logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2012-0255

Description

The BGP implementation in bgpd in Quagga before 0.99.20.1 does not properly use message buffers for OPEN messages, which allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a message associated with a malformed Four-octet AS Number Capability (aka AS4 capability).


Affected Package


OS OS Version Package Name Package Version
ubuntu 10.04 quagga 0.99.20.1-0ubuntu0.10.04.2
ubuntu 11.04 quagga 0.99.20.1-0ubuntu0.11.04.2
ubuntu 11.10 quagga 0.99.20.1-0ubuntu0.11.10.2
ubuntu 12.04 quagga 0.99.20.1-0ubuntu0.12.04.2
ubuntu upstream quagga 0.99.20.1-1

Related