[ubuntu/oneiric-security] quagga, quagga_0.99.18-2ubuntu0.1_i386_translations.tar.gz, quagga_0.99.18-2ubuntu0.1_armel_translations.tar.gz, quagga_0.99.18-2ubuntu0.1_powerpc_translations.tar.gz, quagga_0.99.18-2ubuntu0.1_amd64_translations.tar.gz 0.99.18-2ubuntu0.1 (Accepted)
Marc Deslauriers
marc.deslauriers at ubuntu.com
Mon Nov 14 19:03:20 UTC 2011
quagga (0.99.18-2ubuntu0.1) oneiric-security; urgency=low
* SECURITY UPDATE: arbitrary code execution via malformed Inter Area
Prefix LSA
- debian/patches/95_CVE-2011-3323.dpatch: check lengths in
ospf6d/{ospf6_abr.h,ospf6_asbr.h,ospf6_intra.h,ospf6_lsa.h,
ospf6_message.c,ospf6_message.h,ospf6_proto.h}
- CVE-2011-3323
* SECURITY UPDATE: denial of sevice via crafted Link-State-Advertisement
- debian/patches/95_CVE-2011-3324.dpatch: change assert to warning in
ospf6d/ospf6_lsa.c.
- CVE-2011-3324
* SECURITY UPDATE: denial of service via crafted Hello packet
- debian/patches/95_CVE-2011-3325.dpatch: add extra checks to
ospfd/ospf_packet.c.
- CVE-2011-3325
* SECURITY UPDATE: denial of service via unknown Link-State-Advertisements
types
- debian/patches/95_CVE-2011-3326.dpatch: exit if LSA type is unknown
in ospfd/ospf_flood.c.
- CVE-2011-3326
* SECURITY UPDATE: arbitrary code execution via Extended Communities path
attribute
- debian/patches/95_CVE-2011-3327.dpatch: properly check size in
bgpd/bgp_ecommunity.c.
- CVE-2011-3327
Date: Fri, 07 Oct 2011 12:41:49 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/oneiric/+source/quagga/0.99.18-2ubuntu0.1
-------------- next part --------------
Format: 1.8
Date: Fri, 07 Oct 2011 12:41:49 -0400
Source: quagga
Binary: quagga quagga-doc
Architecture: source
Version: 0.99.18-2ubuntu0.1
Distribution: oneiric-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
quagga - BGP/OSPF/RIP routing daemon
quagga-doc - documentation files for quagga
Changes:
quagga (0.99.18-2ubuntu0.1) oneiric-security; urgency=low
.
* SECURITY UPDATE: arbitrary code execution via malformed Inter Area
Prefix LSA
- debian/patches/95_CVE-2011-3323.dpatch: check lengths in
ospf6d/{ospf6_abr.h,ospf6_asbr.h,ospf6_intra.h,ospf6_lsa.h,
ospf6_message.c,ospf6_message.h,ospf6_proto.h}
- CVE-2011-3323
* SECURITY UPDATE: denial of sevice via crafted Link-State-Advertisement
- debian/patches/95_CVE-2011-3324.dpatch: change assert to warning in
ospf6d/ospf6_lsa.c.
- CVE-2011-3324
* SECURITY UPDATE: denial of service via crafted Hello packet
- debian/patches/95_CVE-2011-3325.dpatch: add extra checks to
ospfd/ospf_packet.c.
- CVE-2011-3325
* SECURITY UPDATE: denial of service via unknown Link-State-Advertisements
types
- debian/patches/95_CVE-2011-3326.dpatch: exit if LSA type is unknown
in ospfd/ospf_flood.c.
- CVE-2011-3326
* SECURITY UPDATE: arbitrary code execution via Extended Communities path
attribute
- debian/patches/95_CVE-2011-3327.dpatch: properly check size in
bgpd/bgp_ecommunity.c.
- CVE-2011-3327
Checksums-Sha1:
240a08ef43bdcf1fda17a4a5cbe24d160ff5c798 2052 quagga_0.99.18-2ubuntu0.1.dsc
b527f6d6f3671ab2fd7b875d8bd820c63ef72ac5 46801 quagga_0.99.18-2ubuntu0.1.diff.gz
Checksums-Sha256:
edac874ec978872c6365bdb3021db59c648d2b7d9912e7d3d258324e565818bc 2052 quagga_0.99.18-2ubuntu0.1.dsc
e293b16b9ebfef8d2caf6f3aac6da7762e686b9b671193eac9b894cd6c659a88 46801 quagga_0.99.18-2ubuntu0.1.diff.gz
Files:
944cfc427e76fc1c9f3b9511ea3a3874 2052 net optional quagga_0.99.18-2ubuntu0.1.dsc
1c7350d66cb3790a897d391e3dfcfea2 46801 net optional quagga_0.99.18-2ubuntu0.1.diff.gz
Original-Maintainer: Christian Hammers <ch at debian.org>
More information about the Oneiric-changes
mailing list