Lucene search

K
suseSuseOPENSUSE-SU-2018:0473-1
HistoryFeb 19, 2018 - 3:13 p.m.

Security update for quagga (important)

2018-02-1915:13:50
lists.opensuse.org
59

EPSS

0.575

Percentile

97.7%

This update for quagga fixes the following issues:

  • CVE-2017-16227: Fixed bgpd DoS via specially crafted BGP UPDATE messages
    (boo#1065641)
  • CVE-2018-5378: Fixed bgpd bounds check issue via attribute length
    (Quagga-2018-0543,boo#1079798)
  • CVE-2018-5379: Fixed bgpd double free when processing UPDATE message
    (Quagga-2018-1114,boo#1079799)
  • CVE-2018-5380: Fixed bgpd code-to-string conversion tables overrun
    (Quagga-2018-1550,boo#1079800)
  • CVE-2018-5381: Fixed bgpd infinite loop on certain invalid OPEN messages
    (Quagga-2018-1975,boo#1079801)