Sicherheit: Denial of Service in quagga
Aktuelle Meldungen Distributionen
Name: Denial of Service in quagga
ID: FEDORA-2017-ba9c6a3634
Distribution: Fedora
Plattformen: Fedora 24
Datum: Sa, 25. Februar 2017, 00:39
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5495
Applikationen: quagga


Name        : quagga
Product : Fedora 24
Version :
Release : 5.fc24
URL : http://www.quagga.net
Summary : Routing daemon
Description :
Quagga is free software that operates TCP/IP-based routing protocols. It takes
a multi-server and multi-threaded approach to resolving the current complexity
of the Internet.

Quagga supports Babel, BGP4, BGP4+, BGP4-, IS-IS (experimental), OSPFv2,
OSPFv3, RIPv1, RIPv2, and RIPng.

Quagga is intended to be used as a Route Server and a Route Reflector. It is
not a toolkit; it provides full routing power under a new architecture.
Quagga by design has a process for each protocol.

Quagga is a fork of GNU Zebra.

Update Information:

Fix for CVE-2017-5495

[ 1 ] Bug #1416017 - CVE-2017-5495 quagga: Telnet interface input buffer
allocates unbounded amounts of memory [fedora-all]

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade quagga' at the command line.
For more information, refer to the dnf documentation available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Pro-Linux @Facebook
Neue Nachrichten