FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

frr - BGP

Affected packages
frr9 < 9.1.2
frr8 < 8.5.6

Details

VuXML ID 802961eb-7a89-11ef-bdd7-a0423f48a938
Discovery 2024-08-19
Entry 2024-09-24

cve@mitre.org reports:

An issue was discovered in FRRouting (FRR). bgp_attr_encap in bgpd/bgp_attr.c does not check the actual remaining stream length before taking the TLV value.

References

CVE Name CVE-2024-44070
URL https://nvd.nist.gov/vuln/detail/CVE-2024-44070