[ubuntu/artful-security] quagga 1.1.1-3ubuntu0.2 (Accepted)
Steve Beattie
sbeattie at ubuntu.com
Thu Feb 15 23:19:44 UTC 2018
quagga (1.1.1-3ubuntu0.2) artful-security; urgency=medium
* SECURITY UPDATE: missing bounds check on NOTIFY data
- debian/patches/Quagga-2018-0543.patch: use proper length in
bgpd/bgp_attr.c.
- No CVE number
* SECURITY UPDATE: DoS and possible code execution via double-free
- debian/patches/Quagga-2018-1114.patch: fix double-free in
bgpd/bgp_attr.c, bgpd/bgp_attr.h.
- No CVE number
* SECURITY UPDATE: code-to-string conversion table overrun
- debian/patches/Quagga-2018-1550.patch: limit size in
bgpd/bgp_debug.c.
- No CVE number
* SECURITY UPDATE: hang via invalid OPEN message
- debian/patches/Quagga-2018-1975.patch: fix infinite loop in
bgpd/bgp_packet.c.
- No CVE number
Date: 2018-02-08 12:39:19.448216+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
Signed-By: Steve Beattie <sbeattie at ubuntu.com>
https://launchpad.net/ubuntu/+source/quagga/1.1.1-3ubuntu0.2
-------------- next part --------------
Sorry, changesfile not available.
More information about the Artful-changes
mailing list