11 matches found
SUSE-SU-2023:3839-1 Security update for quagga
This update for quagga fixes the following issues: - CVE-2023-38802: Fixed bad length handling in BGP attribute handling bsc1213284. - CVE-2023-41358: Fixed possible crash when processing NLRIs if the attribute length is zero bsc1214735...
SUSE-SU-2023:3836-1 Security update for quagga
This update for quagga fixes the following issues: - CVE-2023-38802: Fixed bad length handling in BGP attribute handling bsc1213284. - CVE-2023-41358: Fixed possible crash when processing NLRIs if the attribute length is zero bsc1214735...
SUSE-SU-2023:3793-1 Security update for quagga
This update for quagga fixes the following issues: - CVE-2023-38802: Fixed bad length handling in BGP attribute handling bsc1213284. - CVE-2023-41358: Fixed possible crash when processing NLRIs if the attribute length is zero bsc1214735...
SUSE-SU-2018:0457-1 Security update for quagga
This update for quagga fixes the following issues: - The Quagga BGP daemon contained a bug in the ASPATH size calculation that could have been exploited to facilitate a remote denial-of-service attack via specially crafted BGP UPDATE messages. CVE-2017-16227, bsc1065641 - The Quagga BGP daemon di...
SUSE-SU-2018:0456-1 Security update for quagga
This update for quagga fixes the security following issues: - The Quagga BGP daemon contained a bug in the ASPATH size calculation that could have been exploited to facilitate a remote denial-of-service attack via specially crafted BGP UPDATE messages. CVE-2017-16227, bsc1065641 - The Quagga BGP...
SUSE-SU-2018:0455-1 Security update for quagga
This update for quagga fixes the following security issues: - The Quagga BGP daemon contained a bug in the ASPATH size calculation that could have been exploited to facilitate a remote denial-of-service attack via specially crafted BGP UPDATE messages. CVE-2017-16227, bsc1065641 - The Quagga BGP...
DLA-1286-1 quagga - security update
Bulletin has no description...
MGASA-2017-0071 Updated quagga packages fix security vulnerability
All versions of Quagga, 0.93 through 1.1.0, are vulnerable to an unbounded memory allocation in the telnet 'vty' CLI, leading to a Denial-of-Service of Quagga daemons, or even the entire host CVE-2017-5495...
SUSE-SU-2016:0946-1 Security update for quagga
This update for quagga fixes the following security issue: - CVE-2016-2342: Quagga was extended the prefixlen check to ensure it is within the bound of the NLRI packet data and the on-stack prefix structure and the maximum size for the address family bsc970952...
Moderate: quagga security update
0.98.3-2.4.0.1 - rebuild and nvr fix - resolves: 240481: CVE-2007-1995 Quagga bgpd DoS 0.98.3-2.0.1 - resolves: 240481: CVE-2007-1995 Quagga bgpd DoS...
Low: Red Hat Security Advisory: quagga security update
Updated Quagga packages that close a locally-exploitable denial of service vulnerability are now available. Quagga is an open source implementation of TCP/IP routing software. Herbert Xu reported that Quagga can accept spoofed messages sent on the kernel netlink interface by other users on the...