CVE-2023-41360

Updated: 2023-12-22 20:31:03.991046

Description:

An issue was discovered in FRRouting FRR through 9.0. bgpd/bgp_packet.c can read the initial byte of the ORF header in an ahead-of-stream situation.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x 0
CVSS Version 3.x CRITICAL 9.1

Status

OS name Project name Version Score Severity Status Errata Last updated
CentOS 6 ELS quagga 0.99.15 9.1 CRITICAL Released CLSA-2023:1697817200 2023-11-06 04:09:18
CloudLinux 6 ELS quagga 0.99.15 9.1 CRITICAL Released CLSA-2023:1697817462 2023-11-06 04:09:19
Oracle Linux 6 ELS quagga 0.99.15 9.1 CRITICAL Released CLSA-2023:1697817694 2023-10-20 14:06:50
Ubuntu 16.04 ELS quagga 0.99.24.1-2 9.1 CRITICAL Released CLSA-2023:1697816288 2023-10-20 14:06:48
Ubuntu 18.04 ELS quagga 1.2.4-1 9.1 CRITICAL Released CLSA-2023:1697816189 2023-10-20 14:06:51