Overview

File _patchinfo of Package patchinfo.43193

<patchinfo incident="43193">
  <!--generated with prepare-update from request 403600-->
  <issue tracker="bnc" id="1252761">VUL-0: CVE-2025-61105: frr: FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_link_info function at ospf_ext.c</issue>
  <issue tracker="bnc" id="1252810">VUL-0: CVE-2025-61103: frr: NULL pointer dereference in show_vty_ext_link_lan_adj_sid() in ospf_ext.c</issue>
  <issue tracker="bnc" id="1252811">VUL-0: CVE-2025-61104: frr: NULL pointer dereference in show_vty_unknown_tlv() in ospf_ext.c</issue>
  <issue tracker="bnc" id="1252812">VUL-0: CVE-2025-61106: frr: NULL pointer dereference in show_vty_ext_pref_pref_sid() in ospf_ext.c</issue>
  <issue tracker="bnc" id="1252813">VUL-0: CVE-2025-61107: frr,quagga: frr: NULL pointer dereference in show_vty_ext_pref_pref_sid() in ospf_ext.c</issue>
  <issue tracker="bnc" id="1252829">VUL-0: CVE-2025-61100: frr: NULL Pointer Dereference in FRRouting</issue>
  <issue tracker="bnc" id="1252833">VUL-0: CVE-2025-61101: frr: NULL Pointer Dereference in FRRouting</issue>
  <issue tracker="bnc" id="1252835">VUL-0: CVE-2025-61102: frr: NULL Pointer Dereference in FRRouting</issue>
  <issue tracker="bnc" id="1252838">VUL-0: CVE-2025-61099: frr: NULL Pointer Dereference in FRRouting</issue>
  <issue tracker="cve" id="2025-61099"/>
  <issue tracker="cve" id="2025-61100"/>
  <issue tracker="cve" id="2025-61101"/>
  <issue tracker="cve" id="2025-61102"/>
  <issue tracker="cve" id="2025-61103"/>
  <issue tracker="cve" id="2025-61104"/>
  <issue tracker="cve" id="2025-61105"/>
  <issue tracker="cve" id="2025-61106"/>
  <issue tracker="cve" id="2025-61107"/>
  <issue tracker="jsc" id="PED-14796"/>
  <category>security</category>
  <rating>moderate</rating>
  <packager>mtomaschewski</packager>
  <summary>Security update for frr</summary>
  <description>This update for frr fixes the following issues:

Security issues:

- CVE-2025-61099: NULL Pointer Dereference in FRRouting (bsc#1252838).
- CVE-2025-61100: NULL Pointer Dereference in FRRouting (bsc#1252829).
- CVE-2025-61101: NULL Pointer Dereference in FRRouting (bsc#1252833).
- CVE-2025-61102: NULL Pointer Dereference in FRRouting (bsc#1252835).
- CVE-2025-61103: NULL pointer dereference in show_vty_ext_link_lan_adj_sid() in ospf_ext.c (bsc#1252810).
- CVE-2025-61104: NULL pointer dereference in show_vty_unknown_tlv() in ospf_ext.c (bsc#1252811).
- CVE-2025-61105: NULL pointer dereference in  show_vty_link_info() in ospf_ext.c (bsc#1252761).
- CVE-2025-61106: NULL pointer dereference in show_vty_ext_pref_pref_sid() in ospf_ext.c (bsc#1252812).

Non-security issues:

- Fix /var/run leftovers in logrotate config file, create /var/log and /var/lib via tmpfiles.d (jsc#PED-14796).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places