Ubuntu

“quagga” 0.99.18-2ubuntu0.1 source package in Ubuntu

Changelog

quagga (0.99.18-2ubuntu0.1) oneiric-security; urgency=low

  * SECURITY UPDATE: arbitrary code execution via malformed Inter Area
    Prefix LSA
    - debian/patches/95_CVE-2011-3323.dpatch: check lengths in
      ospf6d/{ospf6_abr.h,ospf6_asbr.h,ospf6_intra.h,ospf6_lsa.h,
      ospf6_message.c,ospf6_message.h,ospf6_proto.h}
    - CVE-2011-3323
  * SECURITY UPDATE: denial of sevice via crafted Link-State-Advertisement
    - debian/patches/95_CVE-2011-3324.dpatch: change assert to warning in
      ospf6d/ospf6_lsa.c.
    - CVE-2011-3324
  * SECURITY UPDATE: denial of service via crafted Hello packet
    - debian/patches/95_CVE-2011-3325.dpatch: add extra checks to
      ospfd/ospf_packet.c.
    - CVE-2011-3325
  * SECURITY UPDATE: denial of service via unknown Link-State-Advertisements
    types
    - debian/patches/95_CVE-2011-3326.dpatch: exit if LSA type is unknown
      in ospfd/ospf_flood.c.
    - CVE-2011-3326
  * SECURITY UPDATE: arbitrary code execution via Extended Communities path
    attribute
    - debian/patches/95_CVE-2011-3327.dpatch: properly check size in
      bgpd/bgp_ecommunity.c.
    - CVE-2011-3327
 -- Marc Deslauriers <email address hidden>   Fri, 07 Oct 2011 12:41:49 -0400

Upload details

Uploaded by:
Marc Deslauriers on 2011-10-12
Uploaded to:
Oneiric
Original maintainer:
Ubuntu Developers
Component:
main
Architectures:
any
Section:
net
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size MD5 Checksum
quagga_0.99.18.orig.tar.gz 2.1 MiB 59e306e93a4a1ce16760f20e9075d473
quagga_0.99.18-2ubuntu0.1.diff.gz 45.7 KiB 1c7350d66cb3790a897d391e3dfcfea2
quagga_0.99.18-2ubuntu0.1.dsc 2.0 KiB 944cfc427e76fc1c9f3b9511ea3a3874

Binary packages built by this source

quagga: BGP/OSPF/RIP routing daemon

 GNU Quagga is free software which manages TCP/IP based routing protocols.
 It supports BGP4, BGP4+, OSPFv2, OSPFv3, IS-IS, RIPv1, RIPv2, and RIPng as
 well as the IPv6 versions of these.
 .
 As the precessor Zebra has been considered orphaned, the Quagga project
 has been formed by members of the zebra mailing list and the former
 zebra-pj project to continue developing.
 .
 Quagga uses threading if the kernel supports it, but can also run on
 kernels that do not support threading. Each protocol has its own daemon.
 .
 It is more than a routed replacement, it can be used as a Route Server and
 a Route Reflector.

quagga-doc: documentation files for quagga

 This package includes info files for quagga, a free software which manages
 TCP/IP based routing protocols. It supports BGP4, BGP4+, OSPFv2, OSPFv3,
 IS-IS, RIPv1, RIPv2, and RIPng as well as the IPv6 versions of these.