3 matches found
In FRRouting (FRR) through 9.1 it is possible for the get_edge() function in ospf_te.c in the OSPF daemon to return a NULL pointer. In cases where calling functions do not handle the returned NULL value the OSPF daemon crashes leading to denial of service.
...
AZL-40261 CVE-2024-34088 affecting package frr for versions less than 8.5.3-6
In FRRouting FRR through 9.1, it is possible for the getedge function in ospfte.c in the OSPF daemon to return a NULL pointer. In cases where calling functions do not handle the returned NULL value, the OSPF daemon crashes, leading to denial of service...
(ospfd): Denial of service by decoding too short Hello packet or Hello packet with invalid OSPFv2 header type
ospfpacket.c in ospfd in Quagga before 0.99.19 allows remote attackers to cause a denial of service daemon crash via 1 a 0x0a type field in an IPv4 packet header or 2 a truncated IPv4 Hello packet...