Advisories ยป MGASA-2017-0416

Updated quagga packages fix security vulnerability

Publication date: 19 Nov 2017
Modification date: 19 Nov 2017
Type: security
Affected Mageia releases : 5 , 6
CVE: CVE-2017-16227

Description

The bgpd daemon in the Quagga routing suite does not properly calculate
the length of multi-segment AS_PATH UPDATE messages, causing bgpd to
drop a session and potentially resulting in loss of network connectivity
(CVE-2017-16227).
                

References

SRPMS

5/core

6/core