CVE

Id
53493  
CVE No.
CVE-2012-0250  
Status
Candidate  
Description
Buffer overflow in the OSPFv2 implementation in ospfd in Quagga before 0.99.20.1 allows remote attackers to cause a denial of service (daemon crash) via a Link State Update (aka LS Update) packet containing a network-LSA link-state advertisement for which the data-structure length is smaller than the value in the Length header field.  
Phase
Assigned (20111221)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
564664 53493 CVE-2012-0250 FEDORA:FEDORA-2012-5352  View
564665 53493 CVE-2012-0250 URL:http://lists.fedoraproject.org/pipermail/package-announce/2012-April/078794.html  View
564666 53493 CVE-2012-0250 FEDORA:FEDORA-2012-5411  View
564667 53493 CVE-2012-0250 URL:http://lists.fedoraproject.org/pipermail/package-announce/2012-April/078910.html  View
564668 53493 CVE-2012-0250 FEDORA:FEDORA-2012-5436  View
564669 53493 CVE-2012-0250 URL:http://lists.fedoraproject.org/pipermail/package-announce/2012-April/078926.html  View
564670 53493 CVE-2012-0250 REDHAT:RHSA-2012:1258  View
564671 53493 CVE-2012-0250 URL:http://rhn.redhat.com/errata/RHSA-2012-1258.html  View
564672 53493 CVE-2012-0250 REDHAT:RHSA-2012:1259  View
564673 53493 CVE-2012-0250 URL:http://rhn.redhat.com/errata/RHSA-2012-1259.html  View
564674 53493 CVE-2012-0250 CERT-VN:VU#551715  View
564675 53493 CVE-2012-0250 URL:http://www.kb.cert.org/vuls/id/551715  View
564676 53493 CVE-2012-0250 SECUNIA:48949  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
26299 JVNDB-2012-002006 Quagga の bgpd の BGP 実装におけるサービス運用妨害 (表明違反および Daemon Exit) の脆弱性 Quagga の bgpd の BGP 実装は、OPEN メッセージのメッセージバッファを適切に使用しないため、サービス運用妨害 (表明違反および Daemon Exit) 状態となる脆弱性が存在します。 CVE-2012-0255 53493 5 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-002006.html  View