[ubuntu/focal-security] quagga 1.2.4-4ubuntu0.1 (Accepted)
Nishit Majithia
nishit.majithia at canonical.com
Tue Oct 17 10:21:45 UTC 2023
quagga (1.2.4-4ubuntu0.1) focal-security; urgency=medium
* SECURITY UPDATE: Denial of service
- debian/patches/CVE-2023-41358.patch: Do not process NLRIs if the
attribute length is zero
- debian/patches/CVE-2023-41360.patch: Don't read the first byte of ORF
header if we are ahead of stream
- CVE-2023-41358
- CVE-2023-41360
Date: 2023-10-16 09:55:08.793747+00:00
Changed-By: Nishit Majithia <nishit.majithia at canonical.com>
https://launchpad.net/ubuntu/+source/quagga/1.2.4-4ubuntu0.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Focal-changes
mailing list