diff options
author | CROSS <info@codenomicon.com> | 2011-09-26 13:17:21 +0400 |
---|---|---|
committer | Denis Ovsienko <infrastation@yandex.ru> | 2011-09-26 18:46:28 +0400 |
commit | 6b161fc12a15aba8824c84d1eb38e529aaf70769 (patch) | |
tree | abd6c391a491495c70203420e5d91dbcdf282383 /update-autotools | |
parent | 94431dbc753171b48b5c6806af97fd690813b00a (diff) |
ospfd: CVE-2011-3326 (uknown LSA type segfault)
This vulnerability (CERT-FI #514837) was reported by CROSS project.
They have also suggested a fix to the problem, which was found
acceptable.
Quagga ospfd does not seem to handle unknown LSA types in a Link State
Update message correctly. If LSA type is something else than one
supported
by Quagga, the default handling of unknown types leads to an error.
* ospf_flood.c
* ospf_flood(): check return value of ospf_lsa_install()
Diffstat (limited to 'update-autotools')
0 files changed, 0 insertions, 0 deletions