Analyzed
about 1 year
ago.
based on code collected
about 1 year
ago.
Major Versions
click and drag to zoom
Security Vulnerabilities for Version:
Severities:
Type
|
Identifier
|
Related Record |
Severity
|
Date Published
|
Description | Versions Affected |
|---|---|---|---|---|---|
| CVE-2023-47235 | High | Nov 03, 2023 | An issue was discovered in FRRouting FRR through 9.0.1. A crash can occur when a malformed BGP UPDATE message with an EOR is processed, because the pre more... |
8.4.4, 8.5.2, 8.4.2, 8.4.1, 8.4, 8.3.1, 8.3, 8.2.2, 8.2.1, 8.2
|
|
| CVE-2023-47234 | High | Nov 03, 2023 | An issue was discovered in FRRouting FRR through 9.0.1. A crash can occur when processing a crafted BGP UPDATE message with a MP_UNREACH_NLRI attribute more... |
8.4.4, 8.5.2, 8.4.2, 8.4.1, 8.4, 8.3.1, 8.3, 8.2.2, 8.2.1, 8.2
|
|
| CVE-2023-46753 | Medium | Oct 26, 2023 | An issue was discovered in FRRouting FRR through 9.0.1. A crash can occur for a crafted BGP UPDATE message without mandatory attributes, e.g., one with more... |
8.4.4, 8.5.2, 8.4.2, 8.4.1, 8.4, 8.3.1, 8.3, 8.2.2, 8.2.1, 8.2
|
|
| CVE-2023-46752 | Medium | Oct 26, 2023 | An issue was discovered in FRRouting FRR through 9.0.1. It mishandles malformed MP_REACH_NLRI data, leading to a crash. |
8.4.4, 8.5.2, 8.4.2, 8.4.1, 8.4, 8.3.1, 8.3, 8.2.2, 8.2.1, 8.2
|
|
| CVE-2023-41909 | High | Sep 05, 2023 | An issue was discovered in FRRouting FRR through 9.0. bgp_nlri_parse_flowspec in bgpd/bgp_flowspec.c processes malformed requests with no attributes, l more... |
8.4.4, 8.5.2, 8.4.2, 8.4.1, 8.4, 8.3.1, 8.3, 8.2.2, 8.2.1, 8.2
|
|
| CVE-2023-41361 | Critical | Aug 29, 2023 | An issue was discovered in FRRouting FRR 9.0. bgpd/bgp_open.c does not check for an overly large length of the rcv software version. |
8.4.4, 8.5.2, 8.4.2, 8.4.1, 8.4, 8.3.1, 8.3, 8.2.2, 8.2.1, 8.2
|
|
| CVE-2023-41360 | Critical | Aug 29, 2023 | An issue was discovered in FRRouting FRR through 9.0. bgpd/bgp_packet.c can read the initial byte of the ORF header in an ahead-of-stream situation. |
8.4.4, 8.5.2, 8.4.2, 8.4.1, 8.4, 8.3.1, 8.3, 8.2.2, 8.2.1, 8.2
|
|
| CVE-2023-41359 | Critical | Aug 29, 2023 | An issue was discovered in FRRouting FRR through 9.0. There is an out-of-bounds read in bgp_attr_aigp_valid in bgpd/bgp_attr.c because there is no chec more... |
8.4.4, 8.5.2, 8.4.2, 8.4.1, 8.4, 8.3.1, 8.3, 8.2.2, 8.2.1, 8.2
|
|
| CVE-2023-41358 | High | Aug 29, 2023 | An issue was discovered in FRRouting FRR through 9.0. bgpd/bgp_packet.c processes NLRIs if the attribute length is zero. |
8.4.4, 8.5.2, 8.4.2, 8.4.1, 8.4, 8.3.1, 8.3, 8.2.2, 8.2.1, 8.2
|
|
| CVE-2023-38802 | High | Aug 29, 2023 | FRRouting FRR 7.5.1 through 9.0 and Pica8 PICOS 4.3.3.2 allow a remote attacker to cause a denial of service via a crafted BGP update with a corrupted more... |
8.4.4, 8.5.2, 8.4.2, 8.4.1, 8.4, 8.3.1, 8.3, 8.2.2, 8.2.1, 8.2
|
