Advisories ยป MGASA-2017-0071

Updated quagga packages fix security vulnerability

Publication date: 03 Mar 2017
Modification date: 03 Mar 2017
Type: security
Affected Mageia releases : 5
CVE: CVE-2017-5495

Description

All versions of Quagga, 0.93 through 1.1.0, are vulnerable to an unbounded
memory allocation in the telnet 'vty' CLI, leading to a Denial-of-Service
of Quagga daemons, or even the entire host (CVE-2017-5495).
                

References

SRPMS

5/core