CVE-2024-44070

Опубликовано: 19 авг. 2024

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS3: 7.5

Описание

An issue was discovered in FRRouting (FRR) through 10.1. bgp_attr_encap in bgpd/bgp_attr.c does not check the actual remaining stream length before taking the TLV value.

Релиз	Статус	Примечание
devel	released	10.0.1-0.1ubuntu2
esm-apps/focal	released	7.2.1-1ubuntu0.2+esm3
focal	ignored	end of standard support, was needed
jammy	released	8.1-1ubuntu1.11
noble	released	8.4.4-1.1ubuntu6.2
oracular	released	10.0.1-0.1ubuntu2
plucky	released	10.0.1-0.1ubuntu2
upstream	released	10.2

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra/bionic	released	1.2.4-1ubuntu0.1~esm2
esm-infra/focal	not-affected	1.2.4-4ubuntu0.5
esm-infra/xenial	not-affected	code not present
focal	released	1.2.4-4ubuntu0.5
jammy	DNE
noble	DNE
oracular	DNE
plucky	DNE
upstream	ignored	project renamed to frr

Показывать по

Ссылки на источники

EPSS

Процентиль: 52%

0.00286

Низкий

7.5 High

CVSS3

Связанные уязвимости

CVE-2024-44070

CVSS3: 7.5

redhat

10 месяцев назад

An issue was discovered in FRRouting (FRR) through 10.1. bgp_attr_encap in bgpd/bgp_attr.c does not check the actual remaining stream length before taking the TLV value.

CVE-2024-44070

CVSS3: 7.5

nvd

10 месяцев назад

An issue was discovered in FRRouting (FRR) through 10.1. bgp_attr_encap in bgpd/bgp_attr.c does not check the actual remaining stream length before taking the TLV value.

CVE-2024-44070

CVSS3: 7.5

msrc

7 месяцев назад

Описание отсутствует

CVE-2024-44070

CVSS3: 7.5

debian

10 месяцев назад

An issue was discovered in FRRouting (FRR) through 10.1. bgp_attr_enca ...

SUSE-SU-2024:3108-1

suse-cvrf

10 месяцев назад

Security update for frr

EPSS

Процентиль: 52%

0.00286

Низкий

7.5 High

CVSS3

CVE-2024-44070

Описание

Пакет frr

Пакет quagga

Ссылки на источники

Связанные уязвимости