CRITICAL9.8CVE-2023-38406bgpd/bgp_flowspec.c in FRRouting (FRR) before 8.4.3 mishandles an nlri length of zero, aka a "flowspec overflow." from 0, < 7.5.1-1.1+deb11u3
CRITICAL9.8CVE-2023-41361An issue was discovered in FRRouting FRR 9.0. from 0
CRITICAL9.1CVE-2023-41360An issue was discovered in FRRouting FRR through 9.0. from 0, < 8.4.4-1.1~deb12u1
CRITICAL9.1frr - security update
from 0, < 7.5.1-1.1+deb11u1
CRITICAL9.1frr - security update
from 0, < 7.5.1-1.1+deb11u1
CRITICAL9.1frr - security update
from 0, < 6.0.2-2+deb10u2
HIGH8.1An issue was discovered in bgpd in FRRouting (FRR) 8.3.
from 0, < 7.5.1-1.1+deb11u3
HIGH7.8Buffer overflow vulnerabilities exist in FRRouting through 8.1.0 due to wrong checks on the subtlv length in the functions, parse_hello_sub…
from 0, < 7.5.1-1.1+deb11u3
HIGH7.8A buffer overflow vulnerability exists in FRRouting through 8.1.0 due to a wrong check on the input packet length in the babel_packet_exami…
from 0, < 7.5.1-1.1+deb11u3
HIGH7.8A buffer overflow vulnerability exists in FRRouting through 8.1.0 due to missing a check on the input packet length in the babel_packet_exa…
from 0, < 7.5.1-1.1+deb11u3
HIGH7.8Buffer overflow vulnerabilities exist in FRRouting through 8.1.0 due to the use of strdup with a non-zero-terminated binary string in isis_…
from 0, < 7.5.1-1.1+deb11u3
HIGH7.8frr - security update
from 0, < 7.5.1-1.1+deb10u2
HIGH7.8frr - security update
from 0, < 7.5.1-1.1+deb11u3
HIGH7.8frr - security update
from 0, < 7.5.1-1.1+deb11u3
HIGH7.5Missing input validation in the rfapiRibBi2Ri() function (rfapi_rib.c) of FRRouting (FRR) stable/10.0 to stable/10.6 allows attackers to ca…
from 0
HIGH7.5An integer underflow in FRRouting (FRR) stable/10.0 to stable/10.6 allows attackers to cause a Denial of Service (DoS) via supplying a craf…
from 0
HIGH7.5An off-by-one out-of-bounds write vulnerability in the bgp_flowspec_op_decode() function (bgpd/bgp_flowspec_util.c) of FRRouting (FRR) stab…
from 0
HIGH7.5FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_ext_pref_pref_sid function at…
from 0
HIGH7.5FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_ext_pref_pref_sid function at…
from 0
HIGH7.5FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_unknown_tlv function at ospf_…
from 0
HIGH7.5FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_ext_link_lan_adj_sid function…
from 0
HIGH7.5FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_link_info function at ospf_ex…
from 0
HIGH7.5FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_ext_link_adj_sid function at…
from 0
HIGH7.5FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_ext_link_rmt_itf_addr functio…
from 0
HIGH7.5FRRouting/frr from v2.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the ospf_opaque_lsa_dump function at ospf_…
from 0
HIGH7.5FRRouting/frr from v2.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the opaque_info_detail function at ospf_op…
from 0
HIGH7.5frr - security update
from 0, < 7.5.1-1.1+deb11u4
HIGH7.5frr - security update
from 0, < 7.5.1-1.1+deb11u4
HIGH7.5An issue was discovered in FRRouting (FRR) through 10.1.
from 0, < 7.5.1-1.1+deb11u3
HIGH7.5In FRRouting (FRR) through 9.1, it is possible for the get_edge() function in ospf_te.c in the OSPF daemon to return a NULL pointer.
from 0
HIGH7.5bgpd/bgp_label.c in FRRouting (FRR) before 8.5 attempts to read beyond the end of the stream during labeled unicast parsing.
from 0, < 7.5.1-1.1+deb11u3
HIGH7.5An issue was discovered in FRRouting FRR through 9.0.1.
from 0, < 7.5.1-1.1+deb11u3
HIGH7.5An issue was discovered in FRRouting FRR through 9.0.1.
from 0, < 7.5.1-1.1+deb11u3
HIGH7.5An issue was discovered in FRRouting FRR through 9.0.
from 0, < 7.5.1-1.1+deb11u3
HIGH7.5FRRouting FRR 7.5.1 through 9.0 and Pica8 PICOS 4.3.3.2 allow a remote attacker to cause a denial of service via a crafted BGP update with…
from 0, < 7.5.1-1.1+deb11u2
HIGH7.5An issue was discovered in FRRouting FRR through 9.0.
from 0, < 7.5.1-1.1+deb11u2
HIGH7.5A flaw was found in FRRouting when parsing certain babeld unicast hello messages that are intended to be ignored.
from 0
HIGH7.5frr - security update
from 0, < 7.5.1-1.1+deb11u2
HIGH7.5frr - security update
from 0, < 7.5.1-1.1+deb11u2
HIGH7.5frr - security update
from 0, < 7.5.1-1.1+deb10u1
HIGH7.5frr - security update
from 0, < 7.5.1-1.1+deb11u2
MEDIUM6.5Missing input validation in the MP_REACH_NLRI component of FRRouting (FRR) stable/10.0 to stable/10.6 allows authenticated attackers to cau…
from 0
MEDIUM6.5In the Opaque LSA Extended Link parser in FRRouting (FRR) through 9.1, there can be a buffer overflow and daemon crash in ospf_te_parse_ext…
from 0
MEDIUM6.5In FRRouting (FRR) through 9.1, there can be a buffer overflow and daemon crash in ospf_te_parse_ri for OSPF LSA packets during an attempt…
from 0
MEDIUM6.5In FRRouting (FRR) through 9.1, an infinite loop can occur when receiving a MP/GR capability as a dynamic capability because malformed data…
from 0, < 7.5.1-1.1+deb11u3
MEDIUM6.5In FRRouting (FRR) through 9.1, an attacker using a malformed Prefix SID attribute in a BGP UPDATE packet can cause the bgpd daemon to cras…
from 0, < 7.5.1-1.1+deb11u3
MEDIUM6.5ospf_te_parse_te in ospfd/ospf_te.c in FRRouting (FRR) through 9.1 allows remote attackers to cause a denial of service (ospfd daemon crash…
from 0
MEDIUM6.5An out-of-bounds read exists in the BGP daemon of FRRouting FRR through 8.4.
from 0, < 7.5.1-1.1+deb11u2
MEDIUM6.5An issue was discovered in bgpd in FRRouting (FRR) through 8.4.
from 0, < 7.5.1-1.1+deb11u2
MEDIUM6.5An issue was discovered in bgpd in FRRouting (FRR) through 8.4.
from 0, < 7.5.1-1.1+deb11u2
MEDIUM5.9An issue was discovered in FRRouting FRR through 9.0.1.
from 0, < 7.5.1-1.1+deb11u3
MEDIUM5.9An issue was discovered in FRRouting FRR through 9.0.1.
from 0, < 7.5.1-1.1+deb11u3
MEDIUM5.5An issue found in Frrouting bgpd v.8.4.2 allows a remote attacker to cause a denial of service via the bgp_capability_llgr() function.
from 0, < 8.4.4-1
MEDIUM5.3An issue was discovered in FRRouting FRR (aka Free Range Routing) through 7.3.1.
from 0
MEDIUM4.2A vulnerability has been found in FRRouting FRR up to 10.5.1.
from 0
—FRRouting before 10.5.3 contains an integer overflow vulnerability in seven OSPF Traffic Engineering and Segment Routing TLV parser functio…
from 0