summaryrefslogtreecommitdiff
path: root/ospfd/ospf_interface.c
diff options
context:
space:
mode:
authorCROSS <info@codenomicon.com>2011-09-26 13:17:21 +0400
committerDenis Ovsienko <infrastation@yandex.ru>2011-09-26 18:39:52 +0400
commitaf143a26ef96ba9be7b9c0b151b7605e1c2c74cd (patch)
tree52d988f2eb1ccaddec7a725ee30766593dfc1f6b /ospfd/ospf_interface.c
parenta1afbc6e1d56b06409de5e8d7d984d565817fd96 (diff)
ospfd: CVE-2011-3326 (uknown LSA type segfault)
This vulnerability (CERT-FI #514837) was reported by CROSS project. They have also suggested a fix to the problem, which was found acceptable. Quagga ospfd does not seem to handle unknown LSA types in a Link State Update message correctly. If LSA type is something else than one supported by Quagga, the default handling of unknown types leads to an error. * ospf_flood.c * ospf_flood(): check return value of ospf_lsa_install()
Diffstat (limited to 'ospfd/ospf_interface.c')
0 files changed, 0 insertions, 0 deletions