Описание
ELSA-2023-2202: frr security, bug fix, and enhancement update (MODERATE)
[8.3.1-5]
- Resolves: #2147522 - It is not possible to run FRR as a non-root user
[8.3.1-4]
- Resolves: #2144500 - AVC error when reloading FRR with provided reload script
[8.3.1-3]
- Related: #2129743 - Adding missing rules for vtysh and other daemons
[8.3.1-2]
- Resolves: #2128738 - out-of-bounds read in the BGP daemon may lead to information disclosure or denial of service
[8.3.1-1]
- Resolves: #2129731 - Rebase FRR to the latest version
- Resolves: #2129743 - Add targeted SELinux policy for FRR
- Resolves: #2127494 - BGP incorrectly withdraws routes on graceful restart capable routers
Обновленные пакеты
Oracle Linux 9
Oracle Linux aarch64
frr
8.3.1-5.el9
frr-selinux
8.3.1-5.el9
Oracle Linux x86_64
frr
8.3.1-5.el9
frr-selinux
8.3.1-5.el9
Связанные CVE
Связанные уязвимости
An out-of-bounds read in the BGP daemon of FRRouting FRR before 8.4 may lead to a segmentation fault and denial of service. This occurs in bgp_capability_msg_parse in bgpd/bgp_packet.c.
An out-of-bounds read in the BGP daemon of FRRouting FRR before 8.4 may lead to a segmentation fault and denial of service. This occurs in bgp_capability_msg_parse in bgpd/bgp_packet.c.
An out-of-bounds read in the BGP daemon of FRRouting FRR before 8.4 may lead to a segmentation fault and denial of service. This occurs in bgp_capability_msg_parse in bgpd/bgp_packet.c.
An out-of-bounds read in the BGP daemon of FRRouting FRR before 8.4 ma ...
An out-of-bounds read in the BGP daemon of FRRouting FRR before 8.4 may lead to a segmentation fault and denial of service. This occurs in bgp_capability_msg_parse in bgpd/bgp_packet.c.