EUVD-2012-5413

Malware in sbrugna...

RHEL 6 : quagga (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - quagga: Double free vulnerability in bgpd when processing certain forms of UPDATE message allowing to cra...

CVE-2012-5521

quagga ospf6d 0.99.21 has a DoS flaw in the way the ospf6d daemon performs routes removal...

UBUNTU-CVE-2012-5521

quagga ospf6d 0.99.21 has a DoS flaw in the way the ospf6d daemon performs routes removal...

Design/Logic Flaw

quagga ospf6d 0.99.21 has a DoS flaw in the way the ospf6d daemon performs routes removal...

CVE-2012-5521

quagga ospf6d 0.99.21 has a DoS flaw in the way the ospf6d daemon performs routes removal...

CVE-2012-5521

quagga ospf6d 0.99.21 has a DoS flaw in the way the ospf6d daemon performs routes removal...

CVE-2012-5521

CVE-2012-5521 affects quagga’s ospf6d daemon (version 0.99.21) with a DoS flaw in the way routes are removed. The connected documents consistently identify ospf6d as the affected component and describe a DoS impact; the materials do not provide a patch/version remediation details or exploit speci...

CVE-2012-5521

Removed by vendor...

Denial Of Service (DoS)

Quagga is a TCP/IP based routing software suite. The Quagga bgpd daemon implements the BGP Border Gateway Protocol routing protocol. The Quagga ospfd and ospf6d daemons implement the OSPF Open Shortest Path First routing protocol. A heap-based buffer overflow flaw was found in the way the bgpd...

SUSE SLES12 Security Update : quagga (SUSE-SU-2017:2294-1)

This update provides Quagga 1.1.1, which brings several fixes and enhancements. Security issues fixed : - CVE-2017-5495: Telnet 'vty' interface DoS due to unbounded memory allocation. bsc1021669 - CVE-2016-1245: Stack overrun in IPv6 RA receive code. bsc1005258 Bug fixes : - Do not enable zebra's...

openSUSE Security Update : quagga (openSUSE-2017-551)

This update for quagga to version 1.1.1 fixes the following issues : This security issue was fixed : - CVE-2017-5495: Quagga was vulnerable to an unbounded memory allocation in the telnet 'vty' CLI, leading to a Denial-of-Service of Quagga daemons, or even the entire host. When Quagga daemons are...

quagga security and bug fix update

0.99.15-14 - Resolves: 1416013 - CVE-2017-5495 quagga: Telnet interface input buffer allocates unbounded amounts of memory 0.99.15-13 - fix path of ripd pid file 842308 0.99.15-12 - fix start function in watchqugga initscript 862826, 1208617 0.99.15-11 - fix for CVE-2013-2236 1391918 - fix for...

openSUSE Security Update : quagga (openSUSE-SU-2011:1155-1)

This update fixes the following security issues : - 718056: OSPF6D buffer overflow while decoding Link State Update with Inter Area Prefix Lsa CVE-2011-3323 - 718058: OSPF6D DoS while decoding Database Description packet CVE-2011-3324 - 718059: OSPFD DoS while decoding Hello packet CVE-2011-3325 ...

Scientific Linux Security Update : quagga on SL5.x i386/x86_64 (20120912)

A heap-based buffer overflow flaw was found in the way the bgpd daemon processed malformed Extended Communities path attributes. An attacker could send a specially crafted BGP message, causing bgpd on a target system to crash or, possibly, execute arbitrary code with the privileges of the user...

quagga security update

CentOS Errata and Security Advisory CESA-2012:1259 Updated quagga packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base...

Quagga < 0.99.19 Multiple Vulnerabilities

According to its self-reported version number, the installation of Quagga listening on the remote host is affected by multiple vulnerabilities : - A denial of service vulnerability in OSPF6D can be triggered by a specially crafted Link Status Update message with an invalid IPv6 prefix length...

SuSE 11.1 Security Update : quagga (SAT Patch Number 5169)

This update fixes the following security issues : - 718056: OSPF6D buffer overflow while decoding Link State Update with Inter Area Prefix Lsa. CVE-2011-3323 - 718058: OSPF6D DoS while decoding Database Description packet. CVE-2011-3324 - 718059: OSPFD DoS while decoding Hello packet. CVE-2011-33...

SuSE 11.1 Security Update : quagga (SAT Patch Number 5169)

This update fixes the following security issues : - 718056: OSPF6D buffer overflow while decoding Link State Update with Inter Area Prefix Lsa. CVE-2011-3323 - 718058: OSPF6D DoS while decoding Database Description packet. CVE-2011-3324 - 718059: OSPFD DoS while decoding Hello packet. CVE-2011-33...

SuSE 10 Security Update : quagga (ZYPP Patch Number 7768)

This update fixes the following security issues : - 718056: OSPF6D buffer overflow while decoding Link State Update with Inter Area Prefix Lsa. CVE-2011-3323 - 718058: OSPF6D DoS while decoding Database Description packet. CVE-2011-3324 - 718059: OSPFD DoS while decoding Hello packet. CVE-2011-33...