FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-11-19 19:12:13 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
07f0ea8c-356a-11ef-ac6d-a0423f48a938	frr - Multiple vulnerabilities cve@mitre.org reports: In FRRouting (FRR) through 9.1, there are multiples vulnerabilities. CVE-2024-31950: buffer overflow and daemon crash in ospf_te_parse_ri for OSPF LSA packets CVE-2024-31951: buffer overflow and daemon crash in ospf_te_parse_ext_link for OSPF LSA packets Discovery 2024-04-07 Entry 2024-06-28 frr9 < 9.1.1 frr8 < 8.5.5 CVE-2024-31950 CVE-2024-31951 https://frrouting.org/release/9.1.1/
802961eb-7a89-11ef-bdd7-a0423f48a938	frr - BGP cve@mitre.org reports: An issue was discovered in FRRouting (FRR). bgp_attr_encap in bgpd/bgp_attr.c does not check the actual remaining stream length before taking the TLV value. Discovery 2024-08-19 Entry 2024-09-24 frr9 < 9.1.2 frr8 < 8.5.6 CVE-2024-44070 https://nvd.nist.gov/vuln/detail/CVE-2024-44070

VuXML ID

Description

07f0ea8c-356a-11ef-ac6d-a0423f48a938

frr - Multiple vulnerabilities

cve@mitre.org reports:

In FRRouting (FRR) through 9.1, there are multiples vulnerabilities.

CVE-2024-31950: buffer overflow and daemon crash in ospf_te_parse_ri for OSPF LSA packets

CVE-2024-31951: buffer overflow and daemon crash in ospf_te_parse_ext_link for OSPF LSA packets

Discovery 2024-04-07
Entry 2024-06-28
frr9

< 9.1.1

frr8

< 8.5.5

CVE-2024-31950
CVE-2024-31951
https://frrouting.org/release/9.1.1/

802961eb-7a89-11ef-bdd7-a0423f48a938

frr - BGP

cve@mitre.org reports:

An issue was discovered in FRRouting (FRR). bgp_attr_encap in bgpd/bgp_attr.c does not check the actual remaining stream length before taking the TLV value.

Discovery 2024-08-19
Entry 2024-09-24
frr9

< 9.1.2

frr8

< 8.5.6

CVE-2024-44070
https://nvd.nist.gov/vuln/detail/CVE-2024-44070