CLSA-2023-1697817200

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos6els/CLSA-2023-1697817200.json
JSON Data
https://api.test.osv.dev/v1/vulns/CLSA-2023-1697817200
Upstream
Published
2023-10-20T15:53:24Z
Modified
2026-05-27T11:33:27.784431743Z
Summary
quagga: Fix of 2 CVEs
Details
  • CVE-2023-41360: don't read the first byte of ORF header if we are ahead of stream
  • CVE-2023-41358: do not process NLRIs if the attribute length is zero
References

Affected packages

TuxCare:CentOS:6 / quagga

Package

Name
quagga
Purl
pkg:rpm/tuxcare/quagga?distro=centos-6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.99.15-14.el6.tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos6els/CLSA-2023-1697817200.json"

TuxCare:CentOS:6 / quagga-contrib

Package

Name
quagga-contrib
Purl
pkg:rpm/tuxcare/quagga-contrib?distro=centos-6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.99.15-14.el6.tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos6els/CLSA-2023-1697817200.json"

TuxCare:CentOS:6 / quagga-devel

Package

Name
quagga-devel
Purl
pkg:rpm/tuxcare/quagga-devel?distro=centos-6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.99.15-14.el6.tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos6els/CLSA-2023-1697817200.json"