CVE-2024-44070

Опубликовано: 19 авг. 2024

Источник: debian

EPSS Низкий

Описание

An issue was discovered in FRRouting (FRR) through 10.1. bgp_attr_encap in bgpd/bgp_attr.c does not check the actual remaining stream length before taking the TLV value.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
frr	fixed	10.1-0.2		package

Примечания

https://github.com/FRRouting/frr/pull/16497
Fixed by: https://github.com/FRRouting/frr/commit/0998b38e4d61179441f90dd7e7fd6a3a8b7bd8c5 (master)
Fixed by: https://github.com/FRRouting/frr/commit/b29169073bf38ff98fcfdd1e115a64203be13073 (frr-10.1)

EPSS

Процентиль: 52%

0.00286

Низкий

Связанные уязвимости

CVE-2024-44070

CVSS3: 7.5

ubuntu

10 месяцев назад

An issue was discovered in FRRouting (FRR) through 10.1. bgp_attr_encap in bgpd/bgp_attr.c does not check the actual remaining stream length before taking the TLV value.

CVE-2024-44070

CVSS3: 7.5

redhat

10 месяцев назад

An issue was discovered in FRRouting (FRR) through 10.1. bgp_attr_encap in bgpd/bgp_attr.c does not check the actual remaining stream length before taking the TLV value.

CVE-2024-44070

CVSS3: 7.5

nvd

10 месяцев назад

An issue was discovered in FRRouting (FRR) through 10.1. bgp_attr_encap in bgpd/bgp_attr.c does not check the actual remaining stream length before taking the TLV value.

CVE-2024-44070

CVSS3: 7.5

msrc

7 месяцев назад

Описание отсутствует

SUSE-SU-2024:3108-1

suse-cvrf

10 месяцев назад

Security update for frr

EPSS

Процентиль: 52%

0.00286

Низкий