2014-09-05
ALT-BU-2014-2960-1
Branch t6 update bulletin.
Closed vulnerabilities
Published: 2013-10-10
BDU:2015-09708
Уязвимости операционной системы Gentoo Linux, позволяющие удаленному злоумышленнику нарушить доступность защищаемой информации
Severity: MEDIUM (5.0)
References:
Published: 2013-10-24
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2013-2236
Stack-based buffer overflow in the new_msg_lsa_change_notify function in the OSPFD API (ospf_api.c) in Quagga before 0.99.22.2, when --enable-opaque-lsa and the -a command line option are used, allows remote attackers to cause a denial of service (crash) via a large LSA.
Severity: LOW (2.6)
References:
- http://git.savannah.gnu.org/gitweb/?p=quagga.git%3Ba=commitdiff%3Bh=3f872fe60463a931c5c766dbf8c36870c0023e88
- http://git.savannah.gnu.org/gitweb/?p=quagga.git%3Ba=commitdiff%3Bh=3f872fe60463a931c5c766dbf8c36870c0023e88
- [quagga-dev] 20130702 [quagga-dev 10568] ospfd, new_msg_lsa_change_notify: looks like a buffer overflow
- [quagga-dev] 20130702 [quagga-dev 10568] ospfd, new_msg_lsa_change_notify: looks like a buffer overflow
- http://nongnu.mirrors.hostinginnederland.nl//quagga/quagga-0.99.22.3.changelog.txt
- http://nongnu.mirrors.hostinginnederland.nl//quagga/quagga-0.99.22.3.changelog.txt
- RHSA-2017:0794
- RHSA-2017:0794
- [oss-security] 20130703 Re: CVE request: Quagga OSPF-API stack overrun
- [oss-security] 20130703 Re: CVE request: Quagga OSPF-API stack overrun
- DSA-2803
- DSA-2803
- 60955
- 60955
- USN-2941-1
- USN-2941-1