frr 8.4.4-1.1ubuntu1.2 source package in Ubuntu
Changelog
frr (8.4.4-1.1ubuntu1.2) mantic-security; urgency=medium
* SECURITY UPDATE: read beyond stream during labeled unicast parsing
- debian/patches/CVE-2023-38407.patch: fix use beyond end of stream of
labeled unicast parsing in bgpd/bgp_label.c.
- CVE-2023-38407
* SECURITY UPDATE: crash via MP_UNREACH_NLRI attribute
- debian/patches/CVE-2023-47234.patch: ignore handling NLRIs if we
received MP_UNREACH_NLRI in bgpd/bgp_attr.c, bgpd/bgp_attr.h,
bgpd/bgp_packet.c.
- CVE-2023-47234
* SECURITY UPDATE: crash via malformed BGP UPDATE message
- debian/patches/CVE-2023-47235.patch: treat EOR as withdrawn to avoid
unwanted handling of malformed attrs in bgpd/bgp_attr.c.
- CVE-2023-47235
-- Marc Deslauriers <email address hidden> Thu, 16 Nov 2023 09:43:59 -0500
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Mantic
- Original maintainer:
- Ubuntu Developers
- Architectures:
- linux-any all
- Section:
- net
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| frr_8.4.4.orig.tar.xz | 7.0 MiB | 77f942795cd15b1b792d9bf712905edebf1803fcdaaa393d0ef0d2c1998d75d2 |
| frr_8.4.4-1.1ubuntu1.2.debian.tar.xz | 39.3 KiB | e159b66080c9024f2dfaf56491092b9f61a4cf7a468fa22963afd332ed83de3b |
| frr_8.4.4-1.1ubuntu1.2.dsc | 2.8 KiB | bf7b7def621cac7d59092f5ba2253030078d2326cb1ddd0e1fb3240cde19a2a4 |
Available diffs
Binary packages built by this source
- frr: FRRouting suite of internet protocols (BGP, OSPF, IS-IS, ...)
FRRouting implements the routing protocols commonly used in the
internet and private networks to exchange information between routers.
Both IP and IPv6 are supported, as are BGP, OSPFv2, OSPFv3, IS-IS, BABEL,
EIGRP, RIP, RIPng, LDP, BFD, PIM, VRRP, PBR, and NHRP.
.
These protocols are used to turn your system into a dynamic router,
exchanging information about available connections with other routers
in a standards-compliant way. The actual packet forwarding
functionality is provided by the OS kernel.
.
FRRouting is a fork of Quagga with an open community model. The main
git lives on https://github. com/frrouting/ frr.git and the project name
is commonly abbreviated as "FRR."
- frr-dbgsym: debug symbols for frr
- frr-doc: FRRouting suite - user manual
This provides the FRR user manual in HTML form. This is the official
manual maintained as part of the package and is also available online
at https://frrouting. readthedocs. io/
- frr-pythontools: FRRouting suite - Python tools
The FRRouting suite uses a small Python tool to provide configuration
reload functionality, particularly useful when the interactive configuration
shell is not used.
.
Without this package installed, "reload" (as a systemd or init script
invocation) will not work for the FRR daemons.
- frr-rpki-rtrlib: FRRouting suite - BGP RPKI support (rtrlib)
Adds RPKI support to FRR's bgpd, allowing validation of BGP routes
against cryptographic information stored in WHOIS databases. This is
used to prevent hijacking of networks on the wider internet. It is only
relevant to internet service providers using their own autonomous system
number.
- frr-rpki-rtrlib-dbgsym: debug symbols for frr-rpki-rtrlib
- frr-snmp: FRRouting suite - SNMP support
Adds SNMP support to FRR's daemons by attaching to net-snmp's snmpd
through the AgentX protocol. Provides read-only access to current
routing state through standard SNMP MIBs.
- frr-snmp-dbgsym: debug symbols for frr-snmp
