Lucene search
Veracode Vulnerability DatabaseVERACODE:46545HistoryApr 19, 2024 - 9:09 a.m.
Denial Of Service (DoS)
2024-04-1909:09:08
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
libfrr.so
denial of service
vulnerability
mp/gr capability
infinite loop
dynamic capability
libfrr.so is vulnerable to Denial of Service (DoS). The vulnerability is caused when receiving a MP/GR capability as a dynamic capability due to an incorrect placement of a continue statement within a while loop that iterates over a pointer. In this case, the pointer is not incremented before the continue statement is encountered, leading to an infinite loop condition.
| CPE | Name | Operator | Version |
|---|---|---|---|
| libfrr.so | le | 0.0.0 | |
| libfrr.so | le | 0.0.0 | |
| frr:buster | eq | 6.0.2-2+deb10u1 |
References
Related
redhatcve
redhatcve
CVE-2024-31949
2024-04-08 13:52:27
nvd
nvd
CVE-2024-31949
2024-04-07 21:15:07
cve
cve
CVE-2024-31949
2024-04-07 21:15:07
osv
osv
CVE-2024-31949
2024-04-07 21:15:07
frr - security update
2024-04-28 00:00:00
ubuntucve
ubuntucve
CVE-2024-31949
2024-04-07 00:00:00
cvelist
cvelist
CVE-2024-31949
2024-04-07 00:00:00
debiancve
debiancve
CVE-2024-31949
2024-04-07 21:15:07
openvas
openvas
Debian: Security Advisory (DLA-3797-1)
2024-04-29 00:00:00
nessus
nessus
Debian dla-3797 : frr - security update
2024-04-28 00:00:00
debian
debian
[SECURITY] [DLA 3797-1] frr security update
2024-04-28 06:30:09