quagga 1.1.1-3+deb9u2 source package in Debian
Changelog
quagga (1.1.1-3+deb9u2) stretch-security; urgency=high
* Non-maintainer upload by the Security Team.
* bgpd/security: invalid attr length sends NOTIFY with data overrun
(CVE-2018-5378)
Security issue: Quagga-2018-0543
* bgpd/security: Fix double free of unknown attribute (CVE-2018-5379)
Security issue: Quagga-2018-1114
* bgpd/security: debug print of received NOTIFY data can over-read msg array
(CVE-2018-5380)
Security issue: Quagga-2018-1550
* bgpd/security: fix infinite loop on certain invalid OPEN messages
(CVE-2018-5381)
Security issue: Quagga-2018-1975
-- Salvatore Bonaccorso <email address hidden> Tue, 13 Feb 2018 22:54:57 +0100
Upload details
- Uploaded by:
- Scott Leggett
- Uploaded to:
- Stretch
- Original maintainer:
- Scott Leggett
- Architectures:
- any all
- Section:
- net
- Urgency:
- Very Urgent
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Stretch | release | main | net |
Builds
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| quagga_1.1.1-3+deb9u2.dsc | 2.7 KiB | 2e6beea8dfe0224435e3d296f855116b935aebff2aaceea60f8ffa06a75dfd50 |
| quagga_1.1.1.orig.tar.gz | 2.1 MiB | cd464dd5575dfcedc6ad590eced904290d9c5fded89984bfa5610657dfb412bc |
| quagga_1.1.1-3+deb9u2.debian.tar.xz | 35.1 KiB | 349490915d20f241de49949547abec4b96f7790ce0e6daf39c3cdbd957b20f55 |
No changes file available.
