frr: fix CVE-2024-31951 - linux/meta-openembedded.git - Mirror of git.openembedded.org/meta-openembedded

diff options

author	Zhang Peng <peng.zhang1.cn@windriver.com>	2024-11-26 16:11:14 +0800
committer	Armin Kuster <akuster808@gmail.com>	2024-12-15 13:57:33 -0500
commit	483946a97bf49752538675ed56a8acd864c6a12b (patch)
tree	1629f059019d3ab086b27c8ac380d8146139fb71 /meta-python/recipes-devtools/python/python3-sqlparse
parent	327470f0009cf193ab2ecfa69a866bdefc21fbb1 (diff)
download	meta-openembedded-483946a97bf49752538675ed56a8acd864c6a12b.tar.gz

frr: fix CVE-2024-31951

CVE-2024-31951: In the Opaque LSA Extended Link parser in FRRouting (FRR) through 9.1, there can be a buffer overflow and daemon crash in ospf_te_parse_ext_link for OSPF LSA packets during an attempt to read Segment Routing Adjacency SID subTLVs (lengths are not validated). Reference: [https://nvd.nist.gov/vuln/detail/CVE-2024-31951] Upstream patches: [https://github.com/FRRouting/frr/commit/5557a289acdaeec8cc63ffc97b5c2abf6dee7b3a] Signed-off-by: Zhang Peng <peng.zhang1.cn@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>

Diffstat (limited to 'meta-python/recipes-devtools/python/python3-sqlparse')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: