ELSA-2024-2981
- ULN >
- Oracle Linux Errata repository >
- ELSA-2024-2981
ELSA-2024-2981 - frr security update
| Type: | SECURITY |
| Impact: | MODERATE |
| Release Date: | 2024-05-23 |
Description
[7.5.1-22.0.1]
- Fix POSTIN scriptlet [Orabug: 34712485]
- Resolves: RHEL-15916 - Flowspec overflow in bgpd/bgp_flowspec.c
- Resolves: RHEL-15919 - Out of bounds read in bgpd/bgp_label.c
- Resolves: RHEL-15869 - crash from specially crafted MP_UNREACH_NLRI-containing BGP UPDATE message
- Resolves: RHEL-15868 - crash from malformed EOR-containing BGP UPDATE message
[7.5.1-22]
- Resolves: RHEL-22303 - Zebra not fetching host routes
[7.5.1-21]
- Resolves: RHEL-2216 - NULL pointer dereference
[7.5.1-20]
- Resolves: RHEL-4797 - missing length check in bgp_attr_psid_sub() can lead do DoS
[7.5.1-19]
- Resolves: RHEL-14824 - crafted BGP UPDATE message leading to a crash
[7.5.1-18]
- Resolves: RHEL-14821 - mishandled malformed data leading to a crash
[7.5.1-17]
- Resolves: RHEL-6583 - Routes are not refreshed after changing the inbound route rules from deny to permit
[7.5.1-16]
- Resolves: RHEL-15916 - Flowspec overflow in bgpd/bgp_flowspec.c
- Resolves: RHEL-15919 - Out of bounds read in bgpd/bgp_label.c
- Resolves: RHEL-15869 - crash from specially crafted MP_UNREACH_NLRI-containing BGP UPDATE message
- Resolves: RHEL-15868 - crash from malformed EOR-containing BGP UPDATE message
[7.5.1-15]
- Resolves: RHEL-12039 - crash in plist update
[7.5.1-14]
- Resolves: RHEL-6617 - Incorrect handling of a error in parsing of an invalid section of a BGP update can de-peer a router
Related CVEs
| CVE-2023-46752 |
| CVE-2023-41909 |
| CVE-2023-41358 |
| CVE-2023-31490 |
| CVE-2023-46753 |
Updated Packages
| Release/Architecture | Filename | sha256 | Superseded By Advisory | Channel Label |
| Oracle Linux 8 (aarch64) | frr-7.5.1-22.0.1.el8.src.rpm | a61c4db3f8cc2fff6b32e4c1cf69c8ef75882735cdd4280b1f5e0a56f939d74b | - | ol8_aarch64_appstream |
| frr-7.5.1-22.0.1.el8.aarch64.rpm | af1dcfe4c51b1aa27d0bddd2f7f34b1d1357551d74406125f3deb45885c6dd59 | - | ol8_aarch64_appstream | |
| frr-selinux-7.5.1-22.0.1.el8.noarch.rpm | 42e6982305a1430193bd61b4388d2a54b0c02d695639c98e746a8cb1284f6aae | - | ol8_aarch64_appstream | |
| Oracle Linux 8 (x86_64) | frr-7.5.1-22.0.1.el8.src.rpm | a61c4db3f8cc2fff6b32e4c1cf69c8ef75882735cdd4280b1f5e0a56f939d74b | - | ol8_x86_64_appstream |
| frr-7.5.1-22.0.1.el8.x86_64.rpm | 38a68be15565280b9dbc16b5525fd9aad242a209ccd5b9bd6feef2ab3c21ec45 | - | ol8_x86_64_appstream | |
| frr-selinux-7.5.1-22.0.1.el8.noarch.rpm | 42e6982305a1430193bd61b4388d2a54b0c02d695639c98e746a8cb1284f6aae | - | ol8_x86_64_appstream | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
