SUSE-SU-2024:1475-1

Опубликовано: 30 апр. 2024

Источник: suse-cvrf

Описание

Security update for frr

This update for frr fixes the following issues:

CVE-2024-31948: Fixed denial of service due to malformed Prefix SID attribute in BGP Update packet (bsc#1222518)

Список пакетов

SUSE Enterprise Storage 7.1

frr-7.4-150300.4.23.1

frr-devel-7.4-150300.4.23.1

libfrr0-7.4-150300.4.23.1

libfrr_pb0-7.4-150300.4.23.1

libfrrcares0-7.4-150300.4.23.1

libfrrfpm_pb0-7.4-150300.4.23.1

libfrrgrpc_pb0-7.4-150300.4.23.1

libfrrospfapiclient0-7.4-150300.4.23.1

libfrrsnmp0-7.4-150300.4.23.1

libfrrzmq0-7.4-150300.4.23.1

libmlag_pb0-7.4-150300.4.23.1

SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS

frr-7.4-150300.4.23.1

frr-devel-7.4-150300.4.23.1

libfrr0-7.4-150300.4.23.1

libfrr_pb0-7.4-150300.4.23.1

libfrrcares0-7.4-150300.4.23.1

libfrrfpm_pb0-7.4-150300.4.23.1

libfrrgrpc_pb0-7.4-150300.4.23.1

libfrrospfapiclient0-7.4-150300.4.23.1

libfrrsnmp0-7.4-150300.4.23.1

libfrrzmq0-7.4-150300.4.23.1

libmlag_pb0-7.4-150300.4.23.1

SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS

frr-7.4-150300.4.23.1

frr-devel-7.4-150300.4.23.1

libfrr0-7.4-150300.4.23.1

libfrr_pb0-7.4-150300.4.23.1

libfrrcares0-7.4-150300.4.23.1

libfrrfpm_pb0-7.4-150300.4.23.1

libfrrgrpc_pb0-7.4-150300.4.23.1

libfrrospfapiclient0-7.4-150300.4.23.1

libfrrsnmp0-7.4-150300.4.23.1

libfrrzmq0-7.4-150300.4.23.1

libmlag_pb0-7.4-150300.4.23.1

SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS

frr-7.4-150300.4.23.1

frr-devel-7.4-150300.4.23.1

libfrr0-7.4-150300.4.23.1

libfrr_pb0-7.4-150300.4.23.1

libfrrcares0-7.4-150300.4.23.1

libfrrfpm_pb0-7.4-150300.4.23.1

libfrrgrpc_pb0-7.4-150300.4.23.1

libfrrospfapiclient0-7.4-150300.4.23.1

libfrrsnmp0-7.4-150300.4.23.1

libfrrzmq0-7.4-150300.4.23.1

libmlag_pb0-7.4-150300.4.23.1

SUSE Linux Enterprise Server 15 SP3-LTSS

frr-7.4-150300.4.23.1

frr-devel-7.4-150300.4.23.1

libfrr0-7.4-150300.4.23.1

libfrr_pb0-7.4-150300.4.23.1

libfrrcares0-7.4-150300.4.23.1

libfrrfpm_pb0-7.4-150300.4.23.1

libfrrgrpc_pb0-7.4-150300.4.23.1

libfrrospfapiclient0-7.4-150300.4.23.1

libfrrsnmp0-7.4-150300.4.23.1

libfrrzmq0-7.4-150300.4.23.1

libmlag_pb0-7.4-150300.4.23.1

SUSE Linux Enterprise Server 15 SP4-LTSS

frr-7.4-150300.4.23.1

frr-devel-7.4-150300.4.23.1

libfrr0-7.4-150300.4.23.1

libfrr_pb0-7.4-150300.4.23.1

libfrrcares0-7.4-150300.4.23.1

libfrrfpm_pb0-7.4-150300.4.23.1

libfrrgrpc_pb0-7.4-150300.4.23.1

libfrrospfapiclient0-7.4-150300.4.23.1

libfrrsnmp0-7.4-150300.4.23.1

libfrrzmq0-7.4-150300.4.23.1

libmlag_pb0-7.4-150300.4.23.1

SUSE Linux Enterprise Server for SAP Applications 15 SP3

frr-7.4-150300.4.23.1

frr-devel-7.4-150300.4.23.1

libfrr0-7.4-150300.4.23.1

libfrr_pb0-7.4-150300.4.23.1

libfrrcares0-7.4-150300.4.23.1

libfrrfpm_pb0-7.4-150300.4.23.1

libfrrgrpc_pb0-7.4-150300.4.23.1

libfrrospfapiclient0-7.4-150300.4.23.1

libfrrsnmp0-7.4-150300.4.23.1

libfrrzmq0-7.4-150300.4.23.1

libmlag_pb0-7.4-150300.4.23.1

SUSE Linux Enterprise Server for SAP Applications 15 SP4

frr-7.4-150300.4.23.1

frr-devel-7.4-150300.4.23.1

libfrr0-7.4-150300.4.23.1

libfrr_pb0-7.4-150300.4.23.1

libfrrcares0-7.4-150300.4.23.1

libfrrfpm_pb0-7.4-150300.4.23.1

libfrrgrpc_pb0-7.4-150300.4.23.1

libfrrospfapiclient0-7.4-150300.4.23.1

libfrrsnmp0-7.4-150300.4.23.1

libfrrzmq0-7.4-150300.4.23.1

libmlag_pb0-7.4-150300.4.23.1

SUSE Manager Proxy 4.3

frr-7.4-150300.4.23.1

frr-devel-7.4-150300.4.23.1

libfrr0-7.4-150300.4.23.1

libfrr_pb0-7.4-150300.4.23.1

libfrrcares0-7.4-150300.4.23.1

libfrrfpm_pb0-7.4-150300.4.23.1

libfrrgrpc_pb0-7.4-150300.4.23.1

libfrrospfapiclient0-7.4-150300.4.23.1

libfrrsnmp0-7.4-150300.4.23.1

libfrrzmq0-7.4-150300.4.23.1

libmlag_pb0-7.4-150300.4.23.1

SUSE Manager Server 4.3

frr-7.4-150300.4.23.1

frr-devel-7.4-150300.4.23.1

libfrr0-7.4-150300.4.23.1

libfrr_pb0-7.4-150300.4.23.1

libfrrcares0-7.4-150300.4.23.1

libfrrfpm_pb0-7.4-150300.4.23.1

libfrrgrpc_pb0-7.4-150300.4.23.1

libfrrospfapiclient0-7.4-150300.4.23.1

libfrrsnmp0-7.4-150300.4.23.1

libfrrzmq0-7.4-150300.4.23.1

libmlag_pb0-7.4-150300.4.23.1

Ссылки

https://www.suse.com/support/update/announcement/2024/suse-su-20241475-1/
Link for SUSE-SU-2024:1475-1
https://lists.suse.com/pipermail/sle-updates/2024-April/035132.html
E-Mail link for SUSE-SU-2024:1475-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1222518
SUSE Bug 1222518
https://www.suse.com/security/cve/CVE-2024-31948/
SUSE CVE CVE-2024-31948 page

Описание

In FRRouting (FRR) through 9.1, an attacker using a malformed Prefix SID attribute in a BGP UPDATE packet can cause the bgpd daemon to crash.

Затронутые продукты

SUSE Enterprise Storage 7.1:frr-7.4-150300.4.23.1

SUSE Enterprise Storage 7.1:frr-devel-7.4-150300.4.23.1

SUSE Enterprise Storage 7.1:libfrr0-7.4-150300.4.23.1

SUSE Enterprise Storage 7.1:libfrr_pb0-7.4-150300.4.23.1

Ссылки

https://www.suse.com/security/cve/CVE-2024-31948.html
CVE-2024-31948
https://bugzilla.suse.com/1222518
SUSE Bug 1222518

SUSE-SU-2024:1475-1

Описание

Список пакетов

SUSE Enterprise Storage 7.1

SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS

SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS

SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS

SUSE Linux Enterprise Server 15 SP3-LTSS

SUSE Linux Enterprise Server 15 SP4-LTSS

SUSE Linux Enterprise Server for SAP Applications 15 SP3

SUSE Linux Enterprise Server for SAP Applications 15 SP4

SUSE Manager Proxy 4.3

SUSE Manager Server 4.3

Ссылки

Уязвимость: CVE-2024-31948

Описание

Затронутые продукты

Ссылки