quagga: denial of service [LWN.net]

Package(s):

quagga

CVE #(s):

CVE-2010-1674 CVE-2010-1675

Created:

March 22, 2011

Updated:

September 14, 2012

Description:

From the Debian advisory:

It has been discovered that the Quagga routing daemon contains two denial-of-service vulnerabilities in its BGP implementation:

CVE-2010-1674: A crafted Extended Communities attribute triggers a null pointer dereference which causes the BGP daemon to crash. The crafted attributes are not propagated by the Internet core, so only explicitly configured direct peers are able to exploit this vulnerability in typical configurations.

CVE-2010-1675: The BGP daemon resets BGP sessions when it encounters malformed AS_PATHLIMIT attributes, introducing a distributed BGP session reset vulnerability which disrupts packet forwarding. Such malformed attributes are propagated by the Internet core, and exploitation of this vulnerability is not restricted to directly configured BGP peers.

Alerts:

SUSE	SUSE-SU-2011:1316-1	2011-12-12
Fedora	FEDORA-2011-3916	2011-03-23
Fedora	FEDORA-2011-3922	2011-03-23
SUSE	SUSE-SR:2011:006	2011-04-05
openSUSE	openSUSE-SU-2011:0274-2	2011-04-05
SUSE	SUSE-SR:2011:005	2011-04-01
openSUSE	openSUSE-SU-2011:0274-1	2011-04-01
Mandriva	MDVSA-2011:058	2011-04-01
Red Hat	RHSA-2011:0406-01	2011-03-31
Ubuntu	USN-1095-1	2011-03-29
Debian	DSA-2197-1	2011-03-21
Gentoo	201202-02	2012-02-21
Red Hat	RHSA-2012:1258-01	2012-09-12
CentOS	CESA-2012:1258	2012-09-12
Oracle	ELSA-2012-1258	2012-09-13
Oracle	ELSA-2012-1259	2012-09-13
Scientific Linux	SL-quag-20120913	2012-09-13

(Log in to post comments)