frr-8.3.1-5.el9.2.ML.1
エラータID: AXSA:2023-6435:05
Release date:
Tuesday, September 26, 2023 - 00:22
Subject:
frr-8.3.1-5.el9.2.ML.1
Affected Channels:
MIRACLE LINUX 9 for x86_64
Severity:
High
Description:
FRRouting is free software that manages TCP/IP based routing protocols. It supports BGP4, OSPFv2, OSPFv3, ISIS, RIP, RIPng, PIM, NHRP, PBR, EIGRP and BFD.
Security Fix(es):
* frr: Incorrect handling of a error in parsing of an invalid section of a BGP update can de-peer a router (CVE-2023-38802)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
CVE-2023-38802
FRRouting FRR 7.5.1 through 9.0 and Pica8 PICOS 4.3.3.2 allow a remote attacker to cause a denial of service via a crafted BGP update with a corrupted attribute 23 (Tunnel Encapsulation).
Solution:
Update packages.
CVEs:
CVE-2023-38802
FRRouting FRR 7.5.1 through 9.0 and Pica8 PICOS 4.3.3.2 allow a remote attacker to cause a denial of service via a crafted BGP update with a corrupted attribute 23 (Tunnel Encapsulation).
FRRouting FRR 7.5.1 through 9.0 and Pica8 PICOS 4.3.3.2 allow a remote attacker to cause a denial of service via a crafted BGP update with a corrupted attribute 23 (Tunnel Encapsulation).
Additional Info:
N/A
Download:
SRPMS
- frr-8.3.1-5.el9.2.ML.1.src.rpm
MD5: cd9e223fc0435409d1738ddd59588e00
SHA-256: 46416e52627a5b7e7e458a42767c95d7b83e84f966b815429aa0dbae18ffe64e
Size: 9.05 MB
Asianux Server 9 for x86_64
- frr-8.3.1-5.el9.2.ML.1.x86_64.rpm
MD5: ad5c072ac7d0b9fe1d61d4f1211fdde2
SHA-256: 6898a0274be246447c8935cd9c12bbbdee44409f44123b212f516fe985684902
Size: 4.47 MB - frr-selinux-8.3.1-5.el9.2.ML.1.noarch.rpm
MD5: 8c8dd5cfdd1fa2d115b65d11c26e6c99
SHA-256: ac2d95badfabd6780190f48bf7080b901fc176015409d4a119a5aa45f332923d
Size: 22.17 kB
日本語