Lucene search

K
ubuntuUbuntuUSN-6794-1
HistoryMay 28, 2024 - 12:00 a.m.

FRR vulnerabilities

2024-05-2800:00:00
ubuntu.com
12
frrouting suite
bgp
ospf
denial of service
arbitrary code
unix

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

8.1

Confidence

Low

EPSS

0

Percentile

15.5%

Releases

  • Ubuntu 24.04 LTS
  • Ubuntu 23.10
  • Ubuntu 22.04 LTS

Packages

  • frr - FRRouting suite of internet protocols

Details

It was discovered that FRR incorrectly handled certain malformed BGP and
OSPF packets. A remote attacker could use this issue to cause FRR to crash,
resulting in a denial of service, or possibly execute arbitrary code.

OSVersionArchitecturePackageVersionFilename
Ubuntu24.04noarchfrr< 8.4.4-1.1ubuntu6.1UNKNOWN
Ubuntu24.04noarchfrr-dbgsym< 8.4.4-1.1ubuntu6.1UNKNOWN
Ubuntu24.04noarchfrr-doc< 8.4.4-1.1ubuntu6.1UNKNOWN
Ubuntu24.04noarchfrr-pythontools< 8.4.4-1.1ubuntu6.1UNKNOWN
Ubuntu24.04noarchfrr-rpki-rtrlib< 8.4.4-1.1ubuntu6.1UNKNOWN
Ubuntu24.04noarchfrr-rpki-rtrlib-dbgsym< 8.4.4-1.1ubuntu6.1UNKNOWN
Ubuntu24.04noarchfrr-snmp< 8.4.4-1.1ubuntu6.1UNKNOWN
Ubuntu24.04noarchfrr-snmp-dbgsym< 8.4.4-1.1ubuntu6.1UNKNOWN
Ubuntu23.10noarchfrr< 8.4.4-1.1ubuntu1.4UNKNOWN
Ubuntu23.10noarchfrr-dbgsym< 8.4.4-1.1ubuntu1.4UNKNOWN
Rows per page:
1-10 of 241

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

8.1

Confidence

Low

EPSS

0

Percentile

15.5%