CVE-2025-43972

Опубликовано: 21 апр. 2025

Источник: ubuntu

Приоритет: medium

CVSS3: 6.8

Описание

An issue was discovered in GoBGP before 3.35.0. An attacker can cause a crash in the pkg/packet/bgp/bgp.go flowspec parser by sending fewer than 20 bytes in a certain context.

Релиз	Статус	Примечание
devel	not-affected	3.35.0-1
esm-apps/bionic	needs-triage
esm-apps/focal	needs-triage
esm-apps/jammy	needs-triage
esm-apps/noble	needs-triage
focal	ignored	end of standard support, was needs-triage
jammy	needs-triage
noble	needs-triage
oracular	needs-triage
plucky	not-affected	3.35.0-1

Показывать по

Ссылки на источники

6.8 Medium

CVSS3

Связанные уязвимости

CVE-2025-43972

CVSS3: 6.8

nvd

2 месяца назад

An issue was discovered in GoBGP before 3.35.0. An attacker can cause a crash in the pkg/packet/bgp/bgp.go flowspec parser by sending fewer than 20 bytes in a certain context.

CVE-2025-43972

CVSS3: 6.8

debian

2 месяца назад

An issue was discovered in GoBGP before 3.35.0. An attacker can cause ...

GHSA-mfvv-mgf6-q25r

CVSS3: 6.8

github

2 месяца назад

GoBGP crashes in the flowspec parser

6.8 Medium

CVSS3

CVE-2025-43972

Описание

Пакет gobgp

Ссылки на источники

Связанные уязвимости