MiracleLinux 3 : quagga-0.98.6-5.2.0.1.AXS3 (AXSA:2010-471:02)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2010-471:02 advisory. Quagga is a free software that manages TCP/IP based routing protocol. It takes multi-server and multi- thread approach to resolve the current...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from not properly refreshing routes when using incorrect routes and next-hop objects, which could lead to a...

frr security update

7.5.1-22.0.1 - Fix POSTIN scriptlet Orabug: 34712485 - Resolves: RHEL-15916 - Flowspec overflow in bgpd/bgpflowspec.c - Resolves: RHEL-15919 - Out of bounds read in bgpd/bgplabel.c - Resolves: RHEL-15869 - crash from specially crafted MPUNREACHNLRI-containing BGP UPDATE message - Resolves:...

SUSE CVE-2010-2948

Stack-based buffer overflow in the bgprouterefreshreceive function in bgppacket.c in bgpd in Quagga before 0.99.17 allows remote authenticated users to cause a denial of service daemon crash or possibly execute arbitrary code via a malformed Outbound Route Filtering ORF record in a BGP...

Denial Of Service (DoS)

Quagga is a vulnerable to Denial Of Service DoS. A stack-based buffer overflow flaw was found in the way the Quagga bgpd daemon processed certain BGP Route Refresh RR messages. A configured BGP peer could send a specially-crafted BGP message, causing bgpd on a target system to crash or, possibly,...

openSUSE Security Update : quagga (openSUSE-SU-2010:0984-1)

This update of quagga fixes two security issues : - CVE-2010-2948: CVSS v2 Base Score: 6.5 MEDIUM AV:N/AC:L/Au:S/C:P/I:P/A:P Stack-based buffer overflow while processing malformed Route-Refresh messages. - CVE-2010-2949: CVSS v2 Base Score: 5.0 MEDIUM AV:N/AC:L/Au:N/C:N/I:N/A:P Denial of service...

GLSA-201202-02 : Quagga: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201202-02 Quagga: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Quagga. Please review the CVE identifiers referenced below for details. Impact : A BGP peer could send a Route-Refresh message with...

(bgpd): Stack buffer overflow by processing certain Route-Refresh messages

Stack-based buffer overflow in the bgprouterefreshreceive function in bgppacket.c in bgpd in Quagga before 0.99.17 allows remote authenticated users to cause a denial of service daemon crash or possibly execute arbitrary code via a malformed Outbound Route Filtering ORF record in a BGP...

RedHat Update for quagga RHSA-2010:0785-01

Check for the Version of quagga OpenVAS Vulnerability Test RedHat Update for quagga RHSA-2010:0785-01 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

(bgpd): Stack buffer overflow by processing certain Route-Refresh messages

Stack-based buffer overflow in the bgprouterefreshreceive function in bgppacket.c in bgpd in Quagga before 0.99.17 allows remote authenticated users to cause a denial of service daemon crash or possibly execute arbitrary code via a malformed Outbound Route Filtering ORF record in a BGP...

CVE-2010-2948

Affected software: Quagga bgpd (bgp_route_refresh_receive in bgp_packet.c) prior to version 0.99.17. Vulnerability type: stack-based buffer overflow when processing a malformed Outbound Route Filtering (ORF) in a BGP ROUTE-REFRESH message. Impact (as stated): remote authenticated users can cause ...

PT-2010-1071 · Quagga +1 · Quagga +1

Name of the Vulnerable Software and Affected Versions: Quagga versions prior to 0.99.17 Quagga versions 0.98.3 and 0.98.6 Description: The issue concerns multiple vulnerabilities in the Quagga package, which can lead to a disruption of confidentiality, integrity, and availability of protected...

Debian DSA-2104-1 : quagga - several vulnerabilities

Several remote vulnerabilities have been discovered in the BGP implementation of Quagga, a routing daemon. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2010-2948 When processing a crafted Route Refresh message received from a configured, authenticated...

FreeBSD : quagga -- stack overflow and DoS vulnerabilities (167953a4-b01c-11df-9a98-0015587e2cc1)

The Red Hat security team reported two vulnerabilities : A stack-based buffer overflow flaw was found in the way Quagga's bgpd daemon processed Route-Refresh messages. A configured Border Gateway Protocol BGP peer could send a Route-Refresh message with specially crafted Outbound Route Filtering...