Ubuntu 23.10 & 22.04 LTS: USN-6679-1 Critical frr Denial of Service
ubuntu
March 6, 2024
FRR could be made to crash if it received specially crafted network traffic.
Summary
A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 23.10 - Ubuntu 22.04 LTS Summary: FRR could be made to crash if it received specially crafted network traffic. Software Description: - frr: FRRouting suite of internet protocols Details: It was discovered that FRR incorrectly handled certain malformed OSPF LSA packets. A remote attacker could possibly use this issue to cause FRR to crash, resulting in a denial of service.
Update Instructions
The problem can be corrected by updating your system to the following package versions: Ubuntu 23.10: frr 8.4.4-1.1ubuntu1.3 Ubuntu 22.04 LTS: frr 8.1-1ubuntu1.9 In general, a standard system update will make all the necessary changes.
References
https://ubuntu.com/security/notices/USN-6679-1
CVE-2024-27913
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Ubuntu Security Notice USN-6679-1
Package Information
https://launchpad.net/ubuntu/+source/frr/8.4.4-1.1ubuntu1.3 https://launchpad.net/ubuntu/+source/frr/8.1-1ubuntu1.9
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!