CVE-2022-37032

Опубликовано: 19 сент. 2022

Источник: debian

EPSS Низкий

Описание

An out-of-bounds read in the BGP daemon of FRRouting FRR before 8.4 may lead to a segmentation fault and denial of service. This occurs in bgp_capability_msg_parse in bgpd/bgp_packet.c.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
frr	fixed	8.4.1-1		package

Примечания

Fixed by: https://github.com/FRRouting/frr/commit/ff6db1027f8f36df657ff2e5ea167773752537ed

EPSS

Процентиль: 62%

0.00445

Низкий

Связанные уязвимости

CVE-2022-37032

CVSS3: 9.1

ubuntu

почти 3 года назад

An out-of-bounds read in the BGP daemon of FRRouting FRR before 8.4 may lead to a segmentation fault and denial of service. This occurs in bgp_capability_msg_parse in bgpd/bgp_packet.c.

CVE-2022-37032

CVSS3: 7.1

redhat

почти 3 года назад

An out-of-bounds read in the BGP daemon of FRRouting FRR before 8.4 may lead to a segmentation fault and denial of service. This occurs in bgp_capability_msg_parse in bgpd/bgp_packet.c.

CVE-2022-37032

CVSS3: 9.1

nvd

почти 3 года назад

An out-of-bounds read in the BGP daemon of FRRouting FRR before 8.4 may lead to a segmentation fault and denial of service. This occurs in bgp_capability_msg_parse in bgpd/bgp_packet.c.

GHSA-mxrw-2vpr-fpwr

CVSS3: 9.1

github

почти 3 года назад

An out-of-bounds read in the BGP daemon of FRRouting FRR before 8.4 may lead to a segmentation fault and denial of service. This occurs in bgp_capability_msg_parse in bgpd/bgp_packet.c.

ELSA-2023-2801

oracle-oval

около 2 лет назад

ELSA-2023-2801: frr security and bug fix update (MODERATE)

EPSS

Процентиль: 62%

0.00445

Низкий