CVE-2025-59962 Junos OS and Junos OS Evolved: With BGP sharding enabled, change in indirect next-hop can cause RPD crash

An Access of Uninitialized Pointer vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved with BGP sharding configured allows an attacker triggering indirect next-hop updates, along with timing outside the attacker's control, to cause rpd to crash and...

EUVD-2023-48556

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2025-38638

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ipv6: add a retry logic in net6rtnotify inet6rtnotify can be called under RCU protection onl...

CVE-2025-38587

In the Linux kernel, the following vulnerability has been resolved: ipv6: fix possible infinite loop in fib6infousesdev fib6infousesdev seems to rely on RCU without an explicit protection. Like the prior fix in rt6nlmsgsize, we need to make sure fib6delroute or fib6addrt2node have not removed the...

CVE-2025-38587 ipv6: fix possible infinite loop in fib6_info_uses_dev()

In the Linux kernel, the following vulnerability has been resolved: ipv6: fix possible infinite loop in fib6infousesdev fib6infousesdev seems to rely on RCU without an explicit protection. Like the prior fix in rt6nlmsgsize, we need to make sure fib6delroute or fib6addrt2node have not removed the...

CVE-2025-38587

In the Linux kernel, the following vulnerability has been resolved: ipv6: fix possible infinite loop in fib6infousesdev fib6infousesdev seems to rely on RCU without an explicit protection. Like the prior fix in rt6nlmsgsize, we need to make sure fib6delroute or fib6addrt2node have not removed the...

CVE-2024-56703 ipv6: Fix soft lockups in fib6_select_path under high next hop churn

In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix soft lockups in fib6selectpath under high next hop churn Soft lockups have been observed on a cluster of Linux-based edge routers located in a highly dynamic environment. Using the bird service, these routers continuous...

CVE-2023-44197

An Out-of-Bounds Write vulnerability in the Routing Protocol Daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based attacker to cause a Denial of Service DoS. On all Junos OS and Junos OS Evolved devices an rpd crash and restart can occur while...

Arista Networks EOS LDP DoS (SA0042)

The version of Arista Networks EOS running on the remote device is affected by a denial of service vulnerability in the Label Distribution Protocol LDP. An unauthenticated, remote attacker can exploit this by establishing an LDP session with the EOS device under race conditions and sending route...

Race condition

A vulnerability has been found in the implementation of the Label Distribution Protocol LDP protocol in EOS. Under race conditions, the LDP agent can establish an LDP session with a malicious peer potentially allowing the possibility of a Denial of Service DoS attack on route updates and in turn...

CVE-2019-14810

A vulnerability has been found in the implementation of the Label Distribution Protocol LDP protocol in EOS. Under race conditions, the LDP agent can establish an LDP session with a malicious peer potentially allowing the possibility of a Denial of Service DoS attack on route updates and in turn...

openSUSE Security Update : dhcp (openSUSE-2018-207)

This update for dhcp fixes several issues. This security issue was fixed : - CVE-2017-3144: OMAPI code didn't free socket descriptors when empty message is received allowing DoS bsc1076119. These non-security issues were fixed : - Optimized if and when DNS client context and ports are initted...

SUSE-SU-2018:0532-1 Security update for dhcp

This update for dhcp fixes several issues. This security issue was fixed: - CVE-2017-3144: OMAPI code didn't free socket descriptors when empty message is received allowing DoS bsc1076119. These non-security issues were fixed: - Optimized if and when DNS client context and ports are initted...

SUSE-SU-2018:0444-1 Security update for dhcp

This update for dhcp fixes several issues. This security issue was fixed: - CVE-2017-3144: OMAPI code didn't free socket descriptors when empty message is received allowing DoS bsc1076119 This non-security issue was fixed: - Enhance dhclient-script to handle static route updates. bsc1023415...

PT-2008-3678 · Yamaha · Yamaha Routers

Name of the Vulnerable Software and Affected Versions: Yamaha routers affected versions not specified Description: The issue allows remote attackers to cause a denial of service, resulting in dropped sessions, via crafted BGP UPDATE messages. This can lead to route flapping. Recommendations: At t...

CVE-2001-0650

CVE-2001-0650 affects Cisco IOS 12.0 and earlier. A BGP UPDATE containing an unrecognized transitive attribute can cause memory corruption, leading to router crashes or bad route updates, potentially disrupting networks. Cisco’s advisory states this is caused by BGP attribute processing in config...