CVE-2024-31948

Опубликовано: 07 апр. 2024

Источник: debian

EPSS Низкий

Описание

In FRRouting (FRR) through 9.1, an attacker using a malformed Prefix SID attribute in a BGP UPDATE packet can cause the bgpd daemon to crash.

Пакет	Статус	Версия исправления	Релиз	Тип
frr	fixed	10.0.1-0.1		package

https://github.com/FRRouting/frr/pull/15628
Fixed by: https://github.com/FRRouting/frr/commit/ba6a8f1a31e1a88df2de69ea46068e8bd9b97138
Fixed by: https://github.com/FRRouting/frr/commit/babb23b74855e23c987a63f8256d24e28c044d07

EPSS

Процентиль: 24%

0.00078

Низкий

CVE-2024-31948

CVSS3: 6.5

ubuntu

около 1 года назад

In FRRouting (FRR) through 9.1, an attacker using a malformed Prefix SID attribute in a BGP UPDATE packet can cause the bgpd daemon to crash.

CVE-2024-31948

CVSS3: 6.5

redhat

около 1 года назад

In FRRouting (FRR) through 9.1, an attacker using a malformed Prefix SID attribute in a BGP UPDATE packet can cause the bgpd daemon to crash.

CVE-2024-31948

CVSS3: 6.5

nvd

около 1 года назад

In FRRouting (FRR) through 9.1, an attacker using a malformed Prefix SID attribute in a BGP UPDATE packet can cause the bgpd daemon to crash.

SUSE-SU-2024:1475-1

suse-cvrf

около 1 года назад

Security update for frr

GHSA-56vm-qxhc-5p2f

CVSS3: 6.5

github

около 1 года назад

In FRRouting (FRR) through 9.1, an attacker using a malformed Prefix SID attribute in a BGP UPDATE packet can cause the bgpd daemon to crash.

EPSS

Процентиль: 24%

0.00078

Низкий