frr is vulnerable to Denial of Service (DoS). The vulnerability relies on a reachable assertion found within ‘peek_for_as4_capability’ function. A malicious attacker may use this to construct and send BGP open packets to BGP peers causing a denial of serivce.
github.com/spwpun/pocs
github.com/spwpun/pocs/blob/main/frr-bgpd.md
lists.debian.org/debian-lts-announce/2023/09/msg00020.html
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3HU4PKLUVB5CTMOVQ2GV33TNUNMJCBGD/
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BBXEXL2ZQBWCBLNUP6P67FHECXQWSK3L/
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GM66PNHGCXZU66LQCTP2FSJLFF6CVMSI/
lists.fedoraproject.org/archives/list/[email protected]/message/3HU4PKLUVB5CTMOVQ2GV33TNUNMJCBGD/
lists.fedoraproject.org/archives/list/[email protected]/message/BBXEXL2ZQBWCBLNUP6P67FHECXQWSK3L/
lists.fedoraproject.org/archives/list/[email protected]/message/GM66PNHGCXZU66LQCTP2FSJLFF6CVMSI/
security-tracker.debian.org/tracker/CVE-2022-36440
www.debian.org/security/2023/dsa-5495