An issue was discovered in FRRouting (FRR) through 10.1. bgp_attr_encap in bgpd/bgp_attr.c does not check the actual remaining stream length before taking the TLV value.
References
Link | Resource |
---|---|
https://github.com/FRRouting/frr/pull/16497 | Issue Tracking Patch |
Configurations
History
30 Aug 2024, 16:19
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:* |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
First Time |
Redhat enterprise Linux
Redhat |
21 Aug 2024, 12:31
Type | Values Removed | Values Added |
---|---|---|
References | () https://github.com/FRRouting/frr/pull/16497 - Issue Tracking, Patch | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
CPE | cpe:2.3:a:frrouting:frrouting:*:*:*:*:*:*:*:* | |
First Time |
Frrouting
Frrouting frrouting |
|
CWE | NVD-CWE-noinfo |
19 Aug 2024, 12:59
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
19 Aug 2024, 02:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-08-19 02:15
Updated : 2024-08-30 16:19
NVD link : CVE-2024-44070
Mitre link : CVE-2024-44070
CVE.ORG link : CVE-2024-44070
JSON object : View
Products Affected
frrouting
- frrouting
redhat
- enterprise_linux
CWE