CVE-2007-1995

Impact:
Moderate
Public Date:
2007-04-08
Bugzilla:
240478: CVE-2007-1995 Quagga bgpd DoS

The MITRE CVE dictionary describes this issue as:

bgpd/bgp_attr.c in Quagga 0.98.6 and earlier, and 0.99.6 and earlier 0.99 versions, does not validate length values in the MP_REACH_NLRI and MP_UNREACH_NLRI attributes, which allows remote attackers to cause a denial of service (daemon crash or exit) via crafted UPDATE messages that trigger an assertion error or out of bounds read.

Find out more about CVE-2007-1995 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 3 (quagga) RHSA-2007:0389 2007-05-30
Red Hat Enterprise Linux 4 (quagga) RHSA-2007:0389 2007-05-30
Red Hat Enterprise Linux 5 (quagga) RHSA-2007:0389 2007-05-30

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact Red Hat Product Security.

Last Modified

CVE description copyright © 2017, The MITRE Corporation

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.