Lucene search

K
ubuntuUbuntuUSN-775-1
HistoryMay 12, 2009 - 12:00 a.m.

Quagga vulnerability

2009-05-1200:00:00
ubuntu.com
29

6 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.109 Low

EPSS

Percentile

95.0%

Releases

  • Ubuntu 9.04
  • Ubuntu 8.10
  • Ubuntu 8.04
  • Ubuntu 6.06

Packages

  • quagga -

Details

It was discovered that the BGP service in Quagga did not correctly
handle certain AS paths containing 4-byte ASNs. An authenticated remote
attacker could exploit this flaw to cause bgpd to abort, leading to a
denial of service.

OSVersionArchitecturePackageVersionFilename
Ubuntu9.04noarchquagga< 0.99.11-1ubuntu0.1UNKNOWN
Ubuntu8.10noarchquagga< 0.99.9-6ubuntu0.1UNKNOWN
Ubuntu8.04noarchquagga< 0.99.9-2ubuntu1.2UNKNOWN
Ubuntu6.06noarchquagga< 0.99.2-1ubuntu3.5UNKNOWN

6 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.109 Low

EPSS

Percentile

95.0%