SUSE CVE-2022-49730

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

The vulnerability of the `ospf_te_parse_ext_link()` function in the Opaque LSA Extended Link Parser component of the networking routing implementation software for Unix-like systems allows a hacker to execute arbitrary code.

The vulnerability of the ospfteparseextlink function in the Opaque LSA Extended Link Parser component of the networking routing implementation software for Unix-like systems is related to the escape operation from the buffer into memory. Exploitation of this vulnerability allows a remote attacker...

In the Opaque LSA Extended Link parser in FRRouting (FRR) through 9.1 there can be a buffer overflow and daemon crash in ospf_te_parse_ext_link for OSPF LSA packets during an attempt to read Segment Routing Adjacency SID subTLVs (lengths are not validated).

...

UBUNTU-CVE-2024-31951

In the Opaque LSA Extended Link parser in FRRouting FRR through 9.1, there can be a buffer overflow and daemon crash in ospfteparseextlink for OSPF LSA packets during an attempt to read Segment Routing Adjacency SID subTLVs lengths are not validated...

CVE-2024-31951

FRRouting FRR in versions up to 9.1 is affected by CVE-2024-31951 due to a bug in the Opaque LSA Extended Link parser (ospf_te_parse_ext_link) that can trigger a buffer overflow and daemon crash while reading Segment Routing Adjacency SID subTLVs because lengths are not validated. Exploitation st...

PT-2024-6036 · Frrouting +5 · Frrouting +5

Name of the Vulnerable Software and Affected Versions: FRRouting versions through 9.1 Description: The issue is related to a buffer overflow in the Opaque LSA Extended Link parser, specifically in the ospf te parse ext link function, when handling OSPF LSA packets with Segment Routing Adjacency S...