ospfteparsete in ospfd/ospfte.c in FRRouting (FRR) through 9.1 allows remote attackers to cause a denial of service (ospfd daemon crash) via a malformed OSPF LSA packet, because of an attempted access to a missing attribute field.
{ "binaries": [ { "binary_name": "frr", "binary_version": "8.1-1ubuntu1.9" }, { "binary_name": "frr-dbgsym", "binary_version": "8.1-1ubuntu1.9" }, { "binary_name": "frr-doc", "binary_version": "8.1-1ubuntu1.9" }, { "binary_name": "frr-pythontools", "binary_version": "8.1-1ubuntu1.9" }, { "binary_name": "frr-rpki-rtrlib", "binary_version": "8.1-1ubuntu1.9" }, { "binary_name": "frr-rpki-rtrlib-dbgsym", "binary_version": "8.1-1ubuntu1.9" }, { "binary_name": "frr-snmp", "binary_version": "8.1-1ubuntu1.9" }, { "binary_name": "frr-snmp-dbgsym", "binary_version": "8.1-1ubuntu1.9" } ], "availability": "No subscription required", "ubuntu_priority": "medium" }
{ "binaries": [ { "binary_name": "frr", "binary_version": "8.4.4-1.1ubuntu4" }, { "binary_name": "frr-dbgsym", "binary_version": "8.4.4-1.1ubuntu4" }, { "binary_name": "frr-doc", "binary_version": "8.4.4-1.1ubuntu4" }, { "binary_name": "frr-pythontools", "binary_version": "8.4.4-1.1ubuntu4" }, { "binary_name": "frr-rpki-rtrlib", "binary_version": "8.4.4-1.1ubuntu4" }, { "binary_name": "frr-rpki-rtrlib-dbgsym", "binary_version": "8.4.4-1.1ubuntu4" }, { "binary_name": "frr-snmp", "binary_version": "8.4.4-1.1ubuntu4" }, { "binary_name": "frr-snmp-dbgsym", "binary_version": "8.4.4-1.1ubuntu4" } ], "availability": "No subscription required", "ubuntu_priority": "medium" }