This security update of quagga fixes:
- CVE-2010-1674: Direct BGP peers can send malformed
extended communities which lead to a NULL pointer
dereference.
- CVE-2010-1675: A malformed AS_PATHLIMIT path attribute
will cause a session reset in Quagga. This malformed
package is forwarded by other routers and can be used to
take "all" Quagga routers off the Internet with one
single announcement.