FRRouting/frr from v2.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the ospf_opaque_lsa_dump function at ospf_opaque.c. This vulnerability allows attackers to cause a Denial of Service (DoS) under specific malformed LSA conditions.

...

CVE-2025-61107

FRRouting/frr vulnerable from v4.0 through v10.4.1 due to a NULL pointer dereference in ospf_ext.c (show_vty_ext_pref_pref_sid). This allows an attacker to cause a Denial of Service via a crafted LSA Update packet. MARINER advisories note patches: patched packages are available; for Tencent/Tengu...

EUVD-2015-6373

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2024-31951

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Opaque LSA Extended Link parser in FRRouting FRR through 9.1, there can be a buffer overflow and daemon crash in ospfteparseextlink for OSPF LSA packets...

Buffer Overflow

libfrr.so is vulnerable to Buffer Overflow. The vulnerability is due to inadequate validation of lengths in Segment Routing Adjacency SID subTLVs within OSPF LSA packets during the parsing process, which could result in a Denial of Service...

Buffer Overflow

libfrr.so is vulnerable to Buffer Overflow. The vulnerability is due to inadequate validation of the size of Segment Routing subTLVs in ospfteparseri function within ospfte.c. An attacker can trigger this vulnerability by crafting OSPF LSA packets with maliciously crafted Segment Routing subTLVs...

CVE-2024-31950

In FRRouting FRR through 9.1, there can be a buffer overflow and daemon crash in ospfteparseri for OSPF LSA packets during an attempt to read Segment Routing subTLVs their size is not validated...

CVE-2024-31950

In FRRouting FRR through 9.1, there can be a buffer overflow and daemon crash in ospfteparseri for OSPF LSA packets during an attempt to read Segment Routing subTLVs their size is not validated...

CVE-2024-31950

In FRRouting FRR through 9.1, there can be a buffer overflow and daemon crash in ospfteparseri for OSPF LSA packets during an attempt to read Segment Routing subTLVs their size is not validated...

CVE-2024-31951

In the Opaque LSA Extended Link parser in FRRouting FRR through 9.1, there can be a buffer overflow and daemon crash in ospfteparseextlink for OSPF LSA packets during an attempt to read Segment Routing Adjacency SID subTLVs lengths are not validated...

CVE-2024-31951

FRRouting FRR in versions up to 9.1 is affected by CVE-2024-31951 due to a bug in the Opaque LSA Extended Link parser (ospf_te_parse_ext_link) that can trigger a buffer overflow and daemon crash while reading Segment Routing Adjacency SID subTLVs because lengths are not validated. Exploitation st...

frr - Multiple vulnerabilities

[email protected] reports: In FRRouting FRR through 9.1, there are multiples vulnerabilities. CVE-2024-31950: buffer overflow and daemon crash in ospfteparseri for OSPF LSA packets CVE-2024-31951: buffer overflow and daemon crash in ospfteparseextlink for OSPF LSA packets...

PT-2024-6034 · Frrouting +5 · Frrouting +5

Name of the Vulnerable Software and Affected Versions: FRRouting versions through 9.1 Description: The issue is related to a buffer overflow and daemon crash in the ospf te parse ri function for OSPF LSA packets during an attempt to read Segment Routing subTLVs, whose size is not validated. This...

Denial Of Service (DoS)

FRRouting is vulnerable to Denial of Service DoS. The vulnerability is due to an attempted access to a missing attribute field in the ospfteparsete function in ospfd/ospfte.c in FRRouting FRR through version 9.1. Remote attackers can exploit this vulnerability by sending a malformed OSPF LSA...

Ubuntu: Security Advisory (USN-6679-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

UBUNTU-CVE-2024-27913

ospfteparsete in ospfd/ospfte.c in FRRouting FRR through 9.1 allows remote attackers to cause a denial of service ospfd daemon crash via a malformed OSPF LSA packet, because of an attempted access to a missing attribute field...

AZL-35450 CVE-2024-27913 affecting package frr for versions less than 8.5.5-1

ospfteparsete in ospfd/ospfte.c in FRRouting FRR through 9.1 allows remote attackers to cause a denial of service ospfd daemon crash via a malformed OSPF LSA packet, because of an attempted access to a missing attribute field...

CVE-2024-27913

ospfteparsete in ospfd/ospfte.c in FRRouting FRR through 9.1 allows remote attackers to cause a denial of service ospfd daemon crash via a malformed OSPF LSA packet, because of an attempted access to a missing attribute field...

Design/Logic Flaw

ospfteparsete in ospfd/ospfte.c in FRRouting FRR through 9.1 allows remote attackers to cause a denial of service ospfd daemon crash via a malformed OSPF LSA packet, because of an attempted access to a missing attribute field...

CVE-2024-27913

ospfteparsete in ospfd/ospfte.c in FRRouting FRR through 9.1 allows remote attackers to cause a denial of service ospfd daemon crash via a malformed OSPF LSA packet, because of an attempted access to a missing attribute field...