drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Zwei Probleme in quagga
Name: |
Zwei Probleme in quagga |
|
ID: |
FEDORA-2011-3916 |
|
Distribution: |
Fedora |
|
Plattformen: |
Fedora 13 |
|
Datum: |
Di, 12. April 2011, 10:38 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1674
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1675 |
|
Applikationen: |
quagga |
|
Originalnachricht |
------------------------------------------------------------------------------- - Fedora Update Notification FEDORA-2011-3916 2011-03-23 22:07:42 ------------------------------------------------------------------------------- -
Name : quagga Product : Fedora 13 Version : 0.99.18 Release : 1.fc13 URL : http://www.quagga.net Summary : Routing daemon Description : Quagga is a free software that manages TCP/IP based routing protocol. It takes multi-server and multi-thread approach to resolve the current complexity of the Internet.
Quagga supports BGP4, BGP4+, OSPFv2, OSPFv3, RIPv1, RIPv2, and RIPng.
Quagga is intended to be used as a Route Server and a Route Reflector. It is not a toolkit, it provides full routing power under a new architecture. Quagga by design has a process for each protocol.
Quagga is a fork of GNU Zebra.
------------------------------------------------------------------------------- - ChangeLog:
* Wed Mar 23 2011 Jiri Skala <jskala@redhat.com> - 0.99.18-1 - fixes #689852 - CVE-2010-1674 CVE-2010-1675 quagga various flaws - fixes #689763 - updated to latest upstream version 0.99.18 * Tue Aug 31 2010 Jiri Skala <jskala@redhat.com> - 0.99.17-1 - update to latest upstream - fixes #628981 - CVE-2010-2948 and CVE-2010-2949 * Fri Jun 11 2010 Jiri Skala <jskala@redhat.com> - 0.99.15-3 - fixes #602851 - ships PAM config file, even though PAM is disabled * Tue Jan 26 2010 Jiri Skala <jskala@redhat.com> - 0.99.15-2 - changes in spec file and init scritps (#226352) ------------------------------------------------------------------------------- - References:
[ 1 ] Bug #654603 - CVE-2010-1674 quagga: DoS (crash) by processing malformed extended community attribute in a route https://bugzilla.redhat.com/show_bug.cgi?id=654603 [ 2 ] Bug #654614 - CVE-2010-1675 quagga: BGP session reset by processing BGP Update message with malformed AS-path attributes https://bugzilla.redhat.com/show_bug.cgi?id=654614 ------------------------------------------------------------------------------- -
This update can be installed with the "yum" update program. Use su -c 'yum update quagga' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys ------------------------------------------------------------------------------- - _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-announce
|
|
|
|