In FRRouting (FRR) up to and including 9.1, an infinite loop can occur when receiving a MP/GR capability as a dynamic capability because malformed data results in a pointer not advancing.
Debian Bug report logs -
#1072125
frr: CVE-2024-31949
Package:
src:frr;
Maintainer for src:frr is David Lamparter <equinox-debian@diac24net>;
Reported by: Moritz Mühlenhoff <jmm@inutilorg>
Date: Tue, 28 May 2024 21:39:02 UTC
Severity: important
Tags: security, upstream
Reply or subscribe to this bug
Toggle ...