frr: fix CVE-2024-34088 - linux/meta-openembedded.git - Mirror of git.openembedded.org/meta-openembedded

diff options

author	Zhang Peng <peng.zhang1.cn@windriver.com>	2024-11-26 16:11:12 +0800
committer	Armin Kuster <akuster808@gmail.com>	2024-12-15 13:57:26 -0500
commit	9c352814e40a548723c73104412cc143d5fff8e5 (patch)
tree	cdb51483684a41c3682a781cd4f233bf72cca79b /meta-perl
parent	96d9f031ba22958e416b31278d5cd043863c8b3b (diff)
download	meta-openembedded-9c352814e40a548723c73104412cc143d5fff8e5.tar.gz

frr: fix CVE-2024-34088

CVE-2024-34088: In FRRouting (FRR) through 9.1, it is possible for the get_edge() function in ospf_te.c in the OSPF daemon to return a NULL pointer. In cases where calling functions do not handle the returned NULL value, the OSPF daemon crashes, leading to denial of service. Reference: [https://nvd.nist.gov/vuln/detail/CVE-2024-34088] Upstream patches: [https://github.com/FRRouting/frr/commit/8c177d69e32b91b45bda5fc5da6511fa03dc11ca] Signed-off-by: Zhang Peng <peng.zhang1.cn@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>

Diffstat (limited to 'meta-perl')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: