Описание
Buffer overflow vulnerabilities exist in FRRouting through 8.1.0 due to wrong checks on the subtlv length in the functions, parse_hello_subtlv, parse_ihu_subtlv, and parse_update_subtlv in babeld/message.c.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 8.1-1ubuntu1 |
| esm-apps/focal | released | 7.2.1-1ubuntu0.2+esm2 |
| focal | ignored | end of standard support, was needed |
| impish | ignored | end of life |
| jammy | released | 8.1-1ubuntu1 |
| kinetic | released | 8.1-1ubuntu1 |
| lunar | released | 8.1-1ubuntu1 |
| mantic | released | 8.1-1ubuntu1 |
| noble | released | 8.1-1ubuntu1 |
| oracular | released | 8.1-1ubuntu1 |
Показывать по
6.8 Medium
CVSS2
7.8 High
CVSS3
Связанные уязвимости
Buffer overflow vulnerabilities exist in FRRouting through 8.1.0 due to wrong checks on the subtlv length in the functions, parse_hello_subtlv, parse_ihu_subtlv, and parse_update_subtlv in babeld/message.c.
Buffer overflow vulnerabilities exist in FRRouting through 8.1.0 due to wrong checks on the subtlv length in the functions, parse_hello_subtlv, parse_ihu_subtlv, and parse_update_subtlv in babeld/message.c.
Buffer overflow vulnerabilities exist in FRRouting through 8.1.0 due t ...
Buffer overflow vulnerabilities exist in FRRouting through 8.1.0 due to wrong checks on the subtlv length in the functions, parse_hello_subtlv, parse_ihu_subtlv, and parse_update_subtlv in babeld/message.c.
Уязвимость функций parse_hello_subtlv(), parse_ihu_subtlv() и parse_update_subtl() программного средства реализации сетевой маршрутизации на Unix-подобных системах FRRouting, позволяющая нарушителю выполнить произвольный код
6.8 Medium
CVSS2
7.8 High
CVSS3