EUVD-2013-2187

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2013-2236

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Stack-based buffer overflow in the newmsglsachangenotify function in the OSPFD API ospfapi.c in Quagga before 0.99.22.2, when --enable-opaque-lsa and the -a...

SUSE SLES15 / openSUSE 15 Security Update : frr (SUSE-SU-2024:1453-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:1453-1 advisory. - ospfteparsete in ospfd/ospfte.c in FRRouting FRR through 9.1 allows remote attackers to cause a denial of service...

Denial Of Service (DoS)

FRRouting is vulnerable to Denial of Service DoS. The vulnerability is due to an attempted access to a missing attribute field in the ospfteparsete function in ospfd/ospfte.c in FRRouting FRR through version 9.1. Remote attackers can exploit this vulnerability by sending a malformed OSPF LSA...

UBUNTU-CVE-2024-27913

ospfteparsete in ospfd/ospfte.c in FRRouting FRR through 9.1 allows remote attackers to cause a denial of service ospfd daemon crash via a malformed OSPF LSA packet, because of an attempted access to a missing attribute field...

CVE-2024-27913

ospfteparsete in ospfd/ospfte.c in FRRouting FRR through 9.1 allows remote attackers to cause a denial of service ospfd daemon crash via a malformed OSPF LSA packet, because of an attempted access to a missing attribute field...

Design/Logic Flaw

ospfteparsete in ospfd/ospfte.c in FRRouting FRR through 9.1 allows remote attackers to cause a denial of service ospfd daemon crash via a malformed OSPF LSA packet, because of an attempted access to a missing attribute field...

SUSE CVE-2011-3325

ospfpacket.c in ospfd in Quagga before 0.99.19 allows remote attackers to cause a denial of service daemon crash via 1 a 0x0a type field in an IPv4 packet header or 2 a truncated IPv4 Hello packet...

NewStart CGSL MAIN 4.05 : quagga Multiple Vulnerabilities (NS-SA-2019-0101)

The remote NewStart CGSL host, running version MAIN 4.05, has quagga packages installed that are affected by multiple vulnerabilities: - A denial of service flaw affecting various daemons in Quagga was found. A remote attacker could use this flaw to cause the various Quagga daemons, which expose...

Denial Of Service (DoS)

Quagga is a TCP/IP based routing software suite. The Quagga bgpd daemon implements the BGP Border Gateway Protocol routing protocol. The Quagga ospfd and ospf6d daemons implement the OSPF Open Shortest Path First routing protocol. A heap-based buffer overflow flaw was found in the way the bgpd...

Denial Of Service (DoS)

quagga is vulnerable to denial of service DoS attacks. The vulnerability exists as a stack-based buffer overflow in the newmsglsachangenotify function in the OSPFD API ospfapi.c in Quagga before 0.99.22.2, when --enable-opaque-lsa and the -a command line option are used, allows remote attackers t...

openSUSE Security Update : quagga (openSUSE-SU-2011:1155-1)

This update fixes the following security issues : - 718056: OSPF6D buffer overflow while decoding Link State Update with Inter Area Prefix Lsa CVE-2011-3323 - 718058: OSPF6D DoS while decoding Database Description packet CVE-2011-3324 - 718059: OSPFD DoS while decoding Hello packet CVE-2011-3325 ...

CVE-2013-2236

Stack-based buffer overflow in the newmsglsachangenotify function in the OSPFD API ospfapi.c in Quagga before 0.99.22.2, when --enable-opaque-lsa and the -a command line option are used, allows remote attackers to cause a denial of service crash via a large LSA...

CVE-2013-2236

Stack-based buffer overflow in the newmsglsachangenotify function in the OSPFD API ospfapi.c in Quagga before 0.99.22.2, when --enable-opaque-lsa and the -a command line option are used, allows remote attackers to cause a denial of service crash via a large LSA...

CVE-2013-2236

CVE-2013-2236: Quagga’s OSPFD ospf_api.c new_msg_lsa_change_notify has a stack-based buffer overflow when --enable-opaque-lsa and -a are used, allowing a remote attacker to crash the daemon via a large LSA. Affected products/versions include Quagga prior to 0.99.22.2. The issue is a denial of ser...

CVE-2013-2236

Stack-based buffer overflow in the newmsglsachangenotify function in the OSPFD API ospfapi.c in Quagga before 0.99.22.2, when --enable-opaque-lsa and the -a command line option are used, allows remote attackers to cause a denial of service crash via a large LSA...

quagga security update

CentOS Errata and Security Advisory CESA-2012:1259 Updated quagga packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base...

Quagga < 0.99.19 Multiple Vulnerabilities

According to its self-reported version number, the installation of Quagga listening on the remote host is affected by multiple vulnerabilities : - A denial of service vulnerability in OSPF6D can be triggered by a specially crafted Link Status Update message with an invalid IPv6 prefix length...

Quagga < 0.99.20.1 Multiple Vulnerabilities

According to its self-reported version number, the installation of Quagga listening on the remote host is affected by multiple vulnerabilities : - A buffer overflow vulnerability exists in OSPFD can be triggered by a specially crafted Link Status Update message that is smaller than the length...

AZL-44247 CVE-2012-0250 affecting package quagga 1.2.4-16

Buffer overflow in the OSPFv2 implementation in ospfd in Quagga before 0.99.20.1 allows remote attackers to cause a denial of service daemon crash via a Link State Update aka LS Update packet containing a network-LSA link-state advertisement for which the data-structure length is smaller than the...