(ospfd): Denial of service by decoding Link State Update LSAs of unknown type

The ospfflood function in ospfflood.c in ospfd in Quagga before 0.99.19 allows remote attackers to cause a denial of service daemon crash via an invalid Link State Advertisement LSA type in an IPv4 Link State Update message...

Multiple Quagga remote component vulnerabilities

Overview Quagga contains five remote component vulnerabilities due to issues when handling BGP, OSPF, and OSPFv3 packets. Description CERT-FI reports:Quagga is an open source routing software that can handle various routing protocols such as RIP, BGP and OSPF. Five vulnerabilities have been found...