drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Denial of Service in quagga
| Name: |
Denial of Service in quagga |
|
| ID: |
FEDORA-2012-9116 |
|
| Distribution: |
Fedora |
|
| Plattformen: |
Fedora 16 |
|
| Datum: |
Di, 19. Juni 2012, 17:32 |
|
| Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1820 |
|
Originalnachricht |
Name : quagga
Product : Fedora 16
Version : 0.99.21
Release : 2.fc16
URL : http://www.quagga.net
Summary : Routing daemon
Description :
Quagga is free software that operates TCP/IP-based routing protocols. It takes
a multi-server and multi-threaded approach to resolving the current complexity
of the Internet.
Quagga supports Babel, BGP4, BGP4+, BGP4-, IS-IS (experimental), OSPFv2,
OSPFv3, RIPv1, RIPv2, and RIPng.
Quagga is intended to be used as a Route Server and a Route Reflector. It is
not a toolkit; it provides full routing power under a new architecture.
Quagga by design has a process for each protocol.
Quagga is a fork of GNU Zebra.
-------------------------------------------------------------------------------
-
Update Information:
Update to the 0.99.21 which fixes various issues. In addition, this update
fixes following CVE:
CVE-2012-1820: quagga (bgpd): Assertion failure by processing BGP OPEN message
with malformed ORF capability TLV
-------------------------------------------------------------------------------
-
ChangeLog:
* Thu Jun 7 2012 Adam Tkac <atkac redhat com> 0.99.21-2
- fix CVE-2012-1820
* Thu May 3 2012 Adam Tkac <atkac redhat com> 0.99.21
- update to 0.99.21
- various packaging fixes
* Thu Mar 15 2012 Jiri Skala <jskala@redhat.com> - 0.99.20.1-1
- updated to latest upstream version 0.99.20.1
* Wed Nov 23 2011 Jiri Skala <jskala@redhat.com> - 0.99.20-4
- modified permissions of var dirs (fixes #755491)
-------------------------------------------------------------------------------
-
References:
[ 1 ] Bug #817580 - CVE-2012-1820 quagga (bgpd): Assertion failure by
processing BGP OPEN message with malformed ORF capability TLV (VU#962587)
https://bugzilla.redhat.com/show_bug.cgi?id=817580
-------------------------------------------------------------------------------
-
This update can be installed with the "yum" update program. Use
su -c 'yum update quagga' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce
|
|
|
|
