Overview

File _patchinfo of Package patchinfo.import4283

<patchinfo incident="quagga" version="4283">
  <issue tracker="bnc" id="654270" />
  <issue tracker="CVE" id="CVE-2010-1674" />
  <issue tracker="CVE" id="CVE-2010-1675" />
  <category>security</category>
  <rating>low</rating>
  <summary>quagga: remote denial of service</summary>
  <description>This security update of quagga fixes:
- CVE-2010-1674: Direct BGP peers can send malformed
  extended communities which lead to a NULL pointer
  dereference.
- CVE-2010-1675: A malformed AS_PATHLIMIT path attribute
  will cause a session reset in Quagga. This malformed
  package is forwarded by other routers and can be used to
  take &quot;all&quot; Quagga routers off the Internet with one
  single announcement.
</description>
  <packager>adrianSuSE</packager>
</patchinfo>
openSUSE Build Service is sponsored by
Places