Lucene search
Ubuntu.comUB:CVE-2024-31949HistoryApr 07, 2024 - 12:00 a.m.
CVE-2024-31949
2024-04-0700:00:00
ubuntu.com
ubuntu.com
16
frrouting
infinite loop
vulnerability
mp/gr capability
dynamic capability
malformed data
In FRRouting (FRR) through 9.1, an infinite loop can occur when receiving a
MP/GR capability as a dynamic capability because malformed data results in
a pointer not advancing.
Notes
| Author | Note |
|---|---|
| sbeattie | the quagga project was renamed to frr |
| mdeslaur | The pointer increase happens before the continue statements in 7.x and 8.x, so marking as not-affected. |
Related
debiancve
debiancve
CVE-2024-31949
2024-04-07 21:15:07
cve
cve
CVE-2024-31949
2024-04-07 21:15:07
veracode
veracode
Denial Of Service (DoS)
2024-04-19 09:09:08
redhatcve
redhatcve
CVE-2024-31949
2024-04-08 13:52:27
nvd
nvd
CVE-2024-31949
2024-04-07 21:15:07
osv
osv
CVE-2024-31949
2024-04-07 21:15:07
frr - security update
2024-04-28 00:00:00
cvelist
cvelist
CVE-2024-31949
2024-04-07 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-3797-1)
2024-04-29 00:00:00
nessus
nessus
Debian dla-3797 : frr - security update
2024-04-28 00:00:00
debian
debian
[SECURITY] [DLA 3797-1] frr security update
2024-04-28 06:30:09