CVE-2024-31948

Опубликовано: 07 апр. 2024

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS3: 6.5

Описание

In FRRouting (FRR) through 9.1, an attacker using a malformed Prefix SID attribute in a BGP UPDATE packet can cause the bgpd daemon to crash.

Релиз	Статус	Примечание
devel	released	10.0.1-0.1ubuntu1
esm-apps/focal	released	7.2.1-1ubuntu0.2+esm2
focal	ignored	end of standard support, was needed
jammy	released	8.1-1ubuntu1.10
mantic	released	8.4.4-1.1ubuntu1.4
noble	released	8.4.4-1.1ubuntu6.1
oracular	released	10.0.1-0.1ubuntu1
plucky	released	10.0.1-0.1ubuntu1
upstream	needs-triage

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra/bionic	not-affected	code not present
esm-infra/focal	not-affected	code not present
esm-infra/xenial	not-affected	code not present
focal	not-affected	code not present
jammy	DNE
mantic	DNE
noble	DNE
oracular	DNE
plucky	DNE

Показывать по

Ссылки на источники

EPSS

Процентиль: 24%

0.00078

Низкий

6.5 Medium

CVSS3

Связанные уязвимости

CVE-2024-31948

CVSS3: 6.5

redhat

около 1 года назад

In FRRouting (FRR) through 9.1, an attacker using a malformed Prefix SID attribute in a BGP UPDATE packet can cause the bgpd daemon to crash.

CVE-2024-31948

CVSS3: 6.5

nvd

около 1 года назад

In FRRouting (FRR) through 9.1, an attacker using a malformed Prefix SID attribute in a BGP UPDATE packet can cause the bgpd daemon to crash.

CVE-2024-31948

CVSS3: 6.5

debian

около 1 года назад

In FRRouting (FRR) through 9.1, an attacker using a malformed Prefix S ...

SUSE-SU-2024:1475-1

suse-cvrf

около 1 года назад

Security update for frr

GHSA-56vm-qxhc-5p2f

CVSS3: 6.5

github

около 1 года назад

In FRRouting (FRR) through 9.1, an attacker using a malformed Prefix SID attribute in a BGP UPDATE packet can cause the bgpd daemon to crash.

EPSS

Процентиль: 24%

0.00078

Низкий

6.5 Medium

CVSS3

CVE-2024-31948

Описание

Пакет frr

Пакет quagga

Ссылки на источники

Связанные уязвимости