[SECURITY] Fedora 43 Update: bird-3.1.4-1.fc43

BIRD is a dynamic IP routing daemon supporting both, IPv4 and IPv6, Border Gateway Protocol BGPv4, Routing Information Protocol RIPv2, RIPng, Open Shortest Path First protocol OSPFv2, OSPFv3, Babel Routing Protocol Babel, Bidirectional Forwarding Detection BFD, IPv6 router advertisements, static...

CVE-2023-1458

A vulnerability has been found in Ubiquiti EdgeRouter X 2.0.9-hotfix.6 and classified as critical. Affected by this vulnerability is an unknown functionality of the component OSPF Handler. The manipulation of the argument area leads to command injection. The attack can be launched remotely. The...

CVE-2024-31950

...

FRRouting 安全漏洞

FRRouting is an open source network routing software suite from the FRRouting Project that runs on Unix-like platforms. A security vulnerability exists in FRRouting FRR version 9.1 and earlier versions, which stems from a call to a function that does not handle the returned NULL value and the OSP...

UBUNTU-CVE-2024-31950

In FRRouting FRR through 9.1, there can be a buffer overflow and daemon crash in ospfteparseri for OSPF LSA packets during an attempt to read Segment Routing subTLVs their size is not validated...

DEBIAN-CVE-2024-27913

ospfteparsete in ospfd/ospfte.c in FRRouting FRR through 9.1 allows remote attackers to cause a denial of service ospfd daemon crash via a malformed OSPF LSA packet, because of an attempted access to a missing attribute field...

PT-2024-22130 · Frrouting +4 · Frrouting +4

Name of the Vulnerable Software and Affected Versions: FRRouting FRR versions through 9.1 Description: The issue allows remote attackers to cause a denial of service, resulting in the ospfd daemon crash, via a malformed OSPF LSA packet. This occurs because of an attempted access to a missing...

CVE-2023-22406

A Missing Release of Memory after Effective Lifetime vulnerability in the kernel of Juniper Networks Junos OS and Junos OS Evolved allows an adjacent, unauthenticated attacker to cause a Denial of Service DoS. In a segment-routing scenario with OSPF as IGP, when a peer interface continuously flap...

Cisco NX-OS Software 缓冲区错误漏洞

Cisco NX-OS Software is a suite of data center-grade operating system software for switches from Cisco. A security vulnerability exists in Cisco NX-OS Software OSPFv3, which stems from incomplete validation of inputs to specific OSPFv3 messages allowing an unauthenticated, remote attacker to...

The vulnerability of the OSPF network protocol implementation in the microcomputer-based switching devices SCALANCE of the XM-400 and XR-500 series allows a intruder to trigger a service failure.

The vulnerability of the OSPF network protocol implementation in the microcomputer-based switching devices SCALANCE models XM-400 and XR-500 is related to the lack of integrity checks. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

CVE-2021-37182

A vulnerability has been identified in SCALANCE XM408-4C All versions V6.5, SCALANCE XM408-4C L3 int. All versions V6.5, SCALANCE XM408-8C All versions V6.5, SCALANCE XM408-8C L3 int. All versions V6.5, SCALANCE XM416-4C All versions V6.5, SCALANCE XM416-4C L3 int. All versions V6.5, SCALANCE...

Siemens SCALANCE 安全漏洞

SCALANCE X switches are used to connect industrial components such as programmable logic controllers PLCs or human machine interfaces HMIs. An OSPF packet handling vulnerability exists in the SIEMENS SCALANCE XM-400 and XR-500, which stems from the implementation of the OSPF protocol in the devic...

Juniper Networks Junos OS 安全漏洞

Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The OS provides a secure programming interface and the Junos SDK. Juniper Networks Junos OS has a security vulnerability that originates from incorrect initialization in the routing protoc...

The vulnerability of the implementation of the OSPFv2 protocol in microprogrammed network interface devices from Cisco Adaptive Security Appliances and Cisco Firepower Threat Defense allows a attacker to induce a service failure.

The vulnerability of the OSPFv2 protocol implementation in Cisco Adaptive Security Appliances and Cisco Firepower Threat Defense software involves an uncontrolled consumption of resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

CVE-2020-3528

A vulnerability in the OSPF Version 2 OSPFv2 implementation of Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service DoS condition. The...

PT-2020-4460 · Cisco · Cisco Ftd +1

Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliance ASA Software versions prior to the fixed version Cisco Firepower Threat Defense FTD Software versions prior to the fixed version Description: A vulnerability in the OSPF Version 2 OSPFv2 implementation could...

The vulnerability of the implementation of the Open Shortest Path First (OSPF) protocol in Cisco Adaptive Security Appliance (ASA) and Configure Firepower Threat Defense (FTD) software allows a attacker to induce a service failure.

The vulnerability of the OSPF implementation in Cisco Adaptive Security Appliance ASA and Configure Firepower Threat Defense FTD software relates to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

Cisco Firepower Threat Defense and Adaptive Security Appliances Software Memory Leak Vulnerability

Cisco Firepower Threat Defense FTD and Cisco Adaptive Security Appliances Software ASA Software are both products of Cisco, Inc.Cisco Firepower Threat Defense is a set of unified software that provides next-generation firewall services. Defense is a set of unified software to provide...

CVE-2020-5881

On versions 15.0.0-15.1.0.1, 14.1.0-14.1.2.3, and 13.1.0-13.1.3.3, when the BIG-IP Virtual Edition VE is configured with VLAN groups and there are devices configured with OSPF connected to it, the Network Device Abstraction Layer NDAL Interfaces can lock up and in turn disrupting the communicatio...

Cisco Adaptive Security Appliance Software and Cisco Firepower Threat Defense Input Validation Error Vulnerability

Cisco Firepower Threat Defense FTD and Cisco Adaptive Security Appliances Software ASA Software are both products of Cisco, Inc.Cisco Firepower Threat Defense is a set of unified software that provides next-generation firewall services. Defense is a set of unified software to provide...