In the Opaque LSA Extended Link parser in FRRouting (FRR) through 9.1,
there can be a buffer overflow and daemon crash in ospf_te_parse_ext_link
for OSPF LSA packets during an attempt to read Segment Routing Adjacency
SID subTLVs (lengths are not validated).
Author | Note |
---|---|
sbeattie | the quagga project was renamed to frr |