CVE-2022-26126

Опубликовано: 03 мар. 2022

Источник: debian

EPSS Низкий

Описание

Buffer overflow vulnerabilities exist in FRRouting through 8.1.0 due to the use of strdup with a non-zero-terminated binary string in isis_nb_notifications.c.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
frr	fixed	8.4.1-1		package

Примечания

https://github.com/FRRouting/frr/issues/10505
Fixed by https://github.com/FRRouting/frr/pull/10566

EPSS

Процентиль: 26%

0.00093

Низкий

Связанные уязвимости

CVE-2022-26126

CVSS3: 7.8

ubuntu

почти 4 года назад

Buffer overflow vulnerabilities exist in FRRouting through 8.1.0 due to the use of strdup with a non-zero-terminated binary string in isis_nb_notifications.c.

CVE-2022-26126

CVSS3: 7.8

redhat

около 4 лет назад

Buffer overflow vulnerabilities exist in FRRouting through 8.1.0 due to the use of strdup with a non-zero-terminated binary string in isis_nb_notifications.c.

CVE-2022-26126

CVSS3: 7.8

nvd

почти 4 года назад

Buffer overflow vulnerabilities exist in FRRouting through 8.1.0 due to the use of strdup with a non-zero-terminated binary string in isis_nb_notifications.c.

GHSA-mv8p-w8jf-x9q9

CVSS3: 7.8

github

почти 4 года назад

Buffer overflow vulnerabilities exist in FRRouting through 8.1.0 due to the use of strdup with a non-zero-terminated binary string in isis_nb_notifications.c.

openSUSE-SU-2022:0901-1

suse-cvrf

почти 4 года назад

Security update for frr

EPSS

Процентиль: 26%

0.00093

Низкий