ELSA-2024-2156 - frr security update
| Type: | SECURITY |
| Severity: | MODERATE |
| Release Date: | 2024-05-02 |
Description
[8.5.3-4]
- Resolves: RHEL-14825 - crafted BGP UPDATE message leading to a crash
[8.5.3-3]
- Resolves: RHEL-14822 - mishandled malformed data leading to a crash
[8.5.3-2]
- Resolves: RHEL-15915 - crash from specially crafted MP_UNREACH_NLRI-containing BGP UPDATE message
- Resolves: RHEL-15918 - crash from malformed EOR-containing BGP UPDATE message
[8.5.3-1]
- Resolves: RHEL-15291 - Rebase FRR to version 8.5.3 in RHEL9
[8.3.1-12]
- Resolves: RHEL-3541 - Incorrect handling of a error in parsing of an invalid section of a BGP update can de-peer a router
Related CVEs
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory | Channel Label |
|
| Oracle Linux 9 (aarch64) | frr-8.5.3-4.el9.src.rpm | a77ccaf4adc2c2ea3a264a3afd00b69e | - | ol9_aarch64_appstream |
| frr-8.5.3-4.el9.aarch64.rpm | c6c3a802c457031af3d074e3c27d0310 | - | ol9_aarch64_appstream |
| frr-selinux-8.5.3-4.el9.noarch.rpm | 6d4f2e4cc9a869b4629b4ad8b9e061ce | - | ol9_aarch64_appstream |
|
| Oracle Linux 9 (x86_64) | frr-8.5.3-4.el9.src.rpm | a77ccaf4adc2c2ea3a264a3afd00b69e | - | ol9_x86_64_appstream |
| frr-8.5.3-4.el9.x86_64.rpm | b13768b8d337a0d6565396710917e426 | - | ol9_x86_64_appstream |
| frr-selinux-8.5.3-4.el9.noarch.rpm | 6d4f2e4cc9a869b4629b4ad8b9e061ce | - | ol9_x86_64_appstream |
This page is generated automatically and has not been checked for errors or omissions. For clarification
or corrections please contact the Oracle Linux ULN team
