7 matches found
Linux Distros Unpatched Vulnerability : CVE-2025-43971
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in GoBGP before 3.35.0. pkg/packet/bgp/bgp.go allows attackers to cause a panic via a zero value for softwareVersionLen. CVE-2025-43971...
Denial Of Service (DoS)
github.com/osrg/gobgp is vulnerable to Denial Of Service DoS The vulnerability is due to missing validation of the softwareVersionLen field, allowing an attacker to send a crafted BGP packet with a zero softwareVersionLen value to crash the GoBGP process and cause a denial of service...
GoBGP panics due to a zero value for softwareVersionLen
An issue was discovered in GoBGP before 3.35.0 introduced in v3.11.0. pkg/packet/bgp/bgp.go allows attackers to cause a panic via a zero value for softwareVersionLen...
CVE-2025-43971
An issue was discovered in GoBGP before 3.35.0. pkg/packet/bgp/bgp.go allows attackers to cause a panic via a zero value for softwareVersionLen...
DEBIAN-CVE-2025-43971
An issue was discovered in GoBGP before 3.35.0. pkg/packet/bgp/bgp.go allows attackers to cause a panic via a zero value for softwareVersionLen...
CVE-2025-43971
An issue was discovered in GoBGP before 3.35.0. pkg/packet/bgp/bgp.go allows attackers to cause a panic via a zero value for softwareVersionLen...
CVE-2025-43971
CVE-2025-43971 affects GoBGP prior to 3.35.0. The flaw in pkg/packet/bgp/bgp.go allows a panic to be triggered by a zero value for softwareVersionLen, as described in the vulnerability note. The issue is limited to the GoBGP code path involving BGP packet handling, and the impact is a denial of s...