Описание
Security update for frr
This update for frr fixes the following issues:
- CVE-2025-61099: Fixed a NULL pointer dereference, which may lead to a DoS vulnerability. (bsc#1252838)
- CVE-2025-61100: Fixed a NULL pointer dereference, which may lead to a DoS vulnerability. (bsc#1252829)
- CVE-2025-61101: Fixed a NULL pointer dereference, which may lead to a DoS vulnerability. (bsc#1252833)
- CVE-2025-61102: Fixed a NULL pointer dereference, which may lead to a DoS vulnerability. (bsc#1252835)
- CVE-2025-61103: Fixed a NULL pointer dereference, which may lead to a DoS vulnerability. (bsc#1252810)
- CVE-2025-61104: Fixed a NULL pointer dereference, which may lead to a DoS vulnerability. (bsc#1252811)
- CVE-2025-61105: Fixed a NULL pointer dereference, which may lead to a DoS vulnerability. (bsc#1252761)
- CVE-2025-61106: Fixed a NULL pointer dereference, which may lead to a DoS vulnerability. (bsc#1252812)
- CVE-2025-61107: Fixed a NULL pointer dereference, which may lead to a DoS vulnerability. (bsc#1252813)
Список пакетов
SUSE Linux Enterprise Module for Server Applications 15 SP7
Ссылки
- Link for SUSE-SU-2026:0665-1
- E-Mail link for SUSE-SU-2026:0665-1
- SUSE Security Ratings
- SUSE Bug 1252761
- SUSE Bug 1252810
- SUSE Bug 1252811
- SUSE Bug 1252812
- SUSE Bug 1252813
- SUSE Bug 1252829
- SUSE Bug 1252833
- SUSE Bug 1252835
- SUSE Bug 1252838
- SUSE CVE CVE-2025-61099 page
- SUSE CVE CVE-2025-61100 page
- SUSE CVE CVE-2025-61101 page
- SUSE CVE CVE-2025-61102 page
- SUSE CVE CVE-2025-61103 page
- SUSE CVE CVE-2025-61104 page
- SUSE CVE CVE-2025-61105 page
- SUSE CVE CVE-2025-61106 page
Описание
FRRouting/frr from v2.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the opaque_info_detail function at ospf_opaque.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted LS Update packet.
Затронутые продукты
Ссылки
- CVE-2025-61099
- SUSE Bug 1252837
Описание
FRRouting/frr from v2.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the ospf_opaque_lsa_dump function at ospf_opaque.c. This vulnerability allows attackers to cause a Denial of Service (DoS) under specific malformed LSA conditions.
Затронутые продукты
Ссылки
- CVE-2025-61100
- SUSE Bug 1252828
Описание
FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_ext_link_rmt_itf_addr function at ospf_ext.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted OSPF packet.
Затронутые продукты
Ссылки
- CVE-2025-61101
- SUSE Bug 1252832
Описание
FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_ext_link_adj_sid function at ospf_ext.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted OSPF packet.
Затронутые продукты
Ссылки
- CVE-2025-61102
- SUSE Bug 1252834
Описание
FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_ext_link_lan_adj_sid function at ospf_ext.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted OSPF packet.
Затронутые продукты
Ссылки
- CVE-2025-61103
- SUSE Bug 1252810
Описание
FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_unknown_tlv function at ospf_ext.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted OSPF packet.
Затронутые продукты
Ссылки
- CVE-2025-61104
- SUSE Bug 1252811
Описание
FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_link_info function at ospf_ext.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted OSPF packet.
Затронутые продукты
Ссылки
- CVE-2025-61105
- SUSE Bug 1252760
Описание
FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_ext_pref_pref_sid function at ospf_ext.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted OSPF packet.
Затронутые продукты
Ссылки
- CVE-2025-61106
- SUSE Bug 1252812
Описание
FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_ext_pref_pref_sid function at ospf_ext.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted LSA Update packet.
Затронутые продукты
Ссылки
- CVE-2025-61107
- SUSE Bug 1252813