11 matches found
Linux Distros Unpatched Vulnerability : CVE-2024-34088
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In FRRouting FRR through 9.1, it is possible for the getedge function in ospfte.c in the OSPF daemon to return a NULL pointer. In cases where calling functions ...
CBL Mariner 2.0 Security Update: frr (CVE-2024-34088)
The version of frr installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-34088 advisory. - In FRRouting FRR through 9.1, it is possible for the getedge function in ospfte.c in the OSPF daemon to return ...
ROS-20240904-01
Vulnerability of the getedge function of the ospfte.c file of the OSPF Daemonr component of the software tool for implementing network routing on Unix-like systems FRRouting is related to resource release errors. network routing on Unix-like systems FRRouting is related to resource release errors...
Denial Of Service (DoS)
libfrr.so is vulnerable to Denial Of Service DoS. The vulnerability is due to insufficient handling of NULL return values when calling functions in the getedge function within ospfte.c in the OSPF daemon, resulting in a crash of the daemon and subsequent denial of service...
In FRRouting (FRR) through 9.1 it is possible for the get_edge() function in ospf_te.c in the OSPF daemon to return a NULL pointer. In cases where calling functions do not handle the returned NULL value the OSPF daemon crashes leading to denial of service.
...
CVE-2024-34088
A flaw was found in FRRouting FRR. Some functions do not check the return value of the getedge function in the ospfd/ospfte.c file, allowing a NULL pointer dereference, causing a crash in the OSPF daemon, resulting in a denial of service. Mitigation Mitigation for this issue is either not availab...
AZL-40261 CVE-2024-34088 affecting package frr for versions less than 8.5.3-6
In FRRouting FRR through 9.1, it is possible for the getedge function in ospfte.c in the OSPF daemon to return a NULL pointer. In cases where calling functions do not handle the returned NULL value, the OSPF daemon crashes, leading to denial of service...
UBUNTU-CVE-2024-34088
In FRRouting FRR through 9.1, it is possible for the getedge function in ospfte.c in the OSPF daemon to return a NULL pointer. In cases where calling functions do not handle the returned NULL value, the OSPF daemon crashes, leading to denial of service...
CVE-2024-34088
In FRRouting FRR through 9.1, it is possible for the getedge function in ospfte.c in the OSPF daemon to return a NULL pointer. In cases where calling functions do not handle the returned NULL value, the OSPF daemon crashes, leading to denial of service...
(ospfd): Denial of service by decoding too short Hello packet or Hello packet with invalid OSPFv2 header type
ospfpacket.c in ospfd in Quagga before 0.99.19 allows remote attackers to cause a denial of service daemon crash via 1 a 0x0a type field in an IPv4 packet header or 2 a truncated IPv4 Hello packet...
(ospfd): Assertion failure due improper length check for a received LS-Update OSPF packet
Buffer overflow in the ospflsupdlistlsa function in ospfpacket.c in the OSPFv2 implementation in ospfd in Quagga before 0.99.20.1 allows remote attackers to cause a denial of service assertion failure and daemon exit via a Link State Update aka LS Update packet that is smaller than the length...