMI : quagga (ALAS-2018-957)

Infinite loop issue triggered by invalid OPEN message allows denial-of-service An infinite loop vulnerability was discovered in Quagga. A BGP peer could send specially crafted packets that would cause the daemon to enter an infinite loop, denying service and consuming CPU until it is...

9.8CVSS7.1AI score0.39045EPSS
Exploits0References4
Amazon
Amazon
added 2018/02/20 12:0 a.m.39 views

Important: quagga

Issue Overview: Infinite loop issue triggered by invalid OPEN message allows denial-of-service An infinite loop vulnerability was discovered in Quagga. A BGP peer could send specially crafted packets that would cause the daemon to enter an infinite loop, denying service and consuming CPU until it...

9.8CVSS8.2AI score0.39045EPSS
Exploits0
OpenVAS
OpenVAS
added 2018/02/20 12:0 a.m.23 views

openSUSE: Security Advisory for quagga (openSUSE-SU-2018:0473-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS7.8AI score0.74599EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/02/20 12:0 a.m.28 views

openSUSE Security Update : quagga (openSUSE-2018-177)

This update for quagga fixes the following issues : - CVE-2017-16227: Fixed bgpd DoS via specially crafted BGP UPDATE messages boo1065641 - CVE-2018-5378: Fixed bgpd bounds check issue via attribute length Quagga-2018-0543,boo1079798 - CVE-2018-5379: Fixed bgpd double free when processing UPDATE...

9.8CVSS6.8AI score0.74599EPSS
Exploits0References10
OPENSUSE Linux
OPENSUSE Linux
added 2018/02/19 3:13 p.m.78 views

Security update for quagga (important)

This update for quagga fixes the following issues: - CVE-2017-16227: Fixed bgpd DoS via specially crafted BGP UPDATE messages boo1065641 - CVE-2018-5378: Fixed bgpd bounds check issue via attribute length Quagga-2018-0543,boo1079798 - CVE-2018-5379: Fixed bgpd double free when processing UPDATE...

5CVSS7.8AI score0.74599EPSS
Exploits0References5
CVE
CVE
added 2018/02/19 1:0 p.m.119 views

CVE-2018-5381

The vulnerability CVE-2018-5381 affects the Quagga BGP daemon (bgpd) prior to 1.2.3. It stems from a bug in parsing the BGP OPEN Capabilities in bgp_packet.c:bgp_capability_msg_parse. When a Multi-Protocol capability lacks a recognized AFI/SAFI, the parser can enter an infinite loop, causing a de...

7.5CVSS8.1AI score0.30665EPSS
Exploits0References8Affected Software1
Debian
Debian
added 2018/02/16 10:32 p.m.39 views

[SECURITY] [DLA 1286-1] quagga security update

Package : quagga Version : 0.99.22.4-1+wheezy3+deb7u3 CVE ID : CVE-2018-5379 CVE-2018-5380 CVE-2018-5381 Several vulnerabilities have been discovered in Quagga, a routing daemon. The Common Vulnerabilities and Exposures project identifies the following issues: CVE-2018-5378 It was discovered that...

9.8CVSS8.7AI score0.74599EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2018/02/16 12:0 a.m.36 views

Ubuntu 14.04 LTS / 16.04 LTS : Quagga vulnerabilities (USN-3573-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3573-1 advisory. It was discovered that a double-free vulnerability existed in the Quagga BGP daemon when processing certain forms of UPDATE message. A remote...

9.8CVSS7.5AI score0.74599EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2018/02/16 12:0 a.m.33 views

SUSE SLES12 Security Update : quagga (SUSE-SU-2018:0455-1)

This update for quagga fixes the following security issues : - The Quagga BGP daemon contained a bug in the ASPATH size calculation that could have been exploited to facilitate a remote denial-of-service attack via specially crafted BGP UPDATE messages. CVE-2017-16227, bsc1065641 - The Quagga BGP...

9.8CVSS6.7AI score0.74599EPSS
Exploits0References19
Rows per page
Query Builder