Information on source package frr

Available versions

ReleaseVersion
buster7.5.1-1.1+deb10u3
buster (security)7.5.1-1.1+deb10u2
bullseye7.5.1-1.1+deb11u2
bullseye (security)7.5.1-1.1+deb11u3
bookworm8.4.4-1.1~deb12u1
trixie10.1.1-0.1
sid10.2-1

Open issues

BugbusterbullseyebookwormtrixiesidDescription
CVE-2024-44070fixedfixedvulnerablefixedfixedAn issue was discovered in FRRouting (FRR) through 10.1. bgp_attr_enca ...
CVE-2024-34088fixedfixedvulnerablefixedfixedIn FRRouting (FRR) through 9.1, it is possible for the get_edge() func ...
CVE-2024-31951fixedfixedvulnerablefixedfixedIn the Opaque LSA Extended Link parser in FRRouting (FRR) through 9.1, ...
CVE-2024-31950fixedfixedvulnerablefixedfixedIn FRRouting (FRR) through 9.1, there can be a buffer overflow and dae ...
CVE-2024-31949fixedfixedvulnerablefixedfixedIn FRRouting (FRR) through 9.1, an infinite loop can occur when receiv ...
CVE-2024-31948fixedfixedvulnerablefixedfixedIn FRRouting (FRR) through 9.1, an attacker using a malformed Prefix S ...
CVE-2024-27913fixedfixedvulnerablefixedfixedospf_te_parse_te in ospfd/ospf_te.c in FRRouting (FRR) through 9.1 all ...
CVE-2023-47235fixedfixedvulnerablefixedfixedAn issue was discovered in FRRouting FRR through 9.0.1. A crash can oc ...
CVE-2023-47234fixedfixedvulnerablefixedfixedAn issue was discovered in FRRouting FRR through 9.0.1. A crash can oc ...
CVE-2023-46753fixedfixedvulnerablefixedfixedAn issue was discovered in FRRouting FRR through 9.0.1. A crash can oc ...
CVE-2023-46752fixedfixedvulnerablefixedfixedAn issue was discovered in FRRouting FRR through 9.0.1. It mishandles ...
CVE-2023-41361fixedfixedvulnerablefixedfixedAn issue was discovered in FRRouting FRR 9.0. bgpd/bgp_open.c does not ...
CVE-2023-38407fixedfixedvulnerablefixedfixedbgpd/bgp_label.c in FRRouting (FRR) before 8.5 attempts to read beyond ...
CVE-2023-3748fixedfixedvulnerablefixedfixedA flaw was found in FRRouting when parsing certain babeld unicast hell ...

Open unimportant issues

BugbusterbullseyebookwormtrixiesidDescription
CVE-2020-12831vulnerablevulnerablevulnerablevulnerablevulnerableAn issue was discovered in FRRouting FRR (aka Free Range Routing) thro ...

Resolved issues

BugDescription
CVE-2023-41909An issue was discovered in FRRouting FRR through 9.0. bgp_nlri_parse_f ...
CVE-2023-41360An issue was discovered in FRRouting FRR through 9.0. bgpd/bgp_packet. ...
CVE-2023-41359An issue was discovered in FRRouting FRR through 9.0. There is an out- ...
CVE-2023-41358An issue was discovered in FRRouting FRR through 9.0. bgpd/bgp_packet. ...
CVE-2023-38802FRRouting FRR 7.5.1 through 9.0 and Pica8 PICOS 4.3.3.2 allow a remote ...
CVE-2023-38406bgpd/bgp_flowspec.c in FRRouting (FRR) before 8.4.3 mishandles an nlri ...
CVE-2023-31490An issue found in Frrouting bgpd v.8.4.2 allows a remote attacker to c ...
CVE-2023-31489An issue found in Frrouting bgpd v.8.4.2 allows a remote attacker to c ...
CVE-2022-43681An out-of-bounds read exists in the BGP daemon of FRRouting FRR throug ...
CVE-2022-40318An issue was discovered in bgpd in FRRouting (FRR) through 8.4. By cra ...
CVE-2022-40302An issue was discovered in bgpd in FRRouting (FRR) through 8.4. By cra ...
CVE-2022-37035An issue was discovered in bgpd in FRRouting (FRR) 8.3. In bgp_notify_ ...
CVE-2022-37032An out-of-bounds read in the BGP daemon of FRRouting FRR before 8.4 ma ...
CVE-2022-36440A reachable assertion was found in Frrouting frr-bgpd 8.3.0 in the pee ...
CVE-2022-26129Buffer overflow vulnerabilities exist in FRRouting through 8.1.0 due t ...
CVE-2022-26128A buffer overflow vulnerability exists in FRRouting through 8.1.0 due ...
CVE-2022-26127A buffer overflow vulnerability exists in FRRouting through 8.1.0 due ...
CVE-2022-26126Buffer overflow vulnerabilities exist in FRRouting through 8.1.0 due t ...
CVE-2022-26125Buffer overflow vulnerabilities exist in FRRouting through 8.1.0 due t ...
CVE-2019-5892bgpd in FRRouting FRR (aka Free Range Routing) 2.x and 3.x before 3.0. ...
CVE-2017-15865bgpd in FRRouting (FRR) before 2.0.2 and 3.x before 3.0.2, as used in ...
CVE-2017-3224Open Shortest Path First (OSPF) protocol implementations may improperl ...

Security announcements

DSA / DLADescription
DLA-3865-1frr - security update
ELA-1166-1frr - security update
DLA-3797-1frr - security update
DLA-3573-1frr - security update
DSA-5495-1frr - security update
DSA-5362-1frr - security update
DLA-3211-1frr - security update

Search for package or bug name: Reporting problems