Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports


Toggle filters

1 – 10 of 34 results


CVE-2024-44070

Medium priority

Some fixes available 4 of 7

An issue was discovered in FRRouting (FRR) through 10.1. bgp_attr_encap in bgpd/bgp_attr.c does not check the actual remaining stream length before taking the TLV value.

2 affected packages

frr, quagga

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
frr Fixed Fixed Needs evaluation
quagga Not in release Not in release Fixed Needs evaluation Needs evaluation
Show less packages

CVE-2024-34088

Medium priority
Fixed

In FRRouting (FRR) through 9.1, it is possible for the get_edge() function in ospf_te.c in the OSPF daemon to return a NULL pointer. In cases where calling functions do not handle the returned NULL value, the OSPF daemon crashes,...

2 affected packages

frr, quagga

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
frr Fixed Fixed Not affected
quagga Not in release Not in release Not affected Not affected Not affected
Show less packages

CVE-2024-31951

Medium priority
Fixed

In the Opaque LSA Extended Link parser in FRRouting (FRR) through 9.1, there can be a buffer overflow and daemon crash in ospf_te_parse_ext_link for OSPF LSA packets during an attempt to read Segment Routing Adjacency SID subTLVs...

2 affected packages

frr, quagga

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
frr Fixed Fixed Not affected
quagga Not in release Not in release Not affected Not affected Not affected
Show less packages

CVE-2024-31950

Medium priority
Fixed

In FRRouting (FRR) through 9.1, there can be a buffer overflow and daemon crash in ospf_te_parse_ri for OSPF LSA packets during an attempt to read Segment Routing subTLVs (their size is not validated).

2 affected packages

frr, quagga

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
frr Fixed Fixed Not affected
quagga Not in release Not in release Not affected Not affected Not affected
Show less packages

CVE-2024-31949

Medium priority
Not affected

In FRRouting (FRR) through 9.1, an infinite loop can occur when receiving a MP/GR capability as a dynamic capability because malformed data results in a pointer not advancing.

2 affected packages

frr, quagga

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
frr Not affected Not affected Not affected
quagga Not in release Not in release Not affected Not affected Not affected
Show less packages

CVE-2024-31948

Medium priority
Fixed

In FRRouting (FRR) through 9.1, an attacker using a malformed Prefix SID attribute in a BGP UPDATE packet can cause the bgpd daemon to crash.

2 affected packages

frr, quagga

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
frr Fixed Fixed Fixed
quagga Not in release Not in release Not affected Not affected Not affected
Show less packages

CVE-2024-27913

Medium priority
Fixed

ospf_te_parse_te in ospfd/ospf_te.c in FRRouting (FRR) through 9.1 allows remote attackers to cause a denial of service (ospfd daemon crash) via a malformed OSPF LSA packet, because of an attempted access to a missing attribute field.

2 affected packages

frr, quagga

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
frr Fixed Fixed Not affected Not in release Not in release
quagga Not in release Not in release Not affected Not affected Not affected
Show less packages

CVE-2023-38407

Medium priority
Fixed

bgpd/bgp_label.c in FRRouting (FRR) before 8.5 attempts to read beyond the end of the stream during labeled unicast parsing.

2 affected packages

frr, quagga

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
frr Fixed Fixed Fixed Ignored Ignored
quagga Not in release Not in release Not affected Not affected Not affected
Show less packages

CVE-2023-38406

Medium priority
Fixed

bgpd/bgp_flowspec.c in FRRouting (FRR) before 8.4.3 mishandles an nlri length of zero, aka a "flowspec overflow."

2 affected packages

frr, quagga

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
frr Not affected Fixed Fixed Ignored Ignored
quagga Not in release Not in release Not affected Not affected Not affected
Show less packages

CVE-2023-47235

Medium priority
Fixed

An issue was discovered in FRRouting FRR through 9.0.1. A crash can occur when a malformed BGP UPDATE message with an EOR is processed, because the presence of EOR does not lead to a treat-as-withdraw outcome.

2 affected packages

frr, quagga

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
frr Fixed Fixed Fixed Ignored Ignored
quagga Not in release Not in release Not affected Not affected Not affected
Show less packages