projects / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: cc85640) | patch
quagga: add upstream security fix for CVE-2017-16227
authorPeter Korsgaard <peter@korsgaard.com>
Mon, 30 Oct 2017 21:53:09 +0000 (22:53 +0100)
committerThomas Petazzoni <thomas.petazzoni@free-electrons.com>
Wed, 1 Nov 2017 09:47:12 +0000 (10:47 +0100)
commitd77d7220a7ced8daa89e3e0aa0090a4e60074001
tree40c189eaae3f92226d1e2c96154e6fc25f18b0fctree
parentcc856401e8ac6a2c7a8767737b73dde933a5798acommit | diff
quagga: add upstream security fix for CVE-2017-16227

>From the advisory:
http://www.openwall.com/lists/oss-security/2017/10/30/4

It was discovered that the bgpd daemon in the Quagga routing suite does
not properly calculate the length of multi-segment AS_PATH UPDATE
messages, causing bgpd to drop a session and potentially resulting in
loss of network connectivity.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
package/quagga/0004-bgpd-Fix-AS_PATH-size-calculation-for-long-paths.patch [new file with mode: 0644] blob