EUVD-2025-12348

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2025-43972

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in GoBGP before 3.35.0. An attacker can cause a crash in the pkg/packet/bgp/bgp.go flowspec parser by sending fewer than 20 bytes in a...

CVE-2025-43972

An issue was discovered in GoBGP before 3.35.0. An attacker can cause a crash in the pkg/packet/bgp/bgp.go flowspec parser by sending fewer than 20 bytes in a certain context...

SUSE CVE-2025-43972

An issue was discovered in GoBGP before 3.35.0. An attacker can cause a crash in the pkg/packet/bgp/bgp.go flowspec parser by sending fewer than 20 bytes in a certain context...

GO-2025-3632 GoBGP crashes in the flowspec parser in github.com/osrg/gobgp

GoBGP crashes in the flowspec parser in github.com/osrg/gobgp...

GHSA-MFVV-MGF6-Q25R GoBGP crashes in the flowspec parser

An issue was discovered in GoBGP before 3.35.0. An attacker can cause a crash in the pkg/packet/bgp/bgp.go flowspec parser by sending fewer than 20 bytes in a certain context...

GoBGP crashes in the flowspec parser

An issue was discovered in GoBGP before 3.35.0. An attacker can cause a crash in the pkg/packet/bgp/bgp.go flowspec parser by sending fewer than 20 bytes in a certain context...

Improper Validation of Specified Quantity in Input

Overview Affected versions of this package are vulnerable to Improper Validation of Specified Quantity in Input in the flowspec parser in bgp.go. An attacker can cause an application crash by sending fewer than 20 bytes as ECSUBTYPEFLOWSPECREDIRECTIP6 data. Details Denial of Service DoS describes...

Improper Validation of Specified Quantity in Input

Overview Affected versions of this package are vulnerable to Improper Validation of Specified Quantity in Input in the flowspec parser in bgp.go. An attacker can cause an application crash by sending fewer than 20 bytes as ECSUBTYPEFLOWSPECREDIRECTIP6 data. Details Denial of Service DoS describes...

CVE-2025-43972

An issue was discovered in GoBGP before 3.35.0. An attacker can cause a crash in the pkg/packet/bgp/bgp.go flowspec parser by sending fewer than 20 bytes in a certain context...

CVE-2025-43972

An issue was discovered in GoBGP before 3.35.0. An attacker can cause a crash in the pkg/packet/bgp/bgp.go flowspec parser by sending fewer than 20 bytes in a certain context...

DEBIAN-CVE-2025-43972

An issue was discovered in GoBGP before 3.35.0. An attacker can cause a crash in the pkg/packet/bgp/bgp.go flowspec parser by sending fewer than 20 bytes in a certain context...

UBUNTU-CVE-2025-43972

An issue was discovered in GoBGP before 3.35.0. An attacker can cause a crash in the pkg/packet/bgp/bgp.go flowspec parser by sending fewer than 20 bytes in a certain context...

GoBGP 安全漏洞

GoBGP is an open source Border Gateway Protocol BGP implementation from osrg open source. A security vulnerability exists in GoBGP versions prior to 3.35.0, which stems from the fact that an attacker can cause the flowspec parser to crash by sending less than 20 bytes of data...

CVE-2025-43972

CVE-2025-43972 affects GoBGP prior to 3.35.0. The vulnerability is in the flowspec parser within pkg/packet/bgp/bgp.go, where an attacker can trigger a crash by sending fewer than 20 bytes in a specific context. The impact is a crash (potential denial via crash) as described in multiple sources. ...

CVE-2025-43972

An issue was discovered in GoBGP before 3.35.0. An attacker can cause a crash in the pkg/packet/bgp/bgp.go flowspec parser by sending fewer than 20 bytes in a certain context...